Privacy Policy

Thank you for visiting our website and taking an interest in our company and our services. Protecting your privacy when using our website is important to us. The data protection measures outlined below are intended to inform you about how we collect, process and use personal data.

WISAG Dienstleistungsholding SE
Herriotstraße 3
60528 Frankfurt am Main, Germany
Phone: +49 69 50 50 44 – 0

Purpose of data processing / legal basis: Needless to say, we will treat as confidential any personal data you provide to us in a contact form, by telephone or by email. All initial communication via the website, by email or through the contact form is received centrally at our call centre. Call centre staff will direct the enquiry to the relevant person at WISAG. The data collected is required so that the call centre staff can correctly assign your enquiry.

Depending on the nature of your enquiry, we will process your data as follows:

For general enquiries, we use your data exclusively for the purpose of processing your enquiry. The legal basis for processing your data is Article 6(1)(f) of the GDPR. Our legitimate interest lies in responding to your enquiry.

For enquiries requesting an offer or a potential business relationship or relating to an existing business relationship, we process your data exclusively to create an offer or a contract, to clarify your question about the business relationship, or to provide and invoice contractual services, for example. If you as our contractual partner are a natural person, the legal basis is Article 6(1)(b) of the GDPR. If you are employed by a company that is to become our contractual partner, the legal basis is Article 6(1)(f) of the GDPR. Our legitimate interest then lies in preparing or fulfilling the offer or contract as requested.

Recipients / categories of recipients: We generally do not disclose the data to third parties outside the WISAG Group. In exceptional cases, data is processed on our behalf by data processors. These are carefully selected, audited by us and contractually bound under Article 28 of the GDPR. It may also be necessary for us to pass on parts of your enquiry to our contractual partners (e.g. subcontractors for service-specific requests) to process your request. However, in such cases, the request will be anonymised in advance, so that the third party cannot relate it back to you. If we need to disclose your personal data in exceptional cases, we will inform you in advance and, if legally required, obtain your consent.

We store all personal data that you share with us in response to enquiries relating to an offer, a potential business relationship or an existing business relationship for the duration of such business relationship plus the legally prescribed retention periods: for 10 years where this concerns tax-related documents pursuant to Section 147 of the German Tax Code (Abgabenordnung), and for 6 years where this concerns commercial correspondence pursuant to Section 257 of the German Commercial Code (Handelsgesetzbuch).

The WISAG Group is constantly seeking qualified and motivated employees. Please note that any applications that you send to us by email will be transmitted to us unencrypted. We therefore ask you to use our online application system only.

Purpose of data processing / legal basis / procedure: Our online application system allows you to apply directly for specific jobs or to submit an unsolicited application.

When you apply for a job, you will not only provide your personal data, but also information about your education and professional background. As part of the application, you will also be asked to upload your CV to the application portal. Your CV will then be processed automatically and the data stored in the applicant database. Your attachments will be processed using text recognition software and the detected content stored to your file. Your original documents will be converted to PDF and saved to your file. Your original files will be deleted. Once you submit your application documents by email, they are automatically read and recorded in our application management system. All accompanying documents sent (cover letter, CV, certificates and other documents) and the information contained therein are also stored. If you provide us with your application documents in person or send them by post, we will digitise them first and then record them in our application management system. We will return the original documents to you immediately.

Any personal data you provide to us should not typically contain information about the following:

• Illnesses,

• Pregnancy,

• Ethnic origin,

• Political, religious or philosophical beliefs,

• Union membership and sexual orientation

• Anything defamatory or degrading,

• Anything not specifically related to your application.

• The information you provide to us must be accurate and must not breach the rights of any third parties, public law regulations or public morals (‘prohibited content’).

Any information and attachments that you submit in this way will be processed by us exclusively for processing the application you submit through the portal. The legal basis for processing your data is Article 88 in conjunction with Article 26(1)(1) of the GDPR.

If you also give separate consent, Article 6(1)(a) of the GDPR is the legal basis for passing on your application. Whenever we transmit your applicant data in this system, we encrypt your data to protect it against unauthorised access.

Recipients / categories of recipients: Without separate consent, the data contained in your application can only be viewed by the relevant WISAG Group recruiters and managers or the WISAG group company to which you apply. Moreover, we will never pass on your application to third parties outside the WISAG Group. Your data will not generally be transferred to countries outside the EU unless you apply for a job with the WISAG Group outside the EU.

Retention period / criteria for determining the retention period: The data from a specific application will be deleted after 90 days once the application procedure is complete. If the data relates to someone who is subsequently recruited, the application data will be transferred to the new personnel file.

Purpose of data processing / legal basis / procedure: You have the opportunity to participate in various surveys on our website. These surveys focus on various topics (e.g. sustainability) and are aimed mainly at industry experts. The surveys will record your name, contact details and professional qualifications, as well as the results of your responses. The purpose of data processing is to produce aggregated opinion and experience studies based on the responses of all participants, so as to gain knowledge about industry-specific trends and requirements. We need your personal data to verify the results of the surveys and safeguard the quality of the results. The studies and survey results will be published on this website after evaluation. Your personal data will not be identified in the studies.

The legal basis for processing your data in relation to your participation in the surveys is Article 6(1)(f) of the GDPR. Our legitimate interest lies in ensuring the quality of the survey results. Given that participation is voluntary, we assume that there are no overriding interests that exclude processing.

Recipients / categories of recipients: We warrant that we will process your data exclusively for the purposes specified and will not share your data with third parties. Your data is only accessible within the WISAG Group by the department responsible for market research.

Retention period / criteria for determining the retention period: Once the survey has ended, the results have been quality assured and the study results have been finally compiled, participants’ data will be stored for a period of 24 months and then deleted in full. The data is stored for 24 months for subsequent verification of the study results in the event of a complaint made about the study.

Purpose of data processing / legal basis / procedure: On our website, you can view the anonymised results of surveys and studies on various topics (sustainability radar, hygiene radar, etc.). These are made available for download at certain times after completion. To ensure that you do not miss a study that interests you, you may opt to receive an email reminder of the publication date of the study you have selected (purpose of processing).

The legal basis for processing your name and email address is Article 6(1)(f) of the GDPR. Our legitimate interest lies in fulfilling your request to remind you about the publication date of the study you have selected.

Recipients / categories of recipients: We warrant that we will process your data exclusively to remind you about the publication date as requested and will not share your data with third parties. Your data is only accessible within the WISAG Group by the relevant department.

Retention period / criteria for determining the retention period: The data collected for the purpose of the reminder service will be completely deleted after the reminder has been sent.

Our website uses cookies. These are small text files stored on your device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your device or contain any viruses, trojans or other malware. A cookie stores information generated in connection with the specific device used. However, this does not mean that we will immediately know your identity. You can set your browser to inform you about the placement of cookies, so you are aware of when cookies are being used. You can also set your browser to decline cookies by default or to refuse cookies from individual providers. However, please note that this may affect the functionality of this website. The use of cookies and other technologies for processing usage data can serve different purposes, depending on the category of cookies or other technology:

Strictly necessary cookies:

These are cookies and similar technologies that are essential for you to be able to use our services (for example to ensure our website and the features you request are properly displayed, to store your login details in the secure area or to enable the shopping basket to function so you can make online purchases). 

For this purpose, security-related events (e.g. detection of multiple failed login attempts) are logged and evaluated in order to identify and counter possible threats.

We also process the data required in order to display multimedia content, such as videos.

The following data is stored for each access/retrieval:

• Anonymised IP address

• Operating system used

• Device used

• Country of origin of access

• Date and time of access

• Page/file requested

• Amount of data transferred

• Whether access/retrieval was successful

   

Analytical cookies:

These cookies allow us to generate anonymous statistics on the use of our services. Analytical cookies help us to understand how visitors interact with our website by collecting and processing information anonymously. These cookies are not necessary for the actual operation of the site, but help us to improve the pages and services.

In particular, the following data is processed:

• Browser type/version

• Operating system used

• Referrer URL (previously visited page)

• IP address (host name of the accessing computer)

• Time of the server request

• Individual user ID

• Surfing behaviour (events triggered on the website)

• As the IP address is routinely anonymised, it is not possible to draw conclusions about your person.

Marketing cookies:

These cookies are used to select the advertising that is displayed to you on our website. Marketing cookies capture and evaluate your interests when you visit the site in order to bring relevant advertising to you on other websites. They also derive insights about your visits to other pages to display advertising tailored to you on our website.

Personalisation cookies are also used to display only certain content on a website, e.g. specific offers from a specific region or your business sector, so that we can display the advertising content relevant to you based on the analysis of your usage behaviour. Your usage behaviour can also be tracked through different websites, browsers or end devices using a user ID (unique identifier).

An overview of the cookies and other technologies used, along with the purpose of processing, the retention periods and any third parties involved, can be found here.

The legal basis for the use of cookies is your consent pursuant to Article 6(1)(a) of the GDPR and Section 25(1) of the German Telecommunications and Telemedia Data Protection Act (TTDSG).

Your data will only be disclosed to or shared with the departments responsible for the websites for processing. In addition, pseudonymised usage data is transmitted to service providers that may be used, such as Google Inc. in the USA as part of the use of Google cookies.

We take technical and organisational security measures to protect your data from unauthorised access as comprehensively as possible. In addition to protecting our operating environment, we use encryption methods. The information you provide is transmitted in encrypted form using a Secure Socket Layer (SSL) protocol and its authenticity is verified to prevent misuse of the data by third parties. You can recognise this by the closed lock icon in the status bar of your browser and the address line starting with “https”.

Our website contains links to other websites and our official WISAG social media pages, which are hosted by other providers. The data processing methods depend on your personal settings on the specific platform, especially on social media. WISAG has only limited influence over these providers with regard to their compliance with the statutory data protection regulations. You should therefore always check the privacy policy of the specific service providers.

Purpose and legal basis of data processing:
Based on your consent pursuant to Article 6(1)(a) of the GDPR in conjunction with Section 25(1) of the TTDSG, we use tracking tools from social networks to improve our website and optimise our advertising. These social networks provide us with insights (analytics): Using the LinkedIn Insight Tag, TikTok Pixel or Meta Pixel, we may collect data that helps us track conversions of ads, build specific audiences for future ads and re-target people who have already interacted with us. Page insights may be based on personal data collected in connection with a visit or interaction of people on or with our site and its contents.

You can withdraw your consent at any time in the cookie settings. Withdrawing your consent does not affect the lawfulness of the processing carried out on the basis of consent before withdrawal. 
Where the data that you transmit to us is also or exclusively processed by social networks, these social networks act as Data Controller, along with us, for data processing within the meaning of the GDPR. We have no influence on such data collection, any further processing or the potential recipients of data collected by social networks. Moreover, we are unable to determine to what extent data is stored, where and for what duration. We also have no influence on the right to be forgotten by other providers, what kind of evaluations and links are drawn on the basis of the data, and with whom the data is shared.

1.    Meta (Facebook) Tracking
We use Facebook tracking tools to analyse user behaviour on our website and increase the effectiveness of our advertising campaigns. For more information about data protection methods, visit Facebook, Instagram and the Facebook Help Centre. The Data Controller in such cases is Meta Platforms Ireland Limited. 

2.    LinkedIn Tracking
Our website uses LinkedIn tracking to record visitor interactions and optimise our content on LinkedIn. LinkedIn Ireland Unlimited Company (“LinkedIn Ireland”) is responsible for use in the European Union (EU), the European Economic Area (EEA) and Switzerland. For more details, see the LinkedIn privacy policy.

3.    TikTok Tracking
We use TikTok tracking tools to measure the reach of our marketing campaigns and analyse interactions with our content. Where the data that you transmit to us via TikTok is also or exclusively processed by TikTok, the latter (TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland) also acts as Data Controller, along with us, for data processing within the meaning of the GDPR. For details on how TikTok processes data, see the TikTok privacy policy.
 

Our website uses web beacons to analyse visitor behaviour. These process the IP address of a visitor solely for the purpose of collecting company-related information such as the company name. IP addresses of natural persons are not processed any further (whitelist procedure). The IP address is never saved. When processing data, it is in our particular interest to protect the privacy of natural persons. Our interest is based on Article 6(1)(f) of the GDPR. The data we collect does not allow us to draw any conclusion about an identifiable person at any time.

This information is used to create anonymous user profiles related to the visitor behaviour on our website. The data obtained will not be used to personally identify visitors to our website.

You can withdraw your consent at any time by clicking on this link. Withdrawing your consent does not affect the lawfulness of the processing carried out on the basis of consent before withdrawal.

You have the right to access, on request and free of charge, the personal data stored by WISAG about your person, pursuant to Article 15(1) of the GDPR.

In addition, subject to legal requirements, you have the right to rectify (Article 16), erase (Article 17) and restrict the processing of (Article 18) your personal data.

If the data processing is based on Article 6(1)(e) or (f) of the GDPR, you have the right to object to processing, pursuant to Article 21 of the GDPR. If you object to data processing, your data will no longer be processed, unless the Data Controller can demonstrate compelling legitimate grounds for further processing that override the Data Subject’s interest in objecting.

If you have provided the processed data yourself, you are entitled to have the data transferred pursuant to Article 20 of the GDPR.

If the data processing is based on an agreement pursuant to Article 6(1)(a) or Article 9(2)(a) of the GDPR, you may withdraw your consent at any time with future effect, without affecting the lawfulness of the processing to date.

In the cases mentioned above or if you have any questions or wish to make a complaint, please contact the Data Protection Officer in writing or by email. You also have the right to complain to a data protection supervisory authority in the country in which you reside or in which the Data Controller is registered.

Sebastian Mittelberg
Email: sebastian.mittelberg(at)wisag.de

Postal address:
AVECO Holding AG
WISAG Data Protection Officer
Herriotstraße 3 / 60528 Frankfurt am Main, Germany