Data protection statement for visitors of this website

Please read this privacy policy carefully. It applies to all services, additional services, programs, information, advertising measures and products provided on apsolut's website or in our other publications.

If we want to be successful in our business activities, we depend on the trust of our users. Data protection is therefore of the utmost importance for apsolut, our customers and cooperation partners. The obligations regarding user data protection set out below form the basis of apsolut's business activities at all times.

Further data protection information for

§1 Information on the collection of personal data

(1) In the following, we inform you about the collection of personal data when using our website. Personal data are all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.

(2) In accordance with Art. 4 Para. 7 EU General Data Protection Regulation (GDPR), the responsible party is

apsolut GmbH
Oelmühlenstr. 30
33604 Bielefeld
Germany

e-mail: info@ap-solut.com

(see our imprint).

You can reach our data protection officer at:

Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
Germany

e-mail: kontakt@buglundkollegen.de

(3) When you contact us by e-mail or via contact form, we will store the data you provide (your e-mail address, if applicable, your name and your telephone number in order to answer your questions. The legal basis for the processing of the data is our legitimate interest in answering your request in accordance with Art. 6 para. 1 lit. f GDPR. If your contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR. When received in this context, we delete incoming data after storage is no longer required or restrict its processing if required for statutory retention.

(4) If we use contracted service providers for individual functions of our offer or wish to use your data for advertising purposes, we will inform you in detail about the respective processes below. We will also state the specified criteria for the storage period.

§2 Your rights

You have the following rights towards us with regard to your personal data:

(1) Right to information according to Art. 15 GDPR: The person concerned may request confirmation from the person responsible as to whether their personal data are being processed. If this is the case, the person concerned has the right to certain information regarding this personal data.

(2) Right of correction according to Art. 16 GDPR: The person concerned   has the right to request the immediate rectification of incorrect personal data concerning him/her by the person responsible. Taking into account the purposes of the data processing, the person concerned has the right to request the completion of incomplete personal data.

(3) Right of deletion in accordance with Art. 17 GDPR: The person concerned has the right to demand from the person responsible that personal data relating to him/her be deleted immediately, and the person responsible is in principle obliged to delete personal data immediately. However, there are personal data that are exempt from this deletion obligation and where we are even obliged ny other laws to continue storing them.

(4) Right to restricted data processing in accordance with Art. 18 GDPR: The data subject shall have the right to request the person responsible to restrict processing, provided that certain prerequisites are met.

(5) Right of objection according to Art. 21 GDPR: The person concerned has the right to object at any time, for any particular reasons, to the processing of his/her personal data which has been carried out on the basis of Article 6 Para. 1 letter e of the GDPR (data processing in the public interest) and Article 6 paragraph 1 letter f of the GDPR (data processing based on a balancing of interests); this also applies to profiling according to Art. 4 No. 4 GDPR based on this provision.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

If you wish to exercise your right of objection, simply send an e-mail to privacy@ap-solut.com

 

(6) Right of revocation in the case of consent in accordance with Art. 7 para. 3 GDPR: The person concerned has the right to revoke his or her consent at any time. Revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.

(7) Rightof complaint to the competent supervisory authority: If you are of the opinion that our processing of your personal data is unlawful or that we violate data protection law for other reasons, you can file a complaint to our competent supervisory authority.

The competent supervisory authority for data protection issues in North Rhine-Westphalia can be found under the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

§3 Hosting

(1) The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail dispatch, security services as well as technical maintenance services which we use for the purpose of operating this online offer.

(2) In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, metadata and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of this online offer in accordance with Art. 6 Para. 1 lit. f GDPR in conjunction with Art. 28 GDPR (conclusion of a processing agreement).

§4 Visiting the website

When using the website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website and to ensure its stability and security:

  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access Status/HTTP Status Code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and its interface
  • Language and version of the browser software

We collect and store this data for a limited period of time due to our legitimate interest in order to derive personal data in the event of unauthorized access or attempts to access local servers (Art. 6 para. 1 lit. f GDPR).

§5 Use of cookies

On our websites, we use cookies and similar functions to process terminal device information and personal data of our users. Cookies are small text files that are stored on your hard drive in accordance with the browser you are using, and which provide the party setting the cookie (in this case, us) with certain information. They serve to make the Internet offer as a whole more user-friendly and effective.

We distinguish between three categories of cookies: essential cookies, without which the functionality of our website would be limited, and optional cookies for the integration of external elements, as well as the statistical analysis of cookies. Information on the individual functions, the recipients of the data and the storage duration can be found under "Privacy settings".

The use of essential cookies is possible without the consent of the website visitor and is subject to a legitimate interest of operating and optimizing our website and services according to Art. 6 (1) lit f GDPR. The use of optional and analytical cookies is subject to the consent of the website visitor pursuant to Art. 6 para. 1 lit a GDPR. This consent is voluntary, not required for the use of our website and can be revoked at any time under "Privacy settings". You can accept, reject or consent to all or individual functions at the click of a button in the cookie settings under "Privacy settings".

For details on the essential cookies used on this website, please refer to the following table:

Name Technical name Expiration in days Description
PHP SESSION ID PHPSESSID It contains a reference to the current session.
Contao CSRF Token csrf_contao_csrf_token It is used to secure the website against cross-site request forgery attacks.

§6 Use of Google Analytics

(1) This website uses Google Analytics, a web analysis service of Google Inc. ("Google"). Google Analytics uses so-called "cookies". The information generated by the cookie about your use of this website is usually transferred to a Google server within the EU and stored there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on the website activities and to provide further services to the website operator in connection with the use of the website and internet usage.

(2) The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.

(3) You can also change the use of cookies by adjusting your browser software accordingly or in the cookie settings.

(4) This website uses Google Analytics with the extension "anonymizeIp". This allows IP addresses to be processed in a shortened form, thus preventing the possibility of personal references. If the data collected about you contains a personal reference, this will be excluded immediately and the personal data will be deleted immediately.

(5) We use Google Analytics to analyse and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user. The legal basis for the use of Google Analytics is provided in Art. 6 para. 1 lit. a GDPR.

(6) Third Party Provider Information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

General information on data protection: https://policies.google.com/privacy?hl=de&gl=de#infocollect

(7) This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. You can deactivate the cross-device analysis of your usage in your customer account under "My Data", "Personal Data".

§7 Use of Matomo

(1) This website uses the web analytics service Matomo to analyse and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. The legal basis for the use of Matomo is Art. 6 para. 1 lit. a GDPR.

(2) Cookies are stored on your computer for this evaluation. The information collected in this way is stored by the responsible person exclusively on his server in Germany.

(3) This website uses Matomo with the extension "AnonymizeIP". Thus IP-addresses are processed in a shortened form, a direct personal relation can be prevented. The IP address transmitted by your browser via Matomo is not merged with other data collected by us.

(4) The program Matomo is an open source project. Information of the third party provider on data protection can be found at https://matomo.org/privacy-policy/.

(5) You can also change the use of cookies by adjusting your browser software accordingly or in the cookie settings.

§8 Integration of YouTube videos

(1) We have integrated YouTube videos into our online presence, which are stored at http://www.YouTube.com and can be played directly from our website. These are all integrated in "extended privacy mode", which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you give your consent and play the videos will the data mentioned in Paragraph 2 be transferred. We have no influence on this data transfer.

(2) By visiting the website, YouTube receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in §4 of this statement is transmitted. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want your data to be synchronised with your YouTube profile, you have to log out before activating the button. YouTube stores your data as user profiles and uses them for the purpose of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing need-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. The legal basis for the use of YouTube is Art. 6 para. 1 lit. a GDPR.

(3) Third Party Provider Information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland.

(4) You can also change the use of cookies by adjusting your browser software accordingly or in the cookie settings.

(5) Further information on the purpose and scope of data collection and its processing by the provider can be found in the provider's data protection declarations. There you will also find further information on your rights and settings to protect your privacy: https://policies.google.com/privacy?hl=en-US/intl/de/policies/privacy.

§9 Integration of Vimeo videos

(1) We have included Vimeo videos in our online presence, which are stored at http://www.vimeo.com and can be played directly from our website. [These are all integrated in "extended data protection mode", which means that no data about you as a user is transferred to Vimeo if you do not play the videos. Only when you play the videos will the data mentioned in Paragraph 2 be transferred. We have no influence on this data transfer].

(2) By visiting the website, Vimeo receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned in §4 of this statement will be transmitted. This occurs regardless of whether Vimeo provides a user account through which you are logged in or whether no user account exists. Vimeo stores your data as user profiles and may use them for the purposes of advertising, market research, and/or designing its website to meet your needs. Such evaluation is performed in particular (even for users who are not logged in) for the purpose of providing needs-based advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of these user profiles, although you must contact Vimeo to exercise this right.

(3) Further information on the purpose and scope of data collection and processing by Vimeo can be found in the privacy policy. There you will also find further information about your rights and setting options to protect your privacy: https://vimeo.com/privacy. Vimeo also processes your personal data in the USA. In order to establish an appropriate level of data protection, we have agreed to standard data protection clauses with Vimeo. The legal basis for the use of Vimeo is Art. 6 para. 1 lit. a GDPR.

§10 Integration of Google Maps

(1) On this website we use the service of Google Maps. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently. These are integrated in the "extended data protection mode", which menas that no data about you as a user is transferred to Google if you do not retrieve the maps. Only when you give your consent and retrieve the maps will the data mentioned in paragraph 2 be transferred. We have no influence on this data transfer.

(2) By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned in § 4 of this statement will be transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want, your data to be synchronised to your Google profile, you must log out before activating the button. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or demand driven design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide need-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. The legal basis for the use of Google Maps is Art. 6 para. 1 lit. a GDPR.

(3) Information of the third party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

For further information on the purpose and scope of data collection and its processing by the provider, please refer to the provider's privacy policy. There you will also find further information on your rights and settings to protect your privacy: http://www.google.de/intl/de/policies/privacy.

§11 Use of OpenStreetMap

(1) We use a map section from OpenStreetMap (https://www.openstreetmap.org/#map=3/2.70/94.75) on our website to show you the route to the company location and to make it easier for you to plan your journey.

(2) OpenStreetMap is an open source mapping tool. In order for the map to be displayed to you, your IP address is forwarded to OpenStreetMap. You can see how OpenStreetMap stores your data on the OpenStreetMap data protection page at https://www.openstreetmap.org/#map=3/2.70/94.75.

(3) Legal basis for the use of OpenStreetMap is Art. 6 para. 1 lit. a GDPR.

§12 Use of Google reCAPTCHA

(1) The purpose of reCAPTCHA is to check whether the data input on our websites (e.g. in a contact form) is done by a human being or by an automated program. For this purpose, reCAPTCHA analyses the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For analysis purposes, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. The data processing is based on art. 6 para. 1 lit. a GDPR

(2) Information of the third party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

(3) Further information on the purpose and scope of data collection and its processing by the provider can be found in the provider's data protection declarations. There you will also find further information on your rights in this regard and setting options to protect your privacy: http://www.google.de/intl/de/policies/privacy.

(4) You can also change the use of cookies by adjusting your browser software accordingly or in the cookie settings.

§13 Use of Google Tag Manager

(1) We use the Google Tag Manager on our website.

(2) The Google Tag Manager allows us to integrate various codes and services on our website in an ordered and simplified way. The Google Tag Manager implements the tags or "triggers" the integrated tags. When triggering a tag, Google may process information (including personal data) and process it.

In particular, the following personal data is processed by the Google Tag Manager:

  • Online tags (including cookie identifiers)
  • IP address

(3) You can find more detailed information about the Google Tag Manager on the websites https://www.google.de/tagmanager/use-policy.html and https://www.google.com/intlde/policies/privacy/index.html under the section "Data we receive as a result of your use of our services".

(4) Furthermore, we have concluded a contract with Google for the use of the Google Tag Manager for order processing. Google processes the data on our behalf to trigger the deposited tags and to display the services on our website. Google may transfer this information to third parties if required by law or if third parties process this data on behalf of Google. The legal basis for the use of Google Tag Manager is Art. 6 para. 1 lit. f GDPR.

(5) If you have deactivated individual tracking services (e.g. by rejecting a cookie), the deactivation will remain in effect for all tracking tags concerned which are integrated by the Google Tag Manager.

(6) By integrating the Google Tag Manager, we pursue the purpose of being able to integrate various services in a simplified and clear manner. Furthermore, the integration of the Google Tag Manager optimizes the loading times of the different services.

(7) You can also change the use of cookies by adjusting your browser software accordingly or in the cookie settings.

(8) Third party provider information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland.

§14 Newsletter

(1) With your consent you can subscribe to our newsletter, by which we inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent.

(2) We use the so-called double opt-in procedure to subscribe to our newsletter. This means that after your registration, we will send you an e-mail to the e-mail address provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP address and the time of registration and confirmation. The purpose of this procedure is to be able to prove your registration and, if necessary, to clarify a possible misuse of your personal data.

(3) The only mandatory information for sending the newsletter is your email address. The provision of further, separately marked data is voluntary and is used to address you personally. After your confirmation we will save your e-mail address for the purpose of sending the newsletter. The legal basis is Art. 6 para. 1 lit. a GDPR.

(4) You can revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can revoke your consent by clicking on the link provided in each newsletter e-mail, or by sending an e-mail to newsletter@ap-solut.com or by sending a message to the contact details provided in the imprint.

§15 CleverReach

(1) We use CleverReach for sending newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede. With this service, we can organise and analyse the newsletters to be sent out. The data you enter to receive the newsletter, such as your e-mail address, is stored on the CleverReach servers. Server locations are Germany or Ireland.

(2) Sending the newsletter with CleverReach allows us to analyze the behavior of the newsletter recipient. Among other things, the analysis shows how many recipients have opened their newsletter and how often links in the newsletter were clicked. CleverReach supports conversion tracking in order to analyze whether a previously defined action, such as a product purchase, has taken place after clicking on a link. Details about data analysis by CleverReach can be found at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking.

(3) The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your already given consent at any time. For the revocation, either send an informal notification by e-mail or click the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

(4) If you do not wish to receive an analysis by CleverReach, you must unsubscribe from the newsletter. To unsubscribe, simply send us an informal e-mail or click the "Unsubscribe" link in the newsletter.

(5) Data entered to set up the subscription will be deleted from our servers and the servers of CleverReach in case of unsubscription. Should this data have been transferred to us for other purposes and elsewhere, it will remain with us.

(6) Details of the CleverReach Privacy Policy can be found at: https://www.cleverreach.com/de/datenschutz.

(7) Order Processing: In order to fully comply with the statutory data protection requirements, we have concluded an Order Processing Agreement with CleverReach.

§16 Online presence in social media

We maintain online presences within social networks in order to inform the users active there about our services and to communicate directly via the platforms, if they are interested. We are currently represented in the following networks:

All of our social media channels can only be accessed by website visitors via an external link. We do not use any plug-ins or other interfaces on our website that offer the respective networks for embedding the offers on websites.

We have no influence on the data collection and its further use by the social networks. For example, we have no knowledge of the extent to which, where and for how long the data is stored, the extent to which the networks comply with existing deletion obligations, what evaluations and links are made with the data and to whom the data is passed on. We therefore explicitly point out that user data (e.g. personal information, IP address) is stored and used for business purposes by the network operators in accordance with their data usage guidelines.

We process users' data in social media insofar as they contact and communicate with us via comments or direct messages. The legal basis for the processing of user data is Art. 6 para. 1 lit. b and f GDPR.

Within our online offering, we do not offer any integrated functions and contents of Twitter Inc. 795 Folsom Street, Suite 600, San Francisco, CA 94107 or 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. The Twitter channels are only accessible via an external link. If visitors to the website are members of the Twitter platform, Twitter can link the user to his/her social media profile, if he/she visits our Twitter profile while logged in. Twitter is certified under the Privacy Shield Agreement and thus complies with the European data protection laws. We would like to point out that we have no influence on the content, scope of use, or the data collected by Twitter Inc. For further information concerning this matter, we refer you to the pages of Twitter Inc. at http://twitter.com/privacy. Furthermore, we would like to point out that you can make appropriate changes to your Twitter account to protect your privacy.

No functions and contents within our online offering are integrated with Xing, offered by New Work SE, Dammtorstraße 29-32, 20354 Hamburg, Germany. The Xing channels can only be accessed via an external link. If visitors to our website are members of the Xing platform, Xing can assign can link the user's social media profile to his/her Xing profile, if he/she is logged in. We would like to point out that we have no influence on the content, scope of use of the data collected by Xing. For further information on this matter, please go to the Xing privacy policy: https://www.xing.com/app/share?op=data_protection.

Within our online presence, no functions and contents of the LinkedIn service, offered by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, are integrated. The LinkedIn channels can only be accessed via an external link. If visitors to our website are members of the LinkedIn platform, LinkedIn can link the user to his/her LinkedIn profile if he/she is logged in. We would like to point out that we have no influence on the content, scope of use of the data collected by LinkedIn. For further information in this regard, we refer to the LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.

You can access the social media network Facebook via external links on our website. All functions in the social media network are offered by Facebook, 4 Grand Canal Square, Dublin 2, Ireland. The Facebook channels are only accessible via an external link. If you are logged into Facebook with your own profile and access our social media channel, Facebook can associate your visit with your logged in profile. If you do not want your account to be associated with your IP address, please log out of your Facebook account before using our website.

For more information about the processing of your data, please refer to Facebook's privacy policy: https://facebook.com/privacy/explanation and to our data policy for visitors* to the apsolut Facebook page.

§17 Registration for events

A registration form for events and webinars is available on our website. If you use it to register for an event/webinar, we will process the data you provide in the registration form for the purpose of registration and communication with you in accordance with Art. 6 para. 1 lit a GDPR (consent). Name, e-mail and company name will be saved. All other data are voluntary fields and can be entered optionally. Name and e-mail address will be forwarded to a software platform for online webinars and stored there for the duration of the event and subsequent evaluation of the participation.

§18 Chatbot

The apsolut group's product portfolio includes the development and implementation of chatbots using the SAP Conversational AI product. To illustrate what such a chatbot might look like for a customer, an example of such a chatbot is used in the SAP CAI Solutions and Robotic Process Automation areas (in the Technologies section). The chatbot answers simple questions about apsolut group's RPA and CAI services.

When you (as a website visitor) contact the chatbot, integrated on this page, the chatbot stores the communication content. This communication content is deleted after 3 years at the latest.

All data processed via the chatbot is transmitted in encrypted form to a data center provided by SAP. The website operator (SAP Cloud Services) is solely responsible for data processing.

The Chatbot is used on the basis of our legitimate interest in the simplest and most effective communication possible with our website visitors (Art. 6 para. 1 lit. f GDPR). If personal data such as your name or your e-mail address is requested in the chat process, this data processing is based on your consent in accordance with Art. 6 Para. 1 lit. a GDPR.

For further information we refer to the data protection agreement: AGREEMENT ON DATA PROCESSING FOR SAP CLOUD SERVICES

§19 Processing of your data in the context of automated decision-making / profiling

In principle, you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. In particular, these decisions may not regularly be based on special categories of personal data pursuant to Art. 9 (1) GDPR. We do not use any corresponding decision-making processes within the scope of our website and the associated data processing.

For candidates

If we want to operate successfully, we are dependent on the trust of our customers, employees and potential future employees. Data protection is therefore of the utmost importance to apsolut, our customers, and our cooperation partners. The obligations below regarding the protection of your applicant data form the basis of apsolut's business activities at all times.

§1 Information on the collection of personal data

(1) We hereby inform you about the processing of your personal data by apsolut GmbH and the rights you are entitled to under data protection law.

(2) The person responsible in accordance with Art. 4 para. 7 EU General Data Protection Regulation (GDPR) is

apsolut GmbH
Oelmühlenstr. 30
33604 Bielefeld
Germany

e-mail: info@ap-solut.com

(see our imprint).

You can reach our data protection officer at:

Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
Germany

e-mail: kontakt@buglundkollegen.de

§2 Your rights

You have the following rights against us with regard to your personal data:

(1) Right to information in accordance with Art. 15 GDPR: The person concerned may request confirmation from the person responsible as to whether personal data relating to him/her is being processed. If this is the case, the person concerned has a right to access certain information concerning this personal data.

(2) Right of correction according to Art. 16 GDPR: The person concerned shall have the right to request the rectification of incorrect personal data concerning him/her by the data controller without delay. Taking into account the purpose of the processing, the person concerned has the right to request the completion of incomplete personal data.

(3) Right of deletion in accordance with Art. 17 GDPR: The person concerned has the right to demand from the person responsible that personal data relating to him/her be deleted immediately, and the person responsible is in principle obliged to delete personal data immediately. However, there are personal data that are exempt from this obligation to delete and where we are even obliged by other laws to continue storing them.

(4) Right to limit processing in accordance with Art. 18 GDPR: The data subject shall have the right to request the person responsible to restrict processing, provided that certain conditions are met.

(5) Right of objection according to Art. 21 GDPR: The data subject has the right to object at any time, for reasons arising from his or her particular situation, to the processing of personal data relating to him or her which is carried out on the basis of Article 6 paragraph 1 letter e GDPR (data processing in the public interest) and Article 6 paragraph 1 letter f GDPR (data processing based on a balancing of interests); this also applies to profiling within the meaning of Article 4 No. 4 GDPR based on this provision.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

If you wish to exercise your right of objection, simply send an e-mail to career@ap-solut.com.

(6) Right of revocation in the case of consent in accordance with Art. 7 para. 3 GDPR: The person concerned has the right to revoke his or her consent at any time. Revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

(7) Right of complaint to the authority: If you believe that the processing of personal data relating to you by us is unlawful or if we breach data protection law for other reasons, you may complain to our competent supervisory authority.

You can find the supervisory authority responsible for North Rhine-Westphalia for data protection issues under the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

§3 Processing scope

(1) Categories of personal data

Your personal data is generally collected directly from you as part of the recruitment process, in particular from the application documents, the job interview and from the personnel questionnaire. 


We also receive data from third parties (e.g. Flynn, Agentur für Arbeit).

We also process personal data that we have obtained with permission from publicly accessible sources (e.g. professional networks). 


In the context of the application procedure, we process the following personal data:

  • Your master data (such as first name, last name, name affixes, date of birth) 

  • If necessary, work permit / residence permit 

  • Contact information (such as private address, (mobile) phone number, e-mail address), 

  • Skill data (e.g. special knowledge and skills) 


  • Curriculum vitae data (e.g. school education, vocational training, work experience, language skills)
  • Documents related to applications (application photos, cover letter, certificates, references, work samples, etc.)

(2) Storage duration

If you are hired, we will transfer your application documents into your personnel file. After termination of the employment relationship, we will continue storing those personal data we are legally obliged to keep. This regularly results from legal obligations to provide evidence and to retain data, which are regulated in the German Commercial Code and the German Fiscal Code, among others. The storage periods thereafter are up to ten years. In addition, personal data may be stored for the time during which claims can be made against us (statutory limitation period of three or up to thirty years).

In the event of a rejection, your application documents will be deleted no later than six months after completion of the application process, unless you have given us your consent to longer storage (talent pool).

(3) Processing purposes and legal basis

We process your personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR).

The primary purpose of data processing is to establish the employment relationship. The primary legal basis for this is Art. 88 para. 1 GDPR in conjunction with § 26 para. 1 FDPA.

our data will be processed exclusively for the purpose of filling the specific position for which you have applied.

If you would like to be included in our talent pool in the event of a rejection, we require a declaration of consent from you.

If your application is to be considered for other open positions in the company, we need a declaration of consent from you.

(4) Obligation to provide data

In order to be able to consider your application, we need the personal data from you that are necessary for the decision on the establishment of the employment relationship.

(5) Existence of an automated decision making process

The processing of data relating to you by us is not related to automated decision making or profiling.

§4 Transfer and foreign reference

(1) Recipient / categories of recipients

Within our company, only those persons and positions (e.g. department) receive your personal data that are involved in the decision about your employment.

In the course of the necessary business processes and application procedures, our specialist departments are supported in fulfilling their tasks by using appropriate software solutions such as Softgarden (further information).

(2) Intention of the transfer to a third country

We do not transfer your applicant data to third countries.

For customers

If we want to run our business successfully, we are dependent on the trust of our customers. Data protection is therefore of the utmost importance to apsolut, our customers, and our cooperation partners. The obligations set out below with regard to data protection in the context of customer relationships form the basis of apsolut's business activities at all times.

§1 Information on the collection of personal data

(1) In the following we provide information about the collection of personal data in the context of maintaining customer relations. Personal data are all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.

(2) The person responsible in accordance with Art. 4 para. 7 EU General Data Protection Regulation (GDPR) is

apsolut GmbH
Oelmühlenstr. 30
33604 Bielefeld
Germany

e-mail: info@ap-solut.com

(see our imprint).

You can reach our data protection officer at:

Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
Germany

e-mail: kontakt@buglundkollegen.de

§2 Your rights

You have the following rights against us with regard to your personal data:

(1) Right to information in accordance with Art. 15 GDPR: The person concerned may request confirmation from the person responsible as to whether personal data relating to him/her is being processed there. If this is the case, the person concerned has a right to access information about certain information concerning this personal data.

(2) Right of correction according to Art. 16 GDPR: The person concerned shall have the right to request the rectification of incorrect personal data concerning him/her by the person responsible without delay. Taking into account the purposes of the processing, the person concerned has the right to request the completion of incomplete personal data.

(3) Right of deletion in accordance with Art. 17 GDPR: The person concerned has the right to demand from the person responsible that personal data relating to him/her be deleted immediately, and the person responsible is in principle obliged to delete personal data immediately. However, there are personal data that are exempt from this obligation to delete and where we are even obliged by other laws to continue storing them.

(4) Right to limit processing in accordance with Art. 18 GDPR: The person concerned shall have the right to request the person responsible to restrict processing, provided that certain conditions are met.

(5) Right of objection according to Art. 21 GDPR: The person concerned has the right to object at any time, for reasons arising from his or her particular situation, to the processing of personal data concerning him or her that is carried out on the basis of Article 6 paragraph 1 letter e of the GDPR (data processing in the public interest) and Article 6 paragraph 1 letter f of the GDPR (data processing based on a balancing of interests); this also applies to profiling within the meaning of Article 4 No. 4 GDPR based on this provision.

If you object, we will no longer process your personal data unless we can prove compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

If you wish to exercise your right of objection, simply send an e-mail to privacy@ap-solut.com

(6) Right of revocation in the case of consent in accordance with Art. 7 para. 3 GDPR: The person concerned has the right to revoke his or her consent at any time. Revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

(7) Right of complaint to the authority: If you believe that the processing of personal data relating to you by us is unlawful or if we violate data protection law for other reasons, you may complain to our competent supervisory authority.

You can find the supervisory authority responsible for North Rhine-Westphalia for data protection issues under the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

§3 Processing scope

(1) Categories of personal data

We process the following personal data as part of and to initiate a contract:

  • Contact data (e.g. first and last names of the current and, if applicable, previous contact persons as well as name extensions, company name) and address of the customer (employer, mobile, landline telephone number with extension, e-mail address, fax number)
  • Job-related data (e.g. function in the company, department)
  • If applicable, date of birth, contact picture, length of service or similar (for customer service purposes, if you provide us with this provide information on your own initiative)

(2) Data source

We process personal data that we receive from our customers and business partners in the course of our business relations. In addition, we process personal data which we obtain with permision from publicly accessible sources (e.g.: Internet, commercial and association register, press) or which are legitimately transmitted to us by other companies or third parties.

(3) Storage duration

We process and store your personal data as long as it is necessary to fulfill our contractual and legal obligations. We will of course comply with our obligations to delete personal data even if not explicitly requested by our customers. Such obligations result, for example, from Art. 17 GDPR. Deletion is then required, inter alia, if the personal data are no longer necessary for the purposes for which they were collected or otherwise processed.

However, there are personal data which are exempt from this deletion obligation and where we are even obliged by other laws to continue storing them. For example, there are obligations to store data according to § 257 German Commercial Code (HGB) and § 147 German Fiscal Code (AO). We only store this data to comply with legal storage obligations. Upon expiration of the retention periods, we will immediately delete this data without you having to request that we do so.

(4) Processing purposes and legal basis

We process your personal data to initiate or execute our contractual relationship. This is necessary to comply with the obligations arising from our business relationship. The processing basis for this is Art. 6 para. 1 lit. b GDPR

It is in apsolut's interest to maintain the customer relationship with you and to send you information and offers about our products and services. We therefore process your data in accordance with Art. 6 Para. 1 lit. a GDPR and §7 Para. 3 UWG in order to send you the relevant information and offers by e-mail and to conduct webinars, online meetings, and customer satisfaction surveys. If you do not wish for this, you can object to the use of your personal data for the purpose of direct advertising at any time. If you object, we will no longer process your data for this purpose.

If you have given us your consent to process personal data for specific purposes, the lawfulness of this - targeted - processing is given on the basis of your consent in accordance with Art. 6 Para. 1 letter a GDPR. A given consent can be revoked at any time. The revocation of a consent is only effective for the future and does not affect the legality of the data processed until revocation. Regarding the participation in webinars or online meetings, for example, the following applies: We only use the audio or video recording function and the use of functions that are not necessary for a webinar or meeting on the legal basis of the consent of the persons concerned in accordance with Art. 6 Para. 1 letter a GDPR.

The declaration of consent is obtained in advance. Should it be necessary, we will process your data beyond the actual fulfillment of the contract to protect legitimate interests of us or third parties, in accordance with Art. 6 para. 1 lit. f GDPR. This is necessary, for example, for the assertion of legal claims and defence in legal disputes, for the prevention or investigation of criminal offences for consultation and data exchange with credit agencies or for measures for business management and further development of services and products.

Under certain circumstances, the provision of personal data is required by law or contract. Processing is then required in accordance with Art. 6 para. 1 lit. c GDPR to fulfil a legal obligation to which we are subject.

(5) Obligation to provide and possible consequences of nonprovision

Within the scope of our business relations, you are obliged to provide us with those personal data which are necessary for the initiation, execution and termination of a business relationship and for the fulfilment of the associated contractual obligations or which we are legally obliged to collect. Without this data we are regularly not in a position to conclude, execute or terminate a contract with you.

(6) Existence of automated decision making

The processing of data relating to you by us is not related to automated decision making or profiling.

§4 Transfer and foreign reference

(1) Recipient/ categories of recipients

The processing of your data by us is primarily for the purpose of fulfilling and performing our contractual obligations, in accordance with Art. 6 para. 1 lit. b GDPR. For this purpose we also use mail-order companies, credit agencies, lawyers, tax consultants and other business partners necessary for the fulfilment of the contract. In this context, personal information such as name, address, date of birth, invoices and other invoice and financial data such as tax number, commercial register number, etc. are forwarded.

A transfer to third parties is only possible if:

  • you have given your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR;
  • this is required in accordance with Art. 6 para. 1 lit. b GDPR for the performance/fulfillment of a contract with you or
  • in the event of a legal obligation to pass on the data pursuant to Art. 6 para. 1 lit. c GDPR.

In the course of the necessary business processes, our specialist departments are supported in fulfilling their tasks by using appropriate software solutions. Data in these software solutions is stored and processed outside apsolut GmbH's data centers. To protect the data to be processed, the necessary data protection agreements have been concluded with all providers/service providers.

(2) Intention of the transfer to a third country

Not performed.

For survey participants

If we want to run our business successfully, we are dependent on the trust of our customers and potential customers. Data protection is therefore of the utmost importance to apsolut and our cooperation partners. The obligations regarding data protection set out below form the basis of apsolut's business activities at all times.

§1 Information on the collection of personal data

(1) In the following, we provide information about the collection of personal data within the scope of our online surveys. Personal data are all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.

(2) The person responsible in accordance with Art. 4 para. 7 EU General Data Protection Basic Regulation (GDPR) is

apsolut GmbH
Oelmühlenstr. 30
33604 Bielefeld
Germany

e-mail: info@ap-solut.com

(see our imprint).

You can reach our data protection officer at:

Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
Germany

e-mail: kontakt@buglundkollegen.de

§2 Your rights

You have the following rights against us with regard to your personal data:

(1) Right to information according to Art. 15 GDPR: The person concerned may request confirmation from the person responsible as to whether personal data relating to him/her is being processed there. If this is the case, the person concerned has the right to access information about certain information concerning this personal data.

(2) Right of correction according to Art. 16 GDPR: The person concerned shall have the right to request the rectification of incorrect personal data concerning him/her by the person responsible. Taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data.

(3) Right of deletion in accordance with Art. 17 GDPR: The person concerned has the right to demand from the person responsible that personal data relating to him/her be deleted immediately, and the person responsible is in principle obliged to delete personal data immediately. However, there are personal data that are exempt from this obligation to delete and where we are even obliged by other laws to continue storing them.

(4) Right to limit processing in accordance with Art. 18 GDPR: The person concerned shall have the right to request the person responsible to restrict processing, provided that certain conditions are met.

(5) Right of objection pursuant to Art. 21 GDPR: The data subject has the right to object at any time, for reasons arising from his or her particular situation, to the processing of personal data relating to him or her which is carried out on the basis of Article 6 paragraph 1 letter e GDPR (data processing in the public interest) and Article 6 paragraph 1 letter f GDPR (data processing based on a balancing of interests); this also applies to profiling within the meaning of Article 4 No. 4 GDPR based on this provision.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

If you wish to exercise your right of objection, simply send an e-mail to privacy@ap-solut.com

(6) Right of revocation in the event of consent in accordance with Art. 7 para. 3 GDPR: The person concerned has the right to revoke his or her consent at any time. Revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

(7) Right to complain to the authority: If you believe that the processing of personal data relating to you by us is unlawful or if we violate data protection law for other reasons, you may complain to competent supervisory authority.

You can find the supervisory authority responsible for North Rhine-Westphalia for data protection issues under the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

§3 Processing scope

(1) Categories of personal data

Personal data may be collected when you participate in our surveys. Your personal data will be processed in accordance with the applicable data protection regulations. It is voluntary to participate in an apsolut survey. All information will be treated confidentially. Participation in an online survey is by invitation and/or online (self-)registration.

Depending on the survey, we collect the following data:

  • Contact information (e.g. first/last name, company name, e-mail address, phone number)
  • If applicable, job-related data (e.g. function in the company, department)
  • If applicable, professional interests within the scope of the professional activity

(2) Storage duration

We store the questions and answers of the surveys as well as record, if applicable, your participation and the transmitted data. Your survey answers will be made anonymous or deleted as soon as we have finished the evaluation. Unless there are reasons that justify longer storage (for example: if you have given your consent in accordance with Art. 6 Para. 1 lit. a GDPR.

(3) Processing purposes and legal basis

Survey in the context of meetings and webinars

The survey results and participation are evaluated and analysed by employees of apsolut GmbH. Provided that you have given your consent in accordance with Art. 6 Par. 1 lit. a GDPR, the documentation will be used to support our sales activities or to expand our product range, as well as to query your satisfaction. Any publication of the survey results will be made exclusively in anonymised form, without your name being mentioned and without providing any information that would allow conclusions to be drawn about your person. Name and e-mail address may be forwarded to a software platform for online surveys and stored there for the duration of the survey or subsequent evaluation of the participation and answers.

General surveys

As a general rule, no personal data is collected when answering our surveys. If the chosen or formulated answer makes it possible to draw conclusions about personal details of the participant, data processing is carried out to protect our legitimate interests in accordance with Art. 6 Para. 1 lit. f GDPR. If you agree to the results being sent (in accordance with Art. 6 Para. 1 letter a GDPR), the data will only be stored for the purpose of sending the results.

(4) Existence of automated decision making

The processing of data relating to you by us is not related to automated decision making or profiling.

§4 Transfer and foreign reference

(1) Recipients / categories of recipients

As a matter of principle, we do not pass on your data. A transfer to third parties is only possible if:

  • you have given your express consent in accordance with Art. 6 para. 1 lit. a GDPR;
  • this is necessary in accordance with Art. 6 para. 1 lit. b GDPR for the performance of a contract with you or
  • in the event that there is a legal obligation to pass on the data pursuant to Art. 6 para. 1 lit. c GDPR.

In the course of the necessary business processes and the execution of surveys, our specialist departments are supported are supported in fulfilling their tasks by using appropriate software solutions. Data may be stored and processed in these software solutions outside apsolut GmbH's data centers. To protect the data to be processed, the necessary data protection agreements have been concluded with all providers/service providers.

(2) Intention to transfer data to third countries

Not performed.

For visitors of the apsolut Facebook page

apsolut operates an online presence on Facebook, a so-called Facebook fan page. The following additional information on data processing applies when visiting our fan page. For general information about data protection on Facebook, please click here (https://www.facebook.com/about/privacy/).

Joint responsibility, contact data, company data protection officer

Together with Facebook, we are responsible for for operating our Facebook fan page according to art. 26 GDPR/ § 28 KDG. For this purpose, we have entered into an agreement with Facebook to determine who fulfils which obligations with regard to data protection. This agreement can be accessed here (https://www.facebook.com/legal/terms/page_controller_addendum). According to this agreement, Facebook is primarily responsible for providing the person responsible with information about the joint processing and for enabling the person responsible to exercise his or her data protection rights. Irrespective of this, we hereby inform you about your visit to our fan page.

Our contact details are as follows:

apsolut GmbH
Oelmühlenstr. 30
33604 Bielefeld
Germany

e-mail: info@ap-solut.com

(see our imprint).

You can reach Facebook at:

Facebook Ireland Ltd.
4 Grand Canal Square,
Grand Canal Harbour,
Dublin 2, Irland
You can reach Facebook online here: (https://www.facebook.com/help/contact/2061665240770586)

Unseren betrieblichen Datenschutzbeauftragten erreichen Sie unter:

Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
Germany

e-mail: kontakt@buglundkollegen.de

You can reach the Facebook data protection officer at https://www.facebook.com/help/contact/540977946302970.

Collection and storage of personal data as well as type, purpose and their use

a) Data collected by Facebook:

If you are a Facebook user, Facebook collects the information described in the Facebook Data policy under "What types of information do we collect? If you are not a Facebook user, cookies, small text files containing identifiers, may still be stored in your browser to track your user behavior.

As a general rule, when you visit Facebook, the user data is also processed by Facebook for market research and advertising purposes. Based on user behaviour (also when visiting our fan page), complex user profiles are created, which Facebook can use to display personalised advertisements to the visitor inside and outside of Facebook. You can also find more detailed information on this in the Facebook Data policy.

If you do not agree with this, you can opt out here.

b) Data used by us ("page insights") and legal basis

Facebook provides us with statistics and usage data, which we can use to analyse the use of our fan page (so-called "page insights"). This enables us to continuously improve our offering on Facebook. We as operators do not make any decisions regarding the processing of Insights data and all other information resulting from Art. 13 GDPR/ § 14 KDG, such as the storage duration of cookies on user devices. In accordance with the GDPR it is Facebook's primary responsibility to process Insights data and Facebook fulfils all obligations under the GDPR with regard to the processing of Insights data.

We as site administrators have no other possibility, not even via user tracking, to evaluate user behavior on our fan page. It is also fundamentally impossible for us to identify the visitor of the fan page on the basis of the Page-Insights. In particular, according to the agreement, we have no right to require Facebook to disclose individual visitor data. We are only able to identify a visitor if we can assign individual profile pictures to"like" information for the page, but only if our fan page has been marked "liked" by the respective visitor and the "liked" information is set to "public".

If you would like to learn what information Facebook uses to create Page Insights, please click here.

The operation of the Faceboook fan page and the use of the Page Insights serves our legitimate interest in an effective external presentation and efficient communication with our customers and interested parties. This interest justifies the operation of the page both against the legitimate interests of Facebook users, as well as against visitors to our fan page who do not have a Facebook account. The legal basis is accordingly Art. 6 para. 1 lit. f) GDPR/ § 6 para. 1 lit. g) KDG.

Transfer of data to third parties

Data collected by Facebook is exchanged and processed within the entire Facebook group. The Facebook Group also includes, for example, Instagram, WhatsApp and Oculus. For example, information collected via Facebook is used to display personalized advertising to users on Instagram, or information from WhatsApp is used to take action on Facebook against accounts that send spam via WhatsApp. This information can be found in the Facebook Data Policy under "How do Facebook companies work together?".

Facebook's processing of data may involve the transfer of user data outside the European Economic Area (EEA), particularly the United States. For more information on the processing of your data, please refer to the Facebook privacy policy: https://facebook.com/privacy/explanation

Right of objection

If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 Par. 1 letter f) GDPR/ Art. 6 Par. 1 letter g) KDG, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR/ Art. 23 KDG if there are reasons for doing so That arise from your particular situation or if the objection is directed against direct marketing. In the latter case you have a general right of objection, which will be implemented by us without indication of a special situation. If you wish to exercise your right of revocation or objection, simply send an e-mail to privacy@ap-solut.com.

Rights of persons concerned

You have the right to revoke your consent given to us at any time. As a result, we are not allowed to continue the data processing that was based on this consent for the future. Furthermore, you have the right to information according to Art. 15 GDPR/ § 17 KDG, the right to correction according to Art. 16 GDPR / § 18 KDG, the right to deletion according to Art. 17 GDPR / § 19 KDG, the right to restriction of processing according to Art. 18 GDPR/ § 20 KDG, as well as the right to data transferability according to Art. 21 GDPR/ § 22 KDG. Furthermore, there is a right of appeal to a competent data protection supervisory authority (Art. 77 GDPR/ § 48 KDG).

In principle, you can assert your rights as a person concerned against Facebook as well as against us. Since only Facebook has direct access to your user data, you can most effectively assert your rights as a person concerned against Facebook.

If you have any questions regarding this data protection notice, you can contact us or our data protection officer at any time.