I-D-Media_2018_wortmarke-red-300px.png
Data protection

Data protection

Personal data (hereinafter mostly referred to as "data") is processed by us only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there.

According to Article 4(1) of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as "GDPR"), "processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

With the following privacy policy, we inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, insofar as we decide either alone or together with others on the purposes and means of processing. In addition, we inform you below about the third-party components we use for optimization purposes and to increase the quality of use, insofar as third parties process data under their own responsibility.

I. Information about us as the controller

The responsible provider of this website in terms of data protection law is

I-D Media GmbHKaiser-Wilhelm-Ring 2650672 CologneGermany

Phone: 0221-399603-0E-mail: datenschutz@idmedia.com

Data protection officer: Sven Rahn

II Rights of users and data subjects

With regard to the data processing described in more detail below, users and data subjects have the right to

  • to confirmation as to whether data concerning them is being processed, to information about the processed data, to further information about the data processing and to copies of the data (cf. also Art. 15 GDPR);
  • to rectification or completion of incorrect or incomplete data (see also Art. 16 GDPR);
  • to the immediate erasure of the data concerning them (see also Art. 17 GDPR) or, alternatively, if further processing is required in accordance with Art. 17 (3) GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
  • to receive the data concerning them and provided by them and to transfer this data to other providers/controllers (cf. also Art. 20 GDPR);
  • to lodge a complaint with the supervisory authority if they are of the opinion that the data concerning them is being processed by the provider in breach of data protection regulations (see also Art. 77 GDPR).

In addition, the provider is obliged to inform all recipients to whom data has been disclosed by the provider of any rectification or erasure of data or restriction of processing carried out on the basis of Articles 16, 17 (1), 18 GDPR. However, this obligation does not apply if this notification is impossible or involves a disproportionate effort. Notwithstanding this, the user has a right to information about these recipients.

Users and data subjects also have the right to object to the future processing of data concerning them in accordance with Art. 21 GDPR, provided that the data is processed by the provider in accordance with Art. 6 para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permitted.

III. Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of storage no longer applies, the deletion of the data does not conflict with any statutory retention obligations and no other information is provided below on individual processing procedures.

Server data

For technical reasons, in particular to ensure a secure and stable Internet presence, data is transmitted to us or to our web space provider by your Internet browser. With these so-called server log files, the type and version of your Internet browser, the operating system, the website from which you have switched to our Internet presence (referrer URL), the website(s) of our Internet presence that you visit, the date and time of the respective access and the IP address of the Internet connection from which the use of our Internet presence takes place are collected, among other things.

The data collected in this way is stored temporarily, but not together with other data from you. This storage takes place on the legal basis of Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality and security of our website. The data will be deleted after seven days at the latest, unless further storage is required for evidence purposes. Otherwise, the data is excluded from deletion in whole or in part until an incident has been finally clarified.

Contact requests / contact option

If you contact us via contact form or e-mail, the data you provide will be used to process your request. The provision of the data is necessary for processing and answering your request - without their provision, we cannot answer your request or can only answer it to a limited extent. The legal basis for this processing is Art. 6 para. 1 lit. b) GDPR.

Your data will be deleted if your request has been conclusively answered and the deletion does not conflict with any statutory retention obligations, such as in the case of any subsequent contract processing.

Online job applications / publication of job advertisements

We offer you the opportunity to apply to us by e-mail. For these digital applications, your applicant and application data will be collected and processed electronically by us to handle the application process. The legal basis for this processing is Section 26 (1) sentence 1 BDSG in conjunction with Art. 88 para. 1 GDPR.

If an employment contract is concluded after the application process, we will store the data you submitted with your application in your personnel file for the purpose of the usual organizational and administrative process - naturally in compliance with further legal obligations. The legal basis for this processing is also § 26 para. 1 sentence 1 BDSG in conjunction with Art. 88 para. 1 GDPR.

If an application is rejected, we automatically delete the data transmitted to us two months after notification of the rejection. However, the data will not be deleted if the data requires longer storage of up to four months or until the conclusion of legal proceedings due to legal provisions, e.g. due to the burden of proof under the AGG. In this case, the legal basis is Art. 6 para. 1 lit. f) GDPR and Section 24 para. 1 no. 2 BDSG. Our legitimate interest lies in the legal defense or enforcement.

If you expressly consent to your data being stored for a longer period of time, e.g. for your inclusion in a database of applicants or interested parties, the data will be processed further on the basis of your consent. The legal basis is then Art. 6 para. 1 lit. a) GDPR. However, you can of course revoke your consent at any time in accordance with Art. 7 para. 3 GDPR by making a declaration to us with effect for the future.

Registration for newsletters & events

If you would like to receive the newsletter offered on the website or register for an event, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided.

To ensure that the newsletter is sent out with your consent, we use the so-called double opt-in procedure when you register for one of our newsletters via our website. This involves the potential recipient being added to a mailing list. The user then receives a confirmation e-mail to confirm the registration in a legally secure manner. The address will only be actively included in the mailing list if confirmation is given.

We use this data exclusively for sending the requested information and offers by us and our affiliated companies. We do not sell your data to third parties.

Newsletter2Go is used as the newsletter software. Your data will be transmitted to Sendinblue GmbH. Sendinblue GmbH is prohibited from selling your data and using it for purposes other than sending newsletters. Sendinblue GmbH is a German, certified provider that has been selected in accordance with the requirements of the General Data Protection Regulation and the Federal Data Protection Act.

You can find more information here: https://de.sendinblue.com/informationen-newsletter-empfaenger/?rtype=n2go

You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the "Unsubscribe" link in the newsletter.

The data protection measures are always subject to technical updates, which is why we ask you to inform yourself about our data protection measures at regular intervals by consulting our privacy policy.

This data protection declaration was created with the help of the data protection declaration generator of the law firm Weiß & Partner.