Get in touch
Protecting your personal data during the collection, processing and use of personal data when you visit our website is important to us. Your data is protected in accordance with statutory provisions. In the following, we would like to inform you about the nature and scope of the processing of personal data through this website in accordance with Article 13 of the General Data Protection Regulation (GDPR).
Tel.: +49 6122 70707-0
Fax: +49 6122 70707-199
Our external data protection officer is happy to answer any questions about data protection:
Mr. Arndt Halbach, GINDAT GmbH
Wetterauer Str. 6
Tel. 02191 / 909 430
Your visit to our website is recorded. We generally collect the following data that your browser sends to us:
This data is only collected for the purposes of data security, improving our website offer and analysing errors on the basis of our legitimate interest (Art. 6 (1) f) GDPR). The IP address of your PC is only analysed in anonymised form (shortened by the last three digits). In all other respects, you are able to visit our website without providing information on your identity.
We would like to point out that data transmission on the Internet (such as E-Mail communication) is subject to security vulnerabilities. It is not possible to completely protect data from access by third parties. Confidential data should therefore be sent to us by other means, such as by mail.
The data processor collects and processes the personal data of applicants for the purpose of conducting the application process. Your data will be processed for the purpose of hiring for positions in the entire corporate group of the organisation. By submitting your application data, you consent to the use of your data in all affiliated organisations.
Processing may also take place electronically. This is particularly the case if an applicant transmits corresponding application documents electronically to the data processor, such as by E-Mail or using an online form on the website. Should the data processor conclude an employment contract with an applicant, the transmitted data shall be stored for the purpose of executing the employment relationship in accordance with statutory provisions. If the data processor does not conclude an employment contract with the applicant, the application documents shall be deleted following the staffing of the vacancy in accordance with statutory provisions, provided such deletion is not opposed by any other legitimate interests of the data processor. Other legitimate interests in this sense includes, for example, evidence in a proceeding according to the General Equal Treatment Act (AGG).
We can only process applications that are sent to the E-Mail address: “firstname.lastname@example.org”, either directly or through the AOE Job Application Portal. Applications sent via this portal are sent to a separate mailbox to which only selected users have access. Should you use a different E-Mail address belonging to our company, your application will unfortunately not be recognized by our systems and will not therefore be taken into consideration. Should your application reach our server via the above-mentioned E-Mail address or Portal, we will protect your application with suitable technical and organisational measures.
Personal data (such as your name, address data or contact details) which you voluntarily disclose to us, for example in connection with a request or otherwise, will be stored by us and only processed for correspondence with you and only for the purpose for which you have provided us with this data.
In order to protect the security of your data during transmission, we use encryption techniques (SSL) via HTTPS, which accord with state-of-the-art technology.
We may utilise service providers in connection with data processing in order to perform and execute processes.
Specifically, we have involved service providers for the purpose of hosting our website.
Contractual relationships are established with our service providers, which meet the requirements of Art. 28 GDPR; the contractual provisions contain the statutorily required points on data protection and data security.
We use HubSpot CRM to process and manage contact and information requests. In order to respond to your contact and information requests in your interest HubSpot assigns your request to the responsible departments and employees and retains a contact history. We process your data in HubSpot after your consent in accordance with Art. 6 (1) a) GDPR.
Our website uses the services of Lead Forensics to identify visitors to the website. Lead Forensics works on the basis of reverse business IP tracking. A small tracking code is placed on our website, which allows Lead Forensics to identify the business IP addresses of our website visitors.
Lead Forensics matches the identified business IP address to a global database of companies and business information. In doing so, Lead Forensics focuses on business-related information to link a business IP address to broader business data and to provide us with business visitor information. Lead Forensics does not identify personal IP addresses, mobile devices, or other data that is obviously not associated with a business.
This website uses Google Analytics, a web analysis service by Google Inc. (‘Google’). Google Analytics uses ‘cookies’ – text files that are stored on your computer and enable analysis of your visit to the website. The information obtained by the cookie regarding your use of the website are generally transmitted to a Google server in the USA, where it is then stored. The basis for data processing is Art. 6 (1) f) GDPR.
In the event that IP anonymisation is activated on this website, your IP address will first be shortened by Google within the member states of the European Union or in other contractual states of the agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. We would like to point out that Google Analytics has been expanded on this website with the code ‘anonymizeIp’, in order to ensure the anonymised collection of the IP address.
Google uses this information on behalf of the operator of this website in order to analyse your use of the website, to compile reports on website activity and to provide other services relating to website use and Internet use to the website operator. The IP address transmitted by your browser in connection with Google Analytics is not combined with other data held by Google.
You may prevent the storage of cookies by configuring your browser software settings accordingly; however, we would like to point out that, in this case, you may not be able to use the full functionality of this website. Moreover, you may prevent the collection of the data obtained by the cookie relating to your use of the website (including your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plug-in available via the following link: https://tools.google.com/dlpage/gaoptout?hl=en .
The basis for data processing is Art. 6 (1) f) GDPR.
This website uses the map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
In order to use the functions of Google Maps, it is necessary to store your IP address. This information is generally transmitted to a Google server in the USA, where it is then stored. The provider of this website has no influence on this data transmission.
The use of Google Maps occurs in the interest of providing an attractive presentation of our website offers and allowing the user to find the locations indicated on our website more easily. This constitutes a legitimate interest in the meaning of Art. 6 (1) f) GDPR.
The website uses Google Tag Manager. This service allows website tags to be managed via an interface. Google Tag Manager only implements tags. No cookies are placed and no personal data is collected. Google Tag Manager activates other tags which may collect data. Google Tag Manager does not access this data. If deactivation is performed at the domain or cookie level, it remains in place for all tracking tags provided that they are implemented with Google Tag Manager. More information about Google Tag Manager can be found via the following link:
The tracking measure is conducted on the basis of Art. 6 (1) Clause 1 f) GDPR.
The basis for data processing is Art. 6 (1) f) GDPR.
To protect your requests submitted via online form, we use the service reCAPTCHA provided by the company Google Inc. (Google). This query serves to determine whether an entry has been made by a person or improperly by means of an automated machine program. The query involves the sending of the IP address and other data that may be required by Google for the reCAPTCHA service to Google. For this purpose, your entry is transmitted to Google, where it is further processed. Your IP address will first be shortened by Google within the member states of the European Union or in other contractual states of the agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. This service is performed on behalf of the operator of this website.
The service is conducted on the basis of Art. 6 (1) Clause 1 f) GDPR.
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO. If your browser does not support web fonts, a standard font is used by your computer. Further information about handling user data, can be found at
Information about Google Fonts
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited. If you're logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO. Further information about handling user data, can be found in the data protection declaration of YouTube under
Facebook-Plugins (Like & Share-Button):
Our website includes plugins for the social network Facebook, Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. The Facebook plugins can be recognized by the Facebook logo or the Like button on our site. For an overview of Facebook plugins, see
When you visit our site, a direct connection between your browser and the Facebook server is established via the plugin. This enables Facebook to receive information that you have visited
If you do not want Facebook to associate your visit to our site with your Facebook account, please log out of your Facebook account.
You can also deactivate the custom audiences remarketing feature in the Ads Settings section at
You will first need to log into Facebook. If you do not have a Facebook account, you can opt out of usage-based advertising from Facebook on the website of the European Interactive Digital Advertising Alliance:
Your privacy preferences with Twitter can be modified in your account settings at
According to Articles 15–21 GDPR, you may exercise the following rights with respect to personal data we store provided the relevant requirements of the GDPR are met.
Right of access
You have the right to access information about your personal data that we process.
Right of rectification
You are able to request the correction of incomplete or incorrectly processed personal data..
Right of erasure
You have the right to the deletion of your personal data, in particular on the basis of one of the following reasons:
The right of erasure does not apply, however, if such deletion is opposed by the legitimate interest of the controller. For instance, this may include:
Right to the restriction of processing
You have the right to request us to restrict the processing of your personal data, if:
Right of data portability
You have the right to receive your personal data, which you have provided to us, in a structured, commonly available and machine-readable format. Moreover, you have the right to have us transmit this data to another controller without hindrance by us, provided that the processing is based on a contract or consent, and our processing takes place with the aid of automated processes.
Right of withdrawal
The data subject has the right at any time to submit an objection to the processing of their personal data, which takes place on the basis of Art. 6 (1) e) or f), for reasons arising from their particular situation; this also apples to profiling based on one of these conditions. Insofar as the processing of your personal data is based on a consent, you have the right to withdraw this consent at any time.
Insofar as no statutory retention obligation applies, the data shall be deleted or destroyed once it is no longer required for fulfilling the purpose of data processing. Various deadlines apply to the retention of personal data. For instance, data of tax relevance is generally stored for ten years, while other data is typically retained for six years in accordance with provisions under the Commercial Code. Furthermore, the storage period may also be determined by statutory limitation periods, which may generally amount to three years in the case of Articles 195 et seqq. of the Civil Code, for example, or in certain cases up to even thirty years.
In accordance with Art. 77 GDPR, each data subject has the right to lodge a complaint with a supervisory authority, if they believe that the processing of their personal data is in violation of the GDPR. The competent supervisory authority in data protection matters is:the state data protection officer of the federal state in which our company has its registered office.
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Telefon: +49 611 1408 -0
Telefax: +49 611 1408 -900 / 901
Liability for content
As service provider, we are responsible for our own content on these webpages in accordance with general laws (pursuant to Art. 7 (1) Telemedia Act, ‘TMG’). However, as service provider, we are not obliged to monitor transmitted or stored external information or to investigate circumstances that indicate unlawful activity (Articles 8–10 TMG). This shall be without prejudice to obligations to remove or block the use of information according to general laws. Liability in this connection is only possible from the time we receive knowledge of an actual violation of the law. We will immediately remove the relevant content as soon as we become aware of corresponding violations of the law.
Liability for links
Our offer contains links to the external websites of third parties, over whose content we have no influence. For this reason, we are unable to accept any liability for this external content. The respective provider or operator of the website is always responsible for the content of the linked webpages. The linked webpages will be reviewed for possible violations of the law at the time of linking. Unlawful content could not be found at the time of linking. However, it is not feasible to review the content of the linked webpages on an ongoing basis, without specific indications of a violation of the law. We will immediately remove corresponding links as soon as we become aware of violations of the law.