Protecting your personally identifiable information is important to us. We would therefore like to inform you in the following about how your data is being handled, both on this homepage and in principle. In order to fulfill our obligation to provide information according to Art. 12 ff. of the General Data Protection Regulation (GDPR), we would like to make the following information on data privacy available to you:
Within the meaning of data privacy law, the following is the responsible party:
DIE WORTWERKSTATT GmbH
Agentur für Kommunikation
You will find further information on our company, details about authorized representatives, and other contact details in the site notice on our website.
We would like to advise you that data transmission over the Internet (e.g., when communicating by e-mail) is always associated with certain security risks. Complete protection of data against access by third parties is not possible.
This website uses SSL or TSL encryption for security reasons and to protect the transmission of sensitive content, such as any orders or requests you may send to us as the website operator. You can recognize an encrypted connection when the browser’s address line changes from „http://“ to „https://“ and the padlock icon is displayed in your browser’s address bar. If SSL or TSL encryption is enabled, the data you submit to us cannot be read by third parties.
The provider of the web pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include the following:
Browser type and browser version
Operating system used
Hostname of the accessing computer
Time of the server request
This data is never merged with other data sources.
This data is collected on the basis of Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website, and server log files must be recorded to do this.
We use a WordPress plugin to protect against external attacks by hackers and bots (brute force attacks, login hacking). In order for it to be possible to initiate appropriate countermeasures in the event of any attacks, this plugin stores the IP addresses of the users who visit our site. The IP addresses are only stored in the local WordPress database and not transmitted to third parties.
The use of iThemes Security is in the interest of safe use of our websites and also serves to protect users against malware, Trojans, and so on. This constitutes a legitimate interest according to Art. 6 (1) (f ) GDPR.
If you send us inquiries using a contact form, your details from the request form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. We will not share this information without your consent.
The processing of the data entered into the contact form is therefore carried out based exclusively on your consent (Article 6 (1) (a) GDPR). You can revoke this consent at any time. An informal e-mail message to us is sufficient. The legality of the data processing operations carried out up until revocation of consent remains unaffected by the revocation.
The data entered by you in the contact form will remain with us until you ask us to delete it or revoke your consent to its storage, or until the reason for the data storage no longer applies (e.g., after completion of your request). Mandatory statutory provisions, especially retention periods, remain unaffected.
If we receive data from you, we will only process it for the purposes for which we received or collected it.
Data processing for other purposes can only be considered if the necessary legal requirements pursuant to Art. 6 (4) GDPR have been met. In this case, we will of course comply with any obligation to provide information under Art. 13 (3) GDPR and Art. 14 (4) GDPR.
The legal basis for processing of personally identifiable information is Art. 6 GDPR, unless there are specific legal provisions. In particular, the following possibilities are relevant here:
Consent (Art. 6 (1) (a) GDPR)
Data processing for the performance of contracts (Art. 6 (1) (b) GDPR
Data processing on the basis of weighing of interests (Art. 6 (1) (f) GDPR)
Data processing to fulfill a legal obligation (Art. 6 (1) (c) GDPR)
If personally identifiable information is processed on the basis of your consent, you have the right to revoke this consent at any time with effect for the future.
If we process data on the basis of a weighing of interests, you as the data subject have the right to object to the processing of personally identifiable information, taking into account the provisions of Art. 21 GDPR.
We process the data as long as this is necessary for the respective purpose. Insofar as legal retention obligations exist – under commercial law or tax law, for example – the relevant personally identifiable information shall be stored for the duration of the retention obligation. After expiration of the retention obligation, a check is carried out for whether processing is still necessary. If a requirement no longer exists, the data is deleted.
As a matter of principle, we regularly evaluate data with regard to the need for further processing. Due to the quantity of data, this check is carried out with regard to specific types of data or processing purposes.
You can of course request information about your personally identifiable information stored by us at any time (see below) and, if it is not necessary to retain the data, request that the data be deleted or that its processing be limited.
Public bodies and institutions if there is a legal or official obligation to do so.
In rare individual cases of maintenance or fault analysis, hardware or software support partners of hardware may be commissioned. Contractual provisions on limiting the use of data to proper purposes and confidentiality according to applicable law will be concluded with these partners.
Your personally identifiable information will only be disclosed to third parties if this is necessary for the execution of the contract with you, if the disclosure is permissible on the basis of a weighing of interests within the meaning of Art. 6 (1) (f) GDPR, if we are legally obliged to disclosure, or if you have given consent to disclose your information.
Your personally identifiable information is processed by us exclusively in data centers of the European Union.
The following information is intended to inform you about the content of our newsletter, the subscription, shipping and statistical evaluation procedures, as well as your right of objection. By subscribing to our newsletter, you agree to receive it and to the described procedures.
We send newsletters, emails and other electronic notifications with advertising information (hereinafter “newsletter”) only with the consent of the recipient or legal permission. Insofar as the content of the newsletter is concretely described as part of a subscription, it is relative for the consent of the users. Otherwise, our newsletters only contain information on our agency’s current developments, in-house personal data and reference projects, as well as up-to-date information on developments in the communications industry.
Subscribing to our newsletter is part of a so-called double opt-in procedure. This means that you will receive an email after subscribing requesting you to confirm your subscription. This confirmation is necessary so that nobody can subscribe with an email address that is not their own. Subscription to the newsletter will be logged as proof of the subscription process in accordance with legal requirements. This includes the storage of the subscription and confirmation time as well as the IP address. Similarly, changes to your data stored with MailChimp will be logged.
The newsletter is distributed via “MailChimp,” a newsletter mailing platform by the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
To subscribe to the newsletter, all you have to do is enter your email address. Optionally, we ask that you provide your first and last name. These are only used to personalize the newsletter. For reasons of data minimization, you are only required to specify your email address for the subscription.
The newsletters contain a so-called “web beacon”, which is a single pixel-sized file that communicates with the “MailChimp” server when the newsletter is opened. As part of this communication, technical information, such as information about your browser and your system, as well as your IP address and the time of the communication is collected. This information is used to improve the technical performance of the services based on the technical data or target groups and their reading habits based on their locations (which can be determined using the IP address) or access times. Statistical surveys also include determining whether the newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our desire nor that of “MailChimp” to observe individual users. On the contrary, the evaluations serve to identify the reading habits of our users and to adapt our content to them or to send different content that corresponds to the interests of our users.
You may unsubscribe from receiving our newsletter at any time by revoking your consent. Your consent to the sending of the newsletter via “MailChimp” and the statistical analyses is terminated simultaneously. It is unfortunately not possible to terminate the sending via MailChimp or the statistical evaluation separately. A link to unsubscribe from the newsletter can be found at the end of each newsletter.
In accordance with the provisions of the General Data Protection Regulation (GDPR), which will be applicable as of May 25, 2018, we hereby inform you that the consent to the sending of email addresses is based on Art. 6 (1) lit a. 7 GDPR and Section 7 (2) no. 3 and (3) UWG (German Act Against Unfair Competition). The use of the mailing platform “MailChimp,” the implementation of statistical surveys and analyses, as well as the logging of the subscription process are based on our legitimate interests in accordance with. Art. 6 (1) lit. f GDPR. We are interested in using a user-friendly and secure newsletter system that serves both our business interests and the expectations of our users.
We would like to further point out that you can opt out of the future processing of your personal data in accordance with the statutory requirements found in Art. 21 GDPR at any time. This objection may in particular be made against the processing of the data for direct marketing purposes.
Information about the newsletter as per the template from the lawyer Dr. Thomas Schwenke.
You have the opportunity to apply for jobs advertised by us. For this purpose, you provide us with personally identifiable information, which we process exclusively for the application process. In order to process your application conscientiously, your documents will be stored on the server of DIE WORTWERKSTATT GmbH.
After your data has been saved, our employees have access to your data, which is integrated in the applicant selection and application process. This applies regardless of the channel through which your application entered our system (online or in paper form). We process the data entered on the basis of Section 26 (1) of Germany’s Federal Data Protection Act (FDPA) insofar as this is necessary for the decision on the establishment of an employment relationship.
Your data will be completely deleted three months after receipt at the latest. Application documents submitted in paper form will be returned to you by postal mail.
You have the right to information about the personally identifiable information about your person that we process.
In case of a request for information which is not made in writing, we ask for your understanding that we may then request proof from you that you are the person who you claim to be.
Furthermore, you have the right to correction or deletion or to restriction of the processing of your information to the extent to which you are legally entitled to this.
You also have the right to object to processing of your information within the scope of the statutory provisions. The same applies to your right to data portability.
In particular, you have a right to object under Art. 21 (1) and (2) GDPR to the processing of your data in conjunction with direct advertising if this occurs on the basis of weighing of interests.
To do so, please contact us via email: firstname.lastname@example.org or by mail:
DIE WORTWERKSTATT GmbH
Subject: Revoke data collection WORTWERKSTATT
Postfach 11 55
We have appointed an external data protection officer for our company. You can reach this person using the following contact option:
c/o DIE WORTWERKSTATT GmbH
Postfach 11 55
You have the right to complain to a data protection supervisory authority about the processing of personally identifiable information by us.
We hereby expressly object to the third-party use of contact data, which has been published in accordance with legal notice requirements, for the transmission of unsolicited advertising and information material. The website operators reserve the right to take legal action against unsolicited transmission of advertising and information material, such as spam mails, etc.