Privacy

Data Protection

adjoe GmbH (hereinafter referred also to as “adjoe”) appreciates your interest in our enterprise and in our online appearances.

In principle, it is possible to use all of the adjoe’s websites and social media sites without providing any personal data that directly reveals your identity to us. However, if you as a user wish to make use of special services via our websites or our social media offerings, it may be necessary to process personal data. In addition, when you visit web services, certain information about your end devices or technical equipment is processed that does not allow any direct conclusion to be drawn about your identity, but which is legally considered personal data or is protected for other legal reasons. We strictly adhere to the legal requirements of data protection law and in particular the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and other legal data protection reguflations. If it is necessary to process personal data and there is no legal basis for such processing, we will ask for your consent. 

We would therefore like to take this opportunity to inform you which of your personal data we collect when you visit our website and other online media operated by us and for what purposes it is used. Information on all your rights and how to exercise them can be found in the following section “Your rights as a data subject” in this Data Protection Notice.

This Data Protection Notice can be accessed, saved and printed at any time at the URL https://adjoe.io/privacy/. As changes in legislation or changes to our internal company processes may make it necessary to amend this data protection notice, we ask you to read this Data Protection Notice regularly.

1. Scope

This Data Protection Notice applies generally to the online media and websites of adjoe, i.e. the online offers that can be accessed at the URL and other URLs, including our social media sites (hereinafter also collectively referred to as “our website(s)” or “our web services”), provided that they are linked to this Data Protection Notice. This Data Protection Notice also applies in particular to the following social media sites:

  • Facebook: https://www.facebook.com/people/Adjoe/100076450974671/
  • Instagram: https://www.instagram.com/adjoe.io/
  • LinkedIn: https://www.linkedin.com/company/adjoe/
  • LinkedIn: https://www.linkedin.com/company/bit-summit/?originalSubdomain=de
  • YouTube: https://www.youtube.com/@adjoe_io
  • YouTube: https://www.youtube.com/@adjoe_tech
  • YouTube: https://www.youtube.com/@bit_summit
  • TikTok: https://www.tiktok.com/@adjoe.io
  • Stack Overflow: https://stackoverflow.com/jobs/companies/adjoe
  • X: https://x.com/i/flow/login?redirect_after_login=%2Fbit_summit
  • Medium: https://medium.com/bit-summit
  • MeetUp: https://www.meetup.com/de-DE/the-bit-summit/

2. Name and Address of the controllers

Generally responsible for the operation of our websites and webservices is adjoe GmbH, An der Alster 42, 20099 Hamburg (Germany). If you wish to contact us regarding data protection issues or to exercise your rights as a data subject, you can contact us at any time at the e-mail address privacy@adjoe.io.

Unless indicated otherwise, adjoe is therefore also the controller for the processing of personal data within these websites within the meaning of Article 4 No. 7 GDPR.

For the full contact details of adjoe, please refer to the imprint of this website at https://adjoe.io/imprint/.   

However, adjoe is a member of Applike group and individual areas of our websites as well as, in particular, websites and offers that are specifically operated in the name of the whole Applike group or individual of the companies of the Applike or under specific URLs that can be assigned to the whole Applike group or the respective companies (named in the imprint on the particular websites) may, in addition, be subject to the (joint) data protection accountability of the Applike group or respective named group or subsidiary companies, as a controller in the sense of Articles 4 No. 7 GDPR. Insofar as individual websites and the processing of personal data therein is carried out under the joint accountability of various companies of the Applike group according to Articles 4 No. 7, 26 GDPR or individual companies as sole controllers according to Article 4 No. 7 GDPR, for the respective contact information on the controller(s), please refer to the imprint of the respective websites.

3. Personal data

Personal data is information about personal or factual circumstances of a specific or identifiable natural person. This includes information such as your name, address, telephone number and date of birth, but also data about your specific career, etc., which can be assigned to a specific person with reasonable effort.

Information that is anonymized and not associated with your identity, however, is not personal data.

4. Purposes of the processing of personal data

Some of the personal data and further information we may collect from you is necessary to enable us to provide you with the services you request, to fulfil our contracts with you, to comply with legal requirements or if we have a legitimate interest in the use of your information, for example, when we use your personal data to be able to offer you an extensive and interesting offer via our websites and our web services and to constantly improve these.

When we collect data directly from you, we may ask you for your consent and clearly mark mandatory information (e.g. with an asterisk (*)). You voluntarily provide us with any other information that is not marked.

We will generally collect, process and use the personal data you provide online only within the legal bases provided for within the applicable data protection legislation or within the borders of your consent and as well only for the purposes disclosed to you.

5. General legal bases

The legal bases for the processing of your personal data may be the following:

  • Article 6 para. 1 s. 1 lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose.
  • If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6 para 1 s. 1 lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services.
  • Is our company subject to a legal obligation by which processing of personal data is required, such as for the fulfilment of tax obligations, the processing is based on Article 6 para. 1 s. 1 lit. c GDPR.
  • In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Article 6 para. 1 s. 1 lit. d GDPR.
  • Finally, processing operations could be based on Article 6 para. 1 s. 1 lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

6. Which personal data is collected and processed?

You can generally browse our websites without providing us with personal data (e.g. name, address, telephone number or e-mail address) that reveal your identity directly to us, unless you make them available to us voluntarily (e.g. for registrations for events, enquiries or surveys) or you have consented to the intended use or otherwise the corresponding legal provisions on the protection of your data permit the specific use of your personal data according to the aforementioned legal bases for specific purposes.

Particularly, your personal data may be used as follows:

6.1 Applications and the application procedures

If you are interested in working for our company, you can also apply for a position within adjoe GmbH and become part of our team. If you apply to us electronically, i.e. by e-mail or via our web form, we collect and process your personal data for the purpose of handling the application procedure and carrying out pre-contractual measures.

By submitting an application on our recruiting page and sending us your application documents, you express your interest in joining us to work for us and make your personal data available to adjoe for the purpose of applying for a specific position advertised by us. In this context, you provide us with personal data which we use and store exclusively for the purpose of your job search/application.

In particular, the following data is collected:

  • Your name (first and last name)
  • Your e-mail address
  • Your resume/CV
  • Salary expectations
  • Your possible start date
  • Information on how you heard about the vacant position
  • You also have the opportunity to upload relevant documents such as a cover letter, references and certificates, and further documents that you consider significant in the context of your application. These documents, just like CVs, may contain further personal data such as date of birth, address, etc.
  • Finally, you have to confirm that you have read our Data Protection Notice before submitting your application.

The scope of personal data that you need to provide to us as part of your application depends on the scope and type of your application or the position advertised with us. You are generally free to decide which data you provide us with. However, we may not be able to consider your application without certain information that is required in the individual case or according to the job posting. If necessary, please refer to the job posting for which you wish to apply to find out whether certain information is required.

We clearly mark mandatory information there (e.g., with an asterisk (*)). In these cases, you provide us with all other information not marked with an asterisk voluntarily.

Note on special categories of personal data:

We would like to point out that job applications, in particular resumes, references and other data you send us, may contain particularly sensitive information about your state of health, your racial or ethnic origin, your political opinions, your religious or philosophical beliefs, your memberships in a trade union or political party, or your sex life. However, we do not request such data from you and you provide us with such information voluntarily and on the basis of your consent. This consent also relates to the processing of all personal data of a special nature submitted as part of your application in accordance with the provisions of this data protection declaration.

In the further course of the application process, we may also collect further data from you and process them, together with the information you provided in the course of your application, for the purposes stated here. This may also include our assessment of whether you are qualified and suitable for filling vacancies in our company.

If you apply to us, your any of the personal data you provide to us is stored and used exclusively for the purpose of filling the vacant position for which you have applied and to be able to contact you personally on the basis of your application and, if necessary, to initiate a possible employment relationship with you. 

Only authorized employees from our personnel department or employees involved in the application process have access to your data. A transfer of your personal data to third parties or a use of your data for advertising purposes will not take place unless you have expressly consented to it. A use of your personal data beyond the uses mentioned in this Data Protection Notice does not take place.

  • Retention of your application data

Your data will generally be stored for a period of 180 days after the end of the application process. As a rule, this is done to fulfil legal obligations or to defend against any claims arising from legal regulations. We are then obliged to delete or anonymize your data. In this case, the data is only available to us as so-called metadata without direct personal reference for statistical evaluations (for example, proportion of applications regarding gender, number of applications per period, etc.).

The legal basis for this data processing is that of Article 6 para. 1 s. 1 lit. b GDPR (which permits the processing of data to fulfil a contract or pre-contractual measures), in this context directed towards the conclusion of an employment contract with you and Article 6 para. 1 s. 1 lit. f GDPR (which permits the processing of data to safeguard the data controller’s legitimate interests), in this context, directed at our legitimate interest in being able to defend ourselves in the event of legal claims being brought against us on the basis of general equality legislation. With regard to the processing of (possibly special categories of) personal data provided in addition to the mandatory data, the legal basis is that of Article 6 para. 1 s. 1 lit. a GDPR (which permits data processing on the basis of your consent).

  • Prolonged retention (“Talent Pool”)

In addition, and only with your specific consent to do so, we store your data for inclusion in the Applike group’s “Talent Pool” for 2 years after the end of the application process in order to identify any other interesting positions for you. This also applies, for example, to applications for training or internship positions.

In this case, we will continue to use all of the data collected from you as part of the application process in order to review your application in relation to vacancies at our company and other companies of the whole Applike group and in order to be able to contact you personally on the basis of your application, as well as to initiate a possible employment relationship with you, if applicable.

In the event that we are currently unable to offer you a position in our company, you can already request to be included in the Applike group’s “Talent Pool” in the course of your application and give the corresponding consent to the extended processing period of your application data.

In the event of extended storage of your data within the Applike group’s Talent Pool, the processing of your personal data is subject to joint controllership in accordance with Art. 26 GDPR. For all details in this context, please refer to the Data Protection Notice on the joint website of the companies of the Applike group.

You can revoke your consent to the use of your application data at any time with effect for the future. To do so, simply send an e-mail to the e-mail address privacy@adjoe.io. Your data will then be deleted from our applicant database; if deletion is not possible, blocking will take the place of deletion. In this case, we can no longer consider your application.

Additional charges (beyond the regular transmission fees of your Internet or telephone provider) will not be incurred for the revocation.

You are not obliged to consent to an extended storage of your application data in the Applike group’s “Talent Pool”. Without your consent, we are however unable to include you in our “Talent Pool” and must delete your application data in accordance with the requirements of Section 6.1.1 after completion of the initial application process.

The legal basis for this data processing is that of Article 6 para. 1 s. 1 lit. a GDPR (which permits data processing on the basis of your consent).

  • Data processing within the scope of the employment relationship

If you receive and accept an offer of employment with us as part of the application process, we will store the personal data collected during the application process at least for the duration of the employment relationship.

The legal basis for this data processing is that of Article 6 para. 1 s. 1 lit. b GDPR (which permits the processing of data to fulfil a contract or pre-contractual measures), in this context directed towards the conclusion of an employment contract with you and Article 6 para. 1 s. 1 lit. f GDPR (which permits the processing of data to safeguard the data controller’s legitimate interests), in this context, we use your personal data mainly for the purpose of establishing, implementing and, if necessary, processing and terminating the employment relationship entered into with you. You will be informed in detail about the processing of your personal data and the legal bases thereof within the scope of the employment relationship entered into with the companies of the Applike group when the employment contract is concluded.

6.2          Contact forms on our websites

For general inquiries and contact requests, please use our contact form at https://adjoe.io/contact-us/ or send us an e-mail at contact@adjoe.io. When you contact us via our contact form or via e-mail, we use your personal data exclusively to answer your inquiries according to your requests and to your satisfaction. To do so, we generally process your full name (name and last name) and also e-mail address to reply to your individual inquiry. Further, it is generally your free decision which data you provide to us. However, we may not be able to fulfil your contact request without certain details required in individual cases.

The legal basis for this data processing is that of Article 6 para. 1 s. 1 lit. b GDPR (which permits the processing of data to fulfil a contract or pre-contractual measures), Article 6 para. 1 s. 1 lit. f GDPR (which permits the processing of data to safeguard the data controller’s legitimate interests). Our legitimate interest within the meaning of the GDPR is the optimization and fulfilment of our online offers and our web services.

6.3          Server-Log files

Your visit to our websites is automatically logged by our web servers. In connection with the retrieval of the information you requested from our web services, data is collected for the provision of our various services or for evaluation and security purposes and, if necessary, stored in anonymized form (without personal reference). The web servers we use automatically store data about the retrieval of our web services in so-called server log files. These are the following data:

  • Your IP address
  • The URLs you access on our web pages
  • Referrer URL (the page from which you visit us)
  • Time of the server request
  • Host name of the accessing terminal (the name of your Internet service provider)
  • Browser type and browser version
  • Operating system used and its settings

The processing of the above data is done for security purposes, for general fraud prevention and as a precaution against attacks on our web services. An automated combination of this data with data from other data sources does not take place.

If we also automatically log your IP address, this is automatically deleted after 30 days at the latest .

Furthermore, we store the URL accessed with the associated page title and optional information on the page content; information on the terminal device used, operating system and browser. This information is generally transmitted with each individual page request when using the Internet. However, unlike cookies and similar technologies, no information is read from the memory of the user’s terminal device and no information is stored on this terminal device.

Since the privacy of our visitors is important to us, this data is processed without being merged with other data provided by you, such as your contact details, and furthermore, data that may allow a reference to an individual person, such as the IP address, login or device identifiers, are anonymized or pseudonymized immediately after collection by deleting the last number block. No other use, combination with other data or disclosure to third parties takes place.

This data processing is based on the legal basis of Article 6 para.1 s. 1 lit. f GDPR, which allows data processing based on our legitimate interest. Our legitimate interest within the meaning of the GDPR is the optimization and technical security of our online offers and our web services.

Apart from that, only general information is recorded, e.g. when which content from our offer is called up or which pages are visited most frequently, the names of the requested files as well as their call-up date and time. These data are evaluated to improve our offer and do not allow any conclusions about your person. We will not use this information for any other purpose.

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR, which allows the processing of data to protect the legitimate interests of the data controller.

7.             Our social media appearances

We maintain publicly available profiles in social networks. The individual social networks we use can be found below.

7.1          Data processing through social networks

Social networks such as Facebook, Instagram, LinkedIn, YouTube, TikTok, Stack Overflow, X, Medium and MeetUp can generally analyze your user behavior comprehensively if you visit their website or a website with integrated social media content (e.g., like buttons or banner ads). When you visit our social media pages, numerous data protection-relevant processing operations are triggered. In detail:

If you are logged in to your social media account and visit our social media page, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data may also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.

Using the data collected in this way, the operators of the social media portals can create user profiles in which their preferences and interests are stored. This way you can see interest-based advertising inside and outside of your social media presence. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged in to or have logged in to.

Please also note that we cannot retrace all processing operations on the social media portals. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media portals. Details can be found in the terms of use and privacy policy of the respective social media portals.

7.2          Legal bases

Our social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Article 6 para. 1 s. 1 lit. f GDPR. The analysis processes initiated by the social networks may be based on divergent legal bases to be specified by the operators of the social networks (e.g., consent within the meaning of Article 6 para. 1 s. 1 lit. a GDPR).

7.3          Responsibility and assertion of rights

If you visit one of our social media sites (e.g., Facebook, Instagram, LinkedIn, YouTube, TikTok, Stack Overflow, X, Medium and MeetUp), we, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can in principle protect your rights (information, correction, deletion, limitation of processing, data portability and complaint) vis-à-vis us as well as vis-à-vis the operator of the respective social media portal (e.g., Facebook, Instagram, LinkedIn, YouTube, TikTok, Stack Overflow, X, Medium and MeetUp).

Please note that despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are determined by the company policy of the respective provider.

7.4          Storage time

The data collected directly from us via the social media presence will be deleted from our systems as soon as you ask us to delete it, you revoke your consent to the storage or the purpose for the data storage lapses. Mandatory statutory provisions – in particular, retention periods – remain unaffected.

We have no control over the storage duration of your data that are stored by the social network operators for their own purposes. Particularly cookies and similar techniques stored on your device by the respective social media provider may remain until you delete them (please refer to the following section 8 of this Data Protection Notice for further information on the cookies that we use on our website). For details, please contact the social network operators directly (e.g., in their privacy policy, see below).

7.5          Our profiles on individual social networks

Specifically, we maintain profiles on the following social media platforms. For detailed information on the processing of your personal data by their providers, please refer to the respective information and links:

7.5.1     Facebook

We have a profile on Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter: Meta). According to Meta, the collected data will also be transferred to the USA and other third-party countries.

You can customize your advertising settings independently in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads.  Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

For further details, please refer to Facebook’s privacy policy: https://www.facebook.com/about/privacy/. For data transfers to the US, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European data protection level on the basis of an adequacy decision by the European Commission. Further information can be obtained at the following link: www.dataprivacyframework.gov/s/participant-search

7.5.2     Instagram

We have a profile on Instagram. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. 

Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381.

For details on how they handle your personal data, please refer to Instagram’s privacy policy: https://help.instagram.com/519522125107875. For data transfers to the US, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European data protection level on the basis of an adequacy decision by the European Commission. Further information can be obtained at the following link: www.dataprivacyframework.gov/s/participant-search.

7.5.3     LinkedIn

We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.

If you wish to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

For details on how they handle your personal data, please refer to LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy.

7.5.4     TikTok

We have a profile on TikTok. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. For details on how they handle your personal data, please refer to the TikTok privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=de.

Data transfers to non-secure third countries are based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.tiktok.com/legal/privacy-policy?lang=de.

7.5.5     X (formerly Twitter)

We use the short message service X (formerly Twitter). The provider is the parent company X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. The branch Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland, is responsible for data processing of persons living outside the United States.

You can customize your X-data privacy settings independently in your user account. To do so, click on the following link and log in: https://twitter.com/personalization.

Data transfer to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.

For details, please refer to X’s privacy policy: https://twitter.com/de/privacy.

7.5.6     YouTube

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For details on how they handle your personal data, please refer to the YouTube privacy policy: https://policies.google.com/privacy?hl=de. For data transfers to the US, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European data protection level on the basis of an adequacy decision by the European Commission. Further information can be obtained at the following link: www.dataprivacyframework.gov/s/participant-search.

7.5.7     Stack Overflow

We have a profile on Stack Overflow. The provider is Stack Exchange, Inc., 110 William St, 28th Floor, New York, NY 10038, USA. As the representative of controllers not established in the Union pursuant to Article 27 of the GDPR, A Medium Corporation has appointed The MD Stack Overflow GMBH HRB 234500, 3 Frieslandstraat, Amsterdam, The Netherlands. The provider is headquartered in the USA and may, therefore, transfer your personal information to, or store or access it in, jurisdictions that may not provide levels of data protection that are equivalent to those of your home jurisdiction. By accessing the Stack Overflow Network and engaging with their Products and Services, you acknowledge that your personal data may be collected and transferred from your local jurisdiction (including those in the European Economic Area (EEA) and the UK) to the United States or other jurisdictions. Data transmission to third countries is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en. For details on how they handle your personal data, please refer to the Stack Overflow privacy policy: https://stackoverflow.com/legal/privacy-policy/.

7.5.8     Medium

We have a profile on Medium. The provider is A Medium Corporation, 799 Market St FL 5 San Francisco, CA, 94103-2047, USA. Medium also processes your personal data in the USA. As the representative of controllers not established in the Union pursuant to Article 27 of the GDPR, A Medium Corporation has appointed VeraSafe Ireland Ltd., Unit 3D North Point House, North Point Business Park, New Mallow Road Cork T23AT2P, Ireland. For more information on the privacy practices of Medium and details on how they handle your personal data can be found in the Medium privacy policy: https://policy.medium.com/medium-privacy-policy-f03bf92035c9

7.5.9     MeetUp

We have a profile on MeetUp. The provider is Meetup, LLC, 632 Broadway 10th Floor, New York,

NY 10012, USA. Meetup is based in the USA. As the representative of controllers not established in the Union pursuant to Article 27 of the GDPR, A Medium Corporation has appointed VeraSafe Ireland Ltd., Unit 3D North Point House, North Point Business Park, New Mallow Road Cork T23AT2P, Ireland. Information about you will be transferred to, and processed in, the U.S. and countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country and, in some cases, may not be as protective. Data transmission to third countries is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en. For details on how they handle your personal data, please refer to the MeetUp privacy policy: https://help.meetup.com/hc/en-us/articles/360044422391-Privacy-Policy.

8.             Cookies and similar technologies

Within our websites and with your consent, we also may use cookies as well as other similar technologies (hereinafter collectively referred to as “cookies”) from third party providers.

We do not use any cookies ourselves in our social media profiles mentioned in section 7 of this Data Protection Notice. With regard to the use of such technologies by the respective providers of these social media platforms, we kindly ask you to inform yourself in this regard under the specified information sources supplied by the providers themselves.

8.1 General information about cookies

The use of cookies helps us make it more convenient for you to use our website. For example, we use session cookies to detect whether you have already visited individual pages on our website. These are erased automatically when you leave our website.

Other Cookies help us to collect information about how you behave as a user on our website and how you interact with the features we offer. We do this to better understand how our website is used and to enable improved navigation and features. Cookies that we use will not allow to identify you personally. However, with the help of these cookies we can – with your consent – re-identify the device you use or your web browser when you repeatedly access our web offer and thus optimise your experience as a user of our website and make it more comfortable by adapting the presentation of the content to your particular interests or your preferences and designing it individually and according to your needs. Cookies therefore also allow us to recognise whether you have visited our website before or whether you are a new visitor.

For these purposes, we use cookies and similar technologies from the third-party providers listed in Section 8.2 below. And your personal data may also be processed by the named third-party providers as described in detail.

Detailed information on cookies in general, the types of cookies and their intended use, as well as on the relevant legal basis for the use of cookies and on your selection and control options for the cookies used in detail within our websites can be found in our detailed instructions within our PRIVACY PREFERENCES MANAGER , which generally also opens automatically when you access our websites for the first time and within which you can adapt the use of cookies and similar technologies to your wishes and needs.

When you click here or on the cookie link in the footer, you can revoke your consent at any time with effect for the future or change your cookie preferences without this resulting in any legal disadvantages for you.

You also may refuse the use of cookies (at all) by selecting the appropriate settings of your browser, however, please note that if you do this you may not be able to use the full functionality of our websites.

8.2          Third party provider services we use on our websites

Our websites use services (including cookies and similar technologies) from the third-party providers listed below and your personal data may also be processed by the named third-party providers as described in detail:

8.2.1 Google Analytics 4 (GA4)

On our websites we use Google Analytics 4 (GA4), a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. (“Google”).

In this context, pseudonymized usage profiles are created and cookies are used. The information generated by the cookie about your use of this website can be, among other things:

  • a short-term recording of the IP address without, permanent storage
  • Browser information,
  • Date and time of access,
  • Device information,
  • The URL of the visited website,
  • Geographic location,

The pseudonymized data may be transferred by Google to a server in the USA and stored there.

The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet use for the purposes of market research and demand-oriented design of these internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data.

These processing operations are carried out exclusively when consent is given in accordance with Art. 6 para. 1 s. 1 lit. a GDPR.

The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. There is hereby an adequacy decision pursuant to Art. 45 GDPR, so that a transfer of personal data may also take place without further guarantees or additional measures. With regard to data transfers outside the EU or the EEA, please also refer to the information in section 13 (“Data transfers to “Third Countries”).

Additional information on the service can be found at the following link: https://support.google.com/analytics/answer/12017362?hl=de.

8.2.2 Additional information on Google Signals

Google Signals is a feature in Google Analytics that collects session data from websites and apps where users are logged in with their Google Account and have enabled personalized advertising. It enables advanced analysis by linking user behavior across different devices and providing additional information such as demographic characteristics and interests. Your consent to the use of Google Analytics (see above) also includes consent to the Google Signals add-on function.

Additional information on Consent Mode, advanced implementation

Under the Digital Markets Act, Google is obliged to obtain user consent before processing user data for personalized advertising. Google fulfils this requirement with the “Consent Mode”. Users are obliged to implement this and thus prove that they have obtained the consent of website visitors.

Google offers two implementation modes, the basic and the advanced implementation.

We use the extended implementation method of Google Consent Mode. If you consent to data processing in connection with the use of GA4 (see above), a connection to Google is established, Google Analytics cookies are set and the corresponding processing is carried out. If you refuse consent, no Google Analytics cookies will be set. However, a unique “ping ID” will be generated and transmitted to Google. The Google code is executed, whereby only limited user data is transmitted to Google, including information such as:

  • IP address
  • Browser details
  • Visited URL

A personalised user ID is not assigned.

If you have consented to the execution of Google Analytics 4, Consent Mode, extended implementation, the legal basis for the processing of personal data is Art. 6 para. 1 s. 1 lit. a GDPR. In addition, it is in our legitimate interest within the meaning of Art. 6 para. 1 s. 1 lit. f GDPR to use Google Analytics 4, Consent Mode, extended implementation, in order to obtain data on conversions without creating user profiles and thus increase profitability.

By consenting to the use of Google Analytics, you also consent to your data being processed in the United States of America (USA) in accordance with Art. 49 para. 1 lit. a GDPR. The USA has been assessed by the European Court of Justice as a country with an insufficient level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without any legal remedy. If you do not consent to the use of this service, the transfer described above will not take place.

We request your consent with the help of our PRIVACY PREFERENCES MANAGER, within which you can also revoke your consent at any time and adapt your settings to your wishes and needs at any time with effect for the future, without this causing you any disadvantages.

8.2.3     Google Maps

Within our websites, we may use map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
For the use of the functions of Google Maps, it is necessary to store your IP address. This information will generally be sent to a Google server in the USA, where it will be stored. The provider of this site has no influence on this data transfer. 

If you consent to the execution of Google Maps the legal basis for the processing of personal data is Art. 6 para. 1 s. 1 lit. a GDPR.

By consenting to the use of Google Maps, you also consent to your data being processed in the United States of America (USA) in accordance with Art. 49 para. 1 lit. a GDPR. The USA has been assessed by the European Court of Justice as a country with an insufficient level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without any legal remedy. If you do not consent to the use of this service, the transfer described above will not take place.

We request your consent with the help of our PRIVACY PREFERENCES MANAGER , within which you can also revoke your consent at any time and adapt your settings to your wishes and needs at any time with effect for the future, without this causing you any disadvantages.

8.2.4     Consent Management Tool (Borlabs Cookies)

To collect and manage your consent to the use of cookies we use the consent management tool “Borlabs” from Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg, Germany. This tool allows us to obtain and manage the consent of website users for data processing.

Borlabs collects data generated by end users who use our website. When an end user gives consent via the cookie consent tool, Borlabs automatically logs the following data:

  • Browser information,
  • Date and time of access,
  • Device information,
  • The URL of the visited website,
  • Banner language,
  • Consent ID,
  • The consent status of the end user, which serves as proof of consent.

The consent status is also stored in the end user’s browser so that the website can automatically read and follow the end user’s consent in all subsequent page requests and future end user sessions for up to 12 months. Consent data (consent and withdrawal of consent) is stored for three years. The retention period corresponds to the regular limitation period according to § 195 of the German Civil Code (Bürgerliches Gesetzbuch [BGB]). The data is then deleted immediately.

The functionality of the website is not guaranteed without the described processing. There is no possibility for the user to object as long as there is a legal obligation to obtain the user’s consent to certain data processing operations (Art. 7 para. 1, Art. 6 para. 1 s. 1 lit. f GDPR).

Borlabs GmbH acts as a data processor for us.

9. Period for which the personal data will be stored

We only store personal data that you provide to us for as long as they are needed to fulfil the purposes for which these data were provided or as long as this is required by law:

  • If you conclude contracts with us, we store and process your personal data for the duration of your contractual relationship with us and also for the fulfilment of legal post-contractual archiving obligations and for the duration of the statutory retention periods (maximum 10 years);
  • If you apply through us for vacant positions with us, we will delete your application data at the latest 180 days after completion of the application procedure, unless you have given us your consent to store your data two more years in the talent pool for future job vacancies;
  • If you send us an inquiry, we process your personal data for the duration of processing your inquiry and for the period we may need to document the inquiry process and our answers.

Generally, we delete or anonymize your personal data from our systems and records, so that you can no longer be identified, when they are no longer needed. We may retain certain personal data in order to comply with our legal and regulatory obligations and to enable us to administer our rights (e.g. to enforce our claims in court), or for statistical purposes (in anonymous form).

10. With whom do we share Personal Data?

If these cases are not listed in this Data Protection Notice, we will not sell or market your personal data to third parties or forward them on for any other reason.

In addition to the other cases mentioned in this Data Protection Notice, your personal data will only be passed on without your express prior consent in the following cases:

  • If it is necessary for the clarification of an illegal or abusive of our web services or for the prosecution, personal data are passed on to the prosecution authorities as well as if necessary, to damaged third parties. However, this only happens if there are concrete indications of illegal or abusive behaviour. A disclosure to third parties bound to professional secrecy can take place if this is necessary to enforce the contractual conditions or other agreements as well as our claims arising from contracts that you have concluded with us. The legal basis for data transmission is Article 6 para. 1 s. 1 lit. b GDPR, which permits the processing of data in order to fulfil a contract or pre-contractual measures and Article 6 para. 1 s. 1 lit. f GDPR, which permits the processing of data in order to safeguard the data controller’s legitimate interests.
  • Further, we may also be legally obliged to provide information to certain public authorities upon request. These are law enforcement authorities, authorities that prosecute fined offences and the tax authorities.
  • As our business develops, the structure of our company may change as its legal form changes, subsidiaries, parts of companies or components are established, purchased or sold. In such transactions, customer information will be shared with the part of the company to be transferred with your consent. Whenever personal data is passed on to third parties to the extent described above, we will ensure that it is used in accordance with this data protection declaration and the relevant data protection laws and ask you for your consent.

11. Who is involved in processing your Personal Data?

We process your personal data collected through the website and may also engage third parties to assist us according to our instructions and therefore, your personal data can also be processed on our behalf by our reliable, external service providers (“contract processors”). We solely rely on trusted and reliable contract processors who conduct a number of business processes on our behalf and only provide them with the information they need to provide their services to us. We make every effort to ensure that all contract providers with whom we work strictly protect your personal data and use them only for the purposes to which we assign them and on our behalf. For example, we can commission the following services for which the processing of your personal data is necessary to our contract processors or our contract processors may be

  • Third parties who support and help us to provide digital and e-commerce services, including CRM, web analytics and search engine and user content maintenance tools;
  • Advertising, marketing, digital and social media agencies to assist us with advertising, marketing and campaign activities, to analyse their effectiveness and to manage your contact requests and questions;
  • Third parties who assist us in providing IT services, including platform providers, hosting services, maintenance and support for our databases, and our software and applications that contain information about you (in some cases, such services simply include access to your data to perform the desired task);
  • Particularly, the data provided in the context of your application will be transmitted via TLS encryption and is stored in a database within a cloud-based system for online applications and to carry out the application process. The Applike Group uses a cloud-based system (“Lever”) from the specialized provider Employ, Inc., 20 North Meridian Street, Suite # 300, Indianapolis, IN 46204, USA for the online application and the implementation of the application process. This is the service provider for the employer and may also receive knowledge of personal data of the applicants in connection with the maintenance and maintenance of the systems. The Applike group has concluded a data processing agreement according to Article 28 GDPR with this provider, which ensures that the data processing is only carried out in accordance with the Applike group’s instructions and in a permissible manner, and that the data is not passed on to third parties. The data processed by Employ, Inc. is hosted in the EU. Employ, Inc. collects and processes personal data exclusively in accordance with the instructions received or the consent of the employer and in accordance with the applicable data protection laws. Where necessary, Employ, Inc. transfers personal data in individual cases to group companies and suppliers in the United States and elsewhere in the world. For data transfers to the US, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European data protection level on the basis of an adequacy decision by the European Commission. Further information on this is available from the provider at the following link: https://www.lever.co/privacy-notice/.  

The legal basis for data transmission is Article 6 para. 1 s. 1 lit. b GDPR, which permits the processing of data in order to fulfil a contract or pre-contractual measures and Article 6 para. 1 s. 1 lit. f GDPR, which permits the processing of data in order to safeguard the data controller’s legitimate interests.

We have concluded a contract with all our contract processors on the commissioned data processing on our behalf in accordance with Article 28 GDPR and fully implement the strict requirements of the German data protection authorities when using their services.

12. Data transfers to “Third Countries”

If we process data in a Third Country (i.e., outside the European Union (EU), the European Economic Area (EEA), where the privacy laws may not be as protective as those in your location) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this is only done in accordance with the strict legal requirements of the EU and we ensure that your data is treated in accordance with the provisions of this Data Protection Notice.

Subject to express consent or contractually or legally required transfer, we only process or have the data processed in third countries with a recognized level of data protection, contractual obligation through the so-called standard protection clauses of the EU Commission (SCC), in the presence of certifications or binding internal data protection regulations according to Articles 44 to 49 GDPR; further information can be found on the websites of the EU Commission under the URL https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en. Where necessary, we and our contract processors will, where applicable, also take supplementary measures to ensure the protection of your privacy rights, the confidentiality of your personal data and compliance with the applicable laws and regulations of the EU.

13. Data Security

We make every effort to take extensive technical and organizational security measures to protect your personal data against unintentional or unlawful deletion, alteration or loss and against unauthorized disclosure or access. All our employees are accordingly bound to secrecy and data protection. Insofar as it is within our sphere of influence, we use modern encryption techniques and a large number of other measures in particular to prevent unauthorized access by third parties. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption exists, the data you exchange with us cannot be read by third parties.

Further, our security precautions are regularly checked and adapted to technological progress.

However, we would like to point out that due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures may not be observed by other persons or institutions for which we are not responsible. In particular, unencrypted data can be accessed by third parties – particularly if this is done by e-mail. We have no technical influence on this. In such cases, it is the responsibility of the user to protect the data provided by him against misuse by encryption or in any other way.

14.          Your Rights as a Data Subject

If we process personal data as the data controller, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and purpose of the processing, in particular the right of access (Article 15 GDPR), the right to rectification (Article16 GDPR), the right to erasure (‘right to be forgotten’) (Article 17 GDPR), the right to restriction of processing (Article 18 GDPR), the right to data portability (Article 20 GDPR), the right to object (Article 21 GDPR). If the processing of personal data is based on your consent, you have the right to revoke this data protection consent in accordance with Article 7 para. 3 GDPR.

If you wish to exercise your above rights, please contact us using the contact details given in section 2 of this Data Protection Notice.

Please note that we may require proof of identity and full details of your request before we can process your request.

15.          Right to lodge a complaint with the competent supervisory authorities

In the event of data protection violations on our part, you have a right of appeal to the responsible supervisory authority.

The supervisory authority responsible for adjoe GmbH in data protection law matters is the Hamburgische Beauftragte für Datenschutz und Informationsfreiheit (HmbBfDI), the contact details of which can be found in the following link: https://www.datenschutz-hamburg.de/wir-ueber-uns-kontakt/wie-erreichen-sie-uns.html.

16.          Name and Address of the Data Protection Officer

Within our companies, everyone is responsible for privacy and data protection issues. In addition, we have decided to appoint a data protection officer for each of our companies. To ensure the independence of the data protection officer, we have appointed an external data protection officer:

Mr Stephan Krämer, LL.-M. (Attorney at law, Germany) KINAST Rechtsanwaltsgesellschaft mbH Hohenzollernring 54 50672 Cologne

You can contact our data protection officer via his website at http://www.kinast.eu.

17. Hyperlinks to other websites

Our websites contain so-called hyperlinks to websites of other providers. When these hyperlinks are activated, you are redirected from our website directly to the websites of other providers. Despite careful control we assume no liability for the content of external links. The operators of the sites we link to are solely responsible for the content of linked pages and any processing of personal data on these websites.

18. Translation

This privacy policy is provided both in German and English. In case of discrepancies or misunderstandings, the English version shall prevail. The German translation is provided for informational purposes only.

Last updated: November 2024