Privacy policy

Notice according to Online Dispute Resolution Ordinance

Under current law, we are obliged to inform consumers of the existence of the European Online Dispute Resolution Platform, which can be used to resolve disputes without the need to go to court. The European Commission is responsible for setting up the platform. The European Online Dispute Resolution Platform can be found here: http://ec.europa.eu/odr. Our e-mail address is: info@whitekeyframe.de.

However, we would like to point out that we are not prepared to participate in the dispute resolution procedure within the framework of the European Online Dispute Resolution Platform. Please use our e-mail above to contact us.

Disclaimer – legal information

§ 1 Warning about contents
The free and freely accessible contents of this website were created with the greatest possible care. However, the provider of this website accepts no responsibility for the accuracy and timeliness of the free and freely accessible journalistic advice and news provided. Contributions identified by name reflect the opinion of the respective author and not always the opinion of the provider. The mere fact that the free and freely accessible content is called up does not constitute a contractual relationship between the user and the provider, and the provider has no legal obligation in this respect.

§ 2 External links
This website contains links to third party websites (“external links”). These websites are subject to the liability of the respective operators. When the external links were first set up, the provider checked the external content for possible legal violations. At that time no legal violations were apparent. The provider has no influence on the current and future design and content of the linked sites. The inclusion of external links does not mean that the provider adopts the content behind the reference or link as his own. The provider cannot reasonably be expected to constantly monitor the external links without concrete evidence of legal violations. However, if violations of the law become known, such external links will be deleted immediately.

§ 3 Copyright and ancillary copyrights
The content published on this website is subject to German copyright and ancillary copyright law. Any use not permitted by German copyright and ancillary copyright law requires the prior written consent of the provider or the respective rights holder. This applies in particular to copying, editing, translation, storage, processing or reproduction of contents in databases or other electronic media and systems. Contents and rights of third parties are marked as such. Unauthorized duplication or transmission of individual contents or complete pages is not permitted and punishable by law. Only the production of copies and downloads for personal, private and non-commercial use is permitted.

The presentation of this website in external frames is only allowed with written permission.

§ 4 Special terms of use
Insofar as special conditions for individual uses of this website deviate from the above-mentioned paragraphs, this will be expressly pointed out at the appropriate place. In this case, the special terms of use apply in each individual case.

Privacy

In accordance with the legal requirements of data protection law (in particular the Federal Data Protection Act (BDSG) as amended and the European Data Protection Regulation (DS-GVO)), we would like to inform you about the type, scope and purpose of the processing of personal data by our company. This privacy policy also applies to our websites and social media profiles. With regard to the definition of terms such as “personal data” or “processing”, we refer to Art. 4 DS-GVO.

Name and contact details of the person responsible
Our responsible person(s) (hereinafter “Responsible Person”) within the meaning of Art. 4 no. 7 DS-GVO is

White Keyframe

Managing directors Anil Altinyay and Titian Bormann
e-mail address: info@whitekeyframe.de

Data types, purposes of processing and categories of data subjects

In the following, we inform you about the type, scope and purpose of collecting, processing and using personal data.

1. types of data we process
Usage data (access times, websites visited etc.), inventory data (name, address etc.), contact data (telephone number, e-mail, fax etc.), content data (text entries, videos, photos etc.), communication data (IP address etc.)

2. Purposes of processing under Art. 13 Par. 1 c) DS-GVO
Optimize website technically and economically, make website user-friendly, handle contact requests, provide websites with functions and content,

3. Categories of data subjects under Art. 13 (1) e) DS-GVO
Visitors/users of the website,

The persons concerned are collectively referred to as “users”.

Legal basis for the processing of personal data

In the following we inform you about the legal basis of the processing of personal data:

  1. If we have obtained your consent for the processing of personal data, Art. 6 para. 1 sentence 1 lit. a) DS-GVO is the legal basis.
  2. If the processing is necessary for the performance of a contract or for the implementation of pre-contractual measures taken in response to your request, Art. 6 para. 1 sentence 1 lit. b) DS-GVO is the legal basis.
  3. If the processing is necessary to fulfil a legal obligation to which we are subject (e.g. statutory storage obligations), Art. 6 para. 1 sentence 1 lit. c) DS-GVO is the legal basis.
  4. If the processing is necessary to protect vital interests of the data subject or of another natural person, Art. 6 para. 1 sentence 1 lit. d) DS-GVO is the legal basis.
  5. If the processing is necessary to safeguard our interests or the legitimate interests of a third party and your interests or fundamental rights and freedoms do not prevail in this respect, Art. 6 para. 1 sentence 1 lit. f) DS-GVO is the legal basis.

Disclosure of personal data to third parties and processors

Without your consent, we will not pass on any data to third parties. Should this be the case, however, the transfer will take place on the basis of the aforementioned legal bases, e.g. when data is passed on to online payment providers for the purpose of fulfilling a contract or due to a court order or due to a legal obligation to surrender the data for the purpose of criminal prosecution, to avert danger or to enforce intellectual property rights.
We also use contract processors (external service providers e.g. for web hosting of our websites and databases) to process your data. If data is passed on to the processors within the framework of an agreement for order processing, this is always done in accordance with Art. 28 DS-GVO. We select our processors carefully, check them regularly and have been granted the right to issue instructions regarding the data. In addition, the processors must have taken suitable technical and organizational measures and comply with the data protection regulations according to BDSG n.F. and DS-GVO

Data transfer to third countries

With the adoption of the European Data Protection Basic Regulation (DS-GVO), a uniform basis for data protection in Europe was created. Your data is therefore processed primarily by companies to which the DS-GVO applies. If, however, processing is carried out by services of third parties outside the European Union or the European Economic Area, they must comply with the special requirements of Art. 44 ff. DS-GVO. This means that the processing is carried out on the basis of special guarantees, such as the EU Commission’s officially recognized determination of a level of data protection corresponding to that of the EU or compliance with officially recognized special contractual obligations, the so-called “standard contractual clauses”. In the case of US companies, submission to the so-called “privacy shield”, the data protection agreement between the EU and the USA, fulfils these requirements.

Deletion of data and storage duration

Unless expressly stated in this data protection declaration, your personal data will be deleted or blocked as soon as the purpose for which it was stored no longer applies, unless further storage is necessary for evidence purposes or if there are legal storage obligations to the contrary. This includes, for example, commercial storage obligations for business letters according to § 257 para. 1 HGB (6 years) and tax storage obligations according to § 147 para. 1 AO of receipts (10 years). When the prescribed retention period expires, your data will be blocked or deleted, unless the storage is still necessary for the conclusion or fulfillment of a contract.

Existence of an automated decision making process

We do not use automatic decision making or profiling.

Provision of our website and creation of log files

  1. If you use our website for informational purposes only (i.e. no registration or other transmission of information), we only collect the personal data that your browser sends to our server. If you wish to view our website, we collect the following data:
    • IP address;
    • Internet service provider of the user;
    • Date and time of retrieval;
    • Browser type;
    • Language and browser version;
    • Content of the retrieval;
    • Time zone;
    • Access status/HTTP status code;
    • amount of data;
    • Websites from which the request comes;
    • operating system.
    This data will not be stored together with other personal data of yours.
  2. These data serve the purpose of user-friendly, functional and secure delivery of our website to you with functions and contents as well as their optimization and statistical evaluation.
  3. The legal basis for this is our justified interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) DS-GVO, which also lies in the above-mentioned purposes.
  4. For security reasons, we store this data in server log files for the storage period of days. After this period has elapsed, they are automatically deleted, unless we need to keep them for evidence in case of attacks on the server infrastructure or other legal violations.

Cookies

  1. We use so-called cookies when you visit our website. Cookies are small text files that your internet browser places and stores on your computer. When you visit our website again, these cookies provide information to automatically recognize you. The information obtained in this way serves the purpose of optimising our web offers both technically and economically and of enabling you to access our website more easily and securely. When you call up our website, we will inform you about the use of cookies for the aforementioned purposes and how you can object to or prevent their storage (“opt-out”) by referring to our data protection declaration. Our website uses session cookies, persistent cookies and third-party cookies:- Session cookies: We use so-called cookies to recognize multiple use of an offer by the same user (e.g. if you have logged in to determine your login status). When you visit our site again, these cookies provide information to automatically recognize you. The information obtained in this way is used to optimize our offers and make it easier for you to access our site. When you close the browser or log out, the session cookies are deleted. – Persistent cookies: These are automatically deleted after a specified period of time, which may vary depending on the cookie. You can delete the cookies at any time in the security settings of your browser. – Third-party cookies: You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. However, please note that if you do so, you may not be able to use all the features of this website. Please read more about these cookies in the respective third-party privacy policies.
  2. The legal basis for this processing is Art. 6 Paragraph 1 S. 1 lit. b) DS-GVO, if the cookies are set to initiate a contract, e.g. in the case of orders, and otherwise we have a legitimate interest in the effective functionality of the website, so in this case Art. 6 Paragraph 1 S. 1 lit. f) DS-GVO is the legal basis.
  3. Contradiction and “Opt-Out”: You can generally prevent cookies from being stored on your hard drive by selecting “do not accept cookies” in your browser settings. However, this may result in a functional limitation of our offers. You can object to the use of cookies from third parties for advertising purposes by means of a so-called “opt-out” via this American website (https://optout.aboutads.info) or this European website (http://www.youronlinechoices.com/de/praferenzmanagement/).

Use of the blog functions / comments

  1. You can make public comments in our blog, which contains posts on topics of our website. You can use a pseudonym instead of a real name. Your post will then be published under the pseudonym. It is mandatory to provide your e-mail address, all other information is voluntary.
  2. When you post a comment, we save your IP address with date and time, which we delete after days. The storage serves the legitimate interest of the defense against claims of third parties in the publication of illegal or untrue content by you. We store your e-mail address for the purpose of contacting you in case third parties should legally object to your comments.
  3. The legal basis is Art. 6 (1) sentence 1 lit. b) and f) DS-GVO.
  4. We do not review your comments before publication. In case of complaints by third parties, we reserve the right to delete your comments. We do not pass on the data to third parties unless it is necessary to pursue our claims or if there is a legal obligation to do so (Art. 6 para. 1 p. 1. lit. c) DS-GVO).
  5. The data will be deleted as soon as they are no longer necessary for the purpose of their collection or the execution of the contract because the contract has been terminated.

Contact via contact form / e-mail / fax / mail

  1. When contacting us via contact form, fax, mail or e-mail, your data will be processed for the purpose of processing your contact request.
  2. The legal basis for the processing of the data is Art. 6 Paragraph 1 S. 1 lit. a) DS-GVO if you have given your consent. The legal basis for the processing of data transmitted in the course of a contact inquiry or e-mail, letter or fax is Art. 6 Paragraph 1 S. 1 letter f) DS-GVO. The person responsible has a legitimate interest in the processing and storage of the data in order to be able to respond to user inquiries, to secure evidence for liability reasons and, if necessary, to be able to comply with his or her legal obligations to retain business letters. If the purpose of the contact is the conclusion of a contract, an additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b) DS-GVO.
  3. We may store your information and contact request in our customer relationship management system (“CRM system”) or similar system.
  4. The data will be deleted as soon as they are no longer necessary for the purpose of their collection. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with you has ended. The conversation ends when it is clear from the circumstances that the matter in question has been finally clarified. Inquiries from users who have an account or a contract with us will be stored for a period of two years after termination of the contract. In the case of legal archiving obligations, deletion takes place after their expiry: end of commercial law (6 years) and tax law (10 years) retention obligation.
  5. You have the option of withdrawing your consent to the processing of personal data in accordance with Art. 6 Paragraph 1 S. 1 lit. a) DS-GVO at any time. If you contact us by e-mail, you can object to the storage of your personal data at any time.

Facebook Custom Audiences

  1. We use the “Custom Audiences” remarketing feature of Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA or if you are located in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Facebook is subject to the Privacy Shield Agreement (https://www.privacyshield.gov/EU-US-Framework).
  2. When you visit the Facebook social network or other sites that use this remarketing feature, your interest-based advertisements (“Facebook Ads”) may be displayed. We use the remarketing function to optimize and economically operate our website and to show you advertisements that interest you as much as possible, thus making our website more user-friendly.
  3. When you call up our website, your browser establishes a connection to the Facebook servers. Exactly which data is transferred to Facebook in the process is beyond our knowledge. However, Facebook receives the information that you have called up or clicked on a corresponding advertisement. If you are logged in to Facebook, Facebook can assign this information to your account.
  4. The legal basis for this is our justified interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) DS-GVO, which also lies in the above-mentioned purposes.
  5. Regarding processing by Facebook, please read Facebook’s privacy policy at https://www.facebook.com/policy.php. Specific information and details about the Facebook pixel and its functionality can be found in the Facebook help area:
    https://www.facebook.com/business/help/651294705016616.
  6. The deactivation of the function “Facebook Custom Audiences” is possible for not logged in users here [Facebook Pixel Opt-Out Link of your website] and for logged in users under this link: https://www.facebook.com/settings/?tab=ads#.
  7. Further information on data processing by Facebook is available at https://www.facebook.com/about/privacy.

Amazon Partner Program

  1. We participate in Amazon’s affiliate program (Amazon EU S.à.r.l., Amazon Services Europe S.à.r.l. and Amazon Media EU S.à.r.l., all three located at 5, Rue Plaetis, L-2338 Luxembourg), which allows us to receive advertising cost reimbursements through the placement of advertisements or affiliate links if third parties buy something from Amazon.Amazon compiles statistics and records when an affiliate link is clicked and what is bought. The data is transferred to the USA and evaluated there. To track the orders Amazon may set a cookie on your computer. We have no influence on the data collected by Amazon and can also say nothing about the storage period or the exact scope of the data collection. If you are logged into your Amazon account, Amazon may be able to assign this data to your account. If you do not wish this, you must log out of your account. If necessary, Amazon may pass on your data to authorities or contractual partners.
  2. The legal basis for the processing of your data is our legitimate interest in the analysis, optimization and economic operation of our advertising and website in accordance with Art. 6 Para. 1 S. 1 lit. f) DS-GVO. Amazon is certified according to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
  3. You can object to or prevent the installation of cookies by Amazon in various ways:
    • You can disable cookies in your browser by setting your browser to “do not accept cookies”, which includes third-party cookies;- You can disable interest-based ads on Amazon by clicking this link: https://www.amazon.de/adprefs; – You can disable the personalized ads of third-party advertisers participating in the About Ads advertising self-regulation initiative by clicking https://optout.aboutads.info for US sites or http://www.youronlinechoices.com/de/praferenzmanagement/ for EU sites, but this setting will only last until you delete all your cookies.
  4. Further information can be found in Amazon’s privacy policy at https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010 and for interest-based advertising here: https://www.amazon.de/gp/help/customer/display.html?nodeId=201151440.

YouTube-Videos

  1. We have integrated YouTube videos from youtube.com on our website using the embedded function, so that they can be accessed directly on our website. YouTube belongs to Google Inc, 1600 Amphitheater Parkway, Mountainview, California 94043, USA, EU branch: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. We have embedded the videos in the so-called “enhanced privacy mode” without using cookies to record user behavior in order to personalize video playback. Instead, the video recommendations are based on the video currently playing. Videos played in an embedded player in enhanced privacy mode do not affect which videos are recommended to you on YouTube: When you start a video (click on the video), YouTube is informed that you have accessed the corresponding subpage of our website. The data obtained is transferred to the USA and stored there. This is also done without a user account at Google. If you are logged into your Google account, Google can assign the above data to your account. If you do not wish this, you must log out of your Google account. Google creates user profiles from such data and uses these data for the purpose of advertising, market research or optimization of its websites.
  2. The legal basis for this is our justified interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) DS-GVO, which also lies in the above-mentioned purposes.
  3. You have a right of objection to Google against the creation of user profiles. Therefore, please contact Google directly via the data protection declaration below. You can make an opt-out objection regarding advertising cookies here in your Google account: https://adssettings.google.com/authenticated.
  4. Please see the YouTube Terms of Use at https://www.youtube.com/t/terms and the Google Advertising Privacy Policy at https://policies.google.com/technologies/ads for more information about Google’s use of cookies and its advertising technologies, retention period, anonymization, location data, functionality and your rights. Google’s General Privacy Policy: https://policies.google.com/privacy.
  5. Google is certified according to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework) and therefore obliged to comply with European data protection laws.

Google Maps

  1. We have integrated maps from “Google Maps” (Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA, EU branch: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland) on our website. This allows us to display the location of addresses and directions directly on our website in interactive maps, enabling you to use this tool.
  2. When you access our website, where Google Maps is integrated, a connection to the Google servers in the USA is established. Your IP and location can be transmitted to Google. Google also receives the information that you have called up the corresponding page. This is also done without a user account at Google. If you are logged into your Google account, Google can assign the above data to your account. If you do not want this, you must log out of your Google account. Google creates user profiles from such data and uses these data for the purpose of advertising, market research or optimization of its websites.
  3. The legal basis for this is our justified interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) DS-GVO, which also lies in the above-mentioned purposes.
  4. You have a right of objection to Google against the creation of user profiles. Therefore, please contact Google directly via the data protection declaration below. You can make an opt-out objection regarding advertising cookies here in your Google account:
    https://adssettings.google.com/authenticated.
  5. Please refer to the Google Maps Terms of Use at https://www.google.com/intl/de_de/help/terms_maps.html and the Google Advertising Privacy Policy at https://policies.google.com/technologies/ads for more information on the use of Google cookies and their advertising technologies, storage duration, anonymization, location data, functionality and your rights. Google’s General Privacy Policy: https://policies.google.com/privacy.
  6. Google is certified according to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework) and therefore obliged to comply with European data protection laws.

Presence in social media

  1. We maintain profiles or fan pages in social media in order to communicate with the users connected and registered there and to inform about our products, offers and services. The US providers are certified according to the so-called Privacy-Shield and are therefore obliged to comply with European data protection regulations. When you use and access our profile in the respective network, the respective data protection notices and terms of use of the respective network apply.
  2. We process the data you send us via these networks in order to communicate with you and to answer your messages there.
  3. Die Rechtsgrundlage für die Verarbeitung der personenbezogenen Daten ist unser berechtigtes Interesse an der Kommunikation mit den Nutzern und unsere Außendarstellung zwecks Werbung gemäß Art. 6 Abs. 1 S. 1 lit. f) DS-GVO. Soweit Sie dem Verantwortlichen des sozialen Netzwerks eine Einwilligung in die Verarbeitung Ihrer personenbezogenen Daten erteilt haben, ist Rechtsgrundlage Art. 6 Abs. 1 S. 1 lit. a) und Art. 7 DS-GVO.
  4. The privacy notices, information and opt-out options of the respective networks can be found here:- Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active. • Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy policy/ Opt-Out: http://instagram.com/about/legal/privacy/.

Social-Media-Plug-ins

  1. We use social media plug-ins from social networks on our website. We use the so-called “two-click solution” shariff from c’t or heise.de. When you access our website, no personal data is transmitted to the providers of the plug-ins. Next to the logo or brand of the social network, you will find a slider with which you can activate the plug-in by clicking. After activation, the social network provider is informed that you have called up our website and that your personal data is transmitted to the plug-in provider and stored there. These are so-called Thirdparty Cookies. With some providers such as Facebook and XING, your IP address is anonymized immediately after the collection.
  2. The plug-in provider stores the data collected about the user as user profiles. These are used for the purposes of advertising, market research and/or demand-oriented design of his website. Such an evaluation is carried out in particular (also for users who are not logged in) for the purpose of presenting need-based advertising and to inform other users of the social network about the user’s activities on our website. The user has a right of objection to the creation of these user profiles, whereby one must contact the respective plug-in provider in order to exercise this right.
  3. The legal basis for the use of the plug-ins is our legitimate interest in the improvement and optimization of our website by increasing our profile via social networks as well as the possibility of interaction with you and the users among themselves via social networks in accordance with Art. 6 Para. 1 S.1 letter f) DS-GVO.
  4. We have no influence on the collected data and data processing procedures. We also have no knowledge of the extent of the data collection, the purpose of the processing and the storage periods. We also have no information about the deletion of the collected data by the plug-in provider.
  5. With regard to the purpose and scope of data collection and processing, we refer to the respective data protection declarations of the social networks. In addition, you will also find information on your rights and setting options for the protection of your personal data.

Facebook

  1. We have integrated plug-ins from the social network Facebook.com (company headquarters in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) into our website as part of Shariff’s so-called “two-click solution”, which you can recognize by the Facebook logo “f” or the addition “Like”, “Like” or “Share”.
  2. As soon as you voluntarily activate the Facebook plug-in, a connection is established from your browser to the Facebook servers. During this process, Facebook receives information, including your IP address, that you have accessed our website and transmits this information to Facebook servers in the USA, where this information is stored. If you are logged into your account on Facebook, Facebook can associate this information with your account. If you use the functions of the plug-in, e.g. pressing the “Like” button, this information is also transmitted from your browser to Facebook servers in the USA and stored there and displayed in your Facebook profile and, if applicable, with your friends.
  3. The purpose and scope of data collection and its further processing and use by Facebook, as well as your rights and settings options to protect your privacy, can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/. Data collection for the “Like” button: https://www.facebook.com/help/186325668085084. Your settings regarding the use of your profile data for advertising purposes on Facebook can be managed and objected to here: https://www.facebook.com/ads/preferences/.
  4. If you log off from Facebook before visiting our website and delete your cookies, no data about your visit to our website will be assigned to your profile on Facebook when the plug-in is activated.
  5. You can also prevent the loading of the Facebook Plug-In by so-called “Facebook Blocker”, which you can install as an add-on for your browser: Facebook Blocker for Firefox, Chrome and Opera or 1blocker for Safari, iPad and iPhone.
  6. Facebook has subjected itself to the Privacy Shield and thus ensures that European data protection laws are observed: https://www.privacyshield.gov/EU-US-Framework.

Instagram

  1. We have integrated on our website plug-ins from the Instagram social network (Instagram LLC., 1601 Willow Road, Menlo Park, CA, 94025, USA) as part of Shariff’s so-called “two-click solution”. You can recognize them by the Instagram logo in the shape of a square camera.
  2. If you choose to activate the plug-in, it will connect from your browser to Instagram’s servers. Instagram receives information, including your IP address, that you have visited our site and transmits the information to Instagram servers in the United States, where the information is stored. If you are logged into your account with Instagram, Instagram can associate this information with your account and you can click the Instagram button to share and store the contents of our pages in your Instagram account and display them to your friends there. We have no knowledge of the exact content of the information submitted, how Instagram uses it, or how long it is stored.
  3. If you log out of Instagram before visiting our site and delete your cookies, no information about your visit to our site will be associated with your profile on Instagram when you activate the plug-in.
  4. You can find more information in Instagram’s privacy policy at https://help.instagram.com/519522125107875 and to the privacy settings here: https://help.instagram.com/196883487377501.

Data protection for applications and in the application process

  1. Applications sent electronically or by post to the responsible person will be processed electronically or manually for the purpose of handling the application procedure.
  2. We expressly point out that application documents containing “special categories of personal data” in accordance with Art. 9 DS-GVO (e.g. a photograph which allows conclusions to be drawn about your ethnic origin, religion or marital status) are undesirable, with the exception of any severe disability which you may wish to disclose of your own free will. You should submit your application without these data. This has no effect on your chances of applying.
  3. The legal basis for the processing is Art. 6 Para. 1 S.1 lit. b) DS-GVO and § 26 BDSG as amended.
  4. If an employment relationship is entered into with the applicant after completion of the application procedure, the applicant’s data will be stored in accordance with the relevant data protection regulations. If you are not offered a position after the end of the application process, your submitted letter of application including documents will be deleted 6 months after the rejection has been sent, in order to meet any possible claims and obligations to provide evidence according to AGG.

Rights of the data subject

  1. Objection or revocation against the processing of your dataInsofar as the processing is based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. a), Art. 7 DS-GVO, you have the right to revoke your consent at any time. This does not affect the lawfulness of the processing carried out on the basis of the consent until revocation. Insofar as we base the processing of your personal data on the weighing of interests in accordance with Art. 6 Paragraph 1 S. 1 lit. f) DS-GVO, you may object to the processing. This is the case if the processing is in particular not necessary for the performance of a contract with you, which we will describe in the following description of the functions. In the event of such an objection, we request that you explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the facts of the case and will either stop or adapt the data processing or show you our compelling reasons worthy of protection on the basis of which we will continue the processing. You can object to the processing of your personal data for the purposes of advertising and data analysis at any time. You can exercise the right of objection free of charge. You can inform us about your objection to the processing of your personal data under the following contact details: White Keyframe
    Managing Director Anil Altinyay and Titian Bormann
    E-Mail-Adresse: info@whitekeyframe.de
  2. Right to information
    You have the right to ask us to confirm whether personal data concerning you is being processed. If this is the case, you have a right to information about your personal data stored with us in accordance with Art. 15 DS-GVO. This includes, in particular, information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the origin of your data, unless it was collected directly from you.
  3. Right of rectification
    You have the right to correct incorrect or complete correct data in accordance with Art. 16 DS-GVO.
  4. Right to deletion
    You have the right to have your data stored by us deleted in accordance with Art. 17 DS-GVO, unless legal or contractual retention periods or other legal obligations or rights to further storage conflict with this.
  5. Right to limitation
    You have the right to request a restriction on the processing of your personal data if one of the conditions in Art. 18 Paragraph 1 letters a) to d) DS-GVO is fulfilled:
    • If you dispute the accuracy of the personal data concerning you for a period that allows the person responsible to verify the accuracy of the personal data;• the processing is unlawful and you refuse to delete the personal data and instead request the restriction of the use of the personal data; • the data controller no longer needs the personal data for the purposes of the processing, but you need it in order to assert, exercise or defend legal claims, or • if you have lodged an objection to the processing pursuant to Art. 21 para. 1 DPA and it has not yet been established whether the legitimate reasons of the controller outweigh your reasons.
  6. Right to data transferability
    You have a right to data transfer in accordance with Art. 20 DS-GVO, which means that you can receive the personal data we have stored about you in a structured, common and machine-readable format or request that it be transferred to another responsible party.
  7. Right to appeal
    You have a right to complain to a regulatory body. As a rule, you can refer to the supervisory authority, in particular in the Member State in which you are resident, your place of work or the place of the suspected infringement.

Data security

In order to protect all personal data transmitted to us and to ensure that the data protection regulations are observed by us and our external service providers, we have taken appropriate technical and organizational security measures. Therefore, among other things, all data between your browser and our server is transmitted in encrypted form via a secure SSL connection.