Data Protection Declaration

Gütesiegel_DDI_2024_EN_1000

Data protection declaration / duty to provide information according to §5 TMG & Art. 13/14 GDPR

At Paul IT-Service GmbH, we believe the protection of personal data involves far more than just complying with legislation. We are therefore happy that you are interested in how we handle personal data.

We always process personal data such as a person’s name, address, e-mail address, or phone number in accordance with applicable privacy law.

With this privacy notice, we would like to inform everyone about the nature, scope, and purpose of the personal data that we collect, use, and process. Furthermore, we would like to explain to the persons concerned the rights to which they are entitled.

Paul IT-Service GmbH has implemented numerous technical and organizational measures to ensure that the personal data processed via this Web site is protected as comprehensively as possible.

Despite the care we take, Internet-based data transmission is vulnerable to security flaws and, consequently, absolute protection can never be guaranteed. For this reason, you of course have the option of transmitting your personal data by alternative means, for example, by telephone or post.

Name and address of the responsible body and contact options

PAUL IT-Service GmbH

Petra Ebeling, Patrick Kümmel Rückertstraße 5
10627 Berlin Germany
Phone: +49 (30) 450 874 910
Mail: kontakt@paul-it-service.de Website: www.paul-it-service.de

 

Privacy Officer Contact Details
The Privacy Officer for the data controller is:

DDI – Deutsches Datenschutz Institut GmbH www.deutsches-datenschutz-institut.de

You can contact our Privacy Officer by sending a letter to the attention of “Privacy Officer” at the
address above or by sending an e-mail to: datenschutz@paul-it-service.de

 

Purposes and Legal Grounds for Processing Data – When Visiting Our Web Site in General

Should you use our Web site purely for informational purposes, not register yourself, or convey information to us in some other way (e.g. by e-mail), we will only collect the data that your browser transfers to our server (“server log files”). This data is processed in accordance with GDPR art. 6(1)(f) on the basis of our legitimate interest in improving the stability and functionality of our Web site.
This data is not used in any other way and in no way shared with third parties. However, we do reserve the right to analyze log files at a later date if there are reasons to suspect unlawful usage.

 

Purposes and Legal Grounds for Processing Data – Contact Form
When you contact us (e.g. using our contact form or by e-mail), we collect personal data. This data is stored and used exclusively for the purposes of answering your inquiry and for the associated technological administration. Our legitimate interest in responding to your inquiry forms the legal grounds for processing this data, in accordance with GDPR art. 6(1)(f). If you contact us for the purpose of entering into a contract, there are additional legal grounds for processing provided in GDPR art. 6(1)(b). Your data will be erased once your inquiry has been conclusively resolved. This is the case if it can be assumed that the relevant matter has been completely resolved and if there are no statutory retention periods barring us from erasing the data.

 

Purposes and Legal Grounds for Processing Data – Application Form
We use the Connectoor tool from jobEconomy GmbH for our applicant management. A connection to our service provider will only be established on the corresponding subpage if you consent to this connection. With this connection, the data generally transmitted when visiting the website, or server log files, are processed. The legal basis for processing the data is your consent in accordance with Article 6 Paragraph 1 Letter a) GDPR.

As part of applicant management, we have also concluded an order processing contract with jobEconomy GmbH.

Further information on data processing by jobEconomy GmbH can be found here: https://www.connectoor.com/datenschutz/

 

Notice on Profiling and Scoring
Scoring or profiling does not take place.

 

Recipients or categories of recipients
Your personal data may be transmitted to the following third parties depending on the tools used:

– Web server hosting – Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen

 

Deletion Dates
The controller processes and stores the data subject’s personal data only for the period of time
required to achieve the purpose for which it is stored or only if the controller is required to store data

on account of legislation or regulations that are passed by European Union legislators and regulators, or other legislators, and the controller is subject to this legislation or these regulations.
Should there no longer be any reason to store the data or if a retention period prescribed by a European Union directive or regulation or by other relevant law expires, the personal data will be restricted from processing or deleted as a matter of routine and in accordance with statutory regulations.

 

Notice of Right to Object When Consent Is Selected as Legal Grounds
You have the right at any time to withdraw any consent given to the processing of your data. If you withdraw your consent, we will immediately delete the data concerned, provided there are no other legal grounds to support further processing. If you withdraw your consent, it will not affect the legality of the processing operations conducted until the time of the withdrawal.

 

Rights of the person concerned#

  1. right of confirmation
    Each person concerned shall have the right, granted by the European directive and regulation provider, to require the controller to be informed of the processing of personal data relating to him or her. If a person concerned wishes to avail himself of this right of confirmation, she may at any time contact an employee of the controller.
  2. Right to information
    Any person concerned by the processing of personal data shall have the right granted by the European directive and regulation giver, at any time by the controller, free of charge information on the person’s stored Personal data and a copy of this information. In addition, the European directive and regulation donor has granted information on the following information to the person concerned:

    • The processing purposes
    • The categories of personal data that are processed
    • The recipients or categories of recipients to whom the personal data has been disclosed or is still disclosed, in particular to recipients in third countries or to international organisations
    • If possible, the planned duration for which the personal data is stored, or, if this is not possible, the criteria for determining this duration
    • The existence of a right to rectify or delete the personal data relating to it or to restrict the processing by the person responsible or a right of objection against such processing
    • The existence of a right of appeal by a supervisory authority
    • If the personal data are not collected from the data subject: All available information on the origin of the information
    • The existence of automated decision-making, including profiling in accordance with article 22 (1) and (4) of the DS-GVO and, at least in such cases, meaningful information on the logic
    • involved and the scope and impact of a Such processing for the person concerned
    • In addition, the data subject is entitled to a right of access to information on whether personal information has been transmitted to a third country or to an international organisation. Where
    • this is the case, the person concerned shall also be entitled to obtain information on the appropriate guarantees in connection with the transfer.
    • If a data subject wishes to avail himself of this right of access, she can at any time contact an employee of the controller.
  3. Right to rectificationAny person affected by the processing of personal data shall have the right granted by the European directive and regulation provider to require the immediate rectification of any incorrect personal data relating to them. In addition, the person concerned shall be entitled, taking into account the purposes of processing, to require the completion of incomplete personal data, including by means of a supplementary declaration.
    If a person concerned wishes to avail himself of this right of rectification, she may at any time contact an employee of the controller.
  4. Right to deletion (right to be forgotten)
    Any person concerned by the processing of personal data shall have the right granted by the European directive and regulation giver to require the controller to delete the personal data relating to him without delay, provided that For one of the following reasons and to the extent that the processing is not required:

    • The personal data were collected for such purposes or processed in any other way for which they are no longer necessary.
    • The person concerned shall revoke the consent to which the processing was based in accordance with article 6 (1) (a) (a) of the DS-GVO or article 9 (2) (a) of the DS-GVO, and there is no other legal basis for processing.
    • The person concerned shall, in accordance with article 21 (1) of the DS-GVO, object to the processing and there are no priority reasons for the processing, or the person concerned shall object to the processing in accordance with article 21 (2) of the DS-GVO.
    • The personal data has been processed in an unlawful form.
    • The deletion of personal data is necessary for the fulfilment of a legal obligation under union law or the law of the Member States to which the person responsible is subject.
    • The personal data were collected in relation to the information society services provided in accordance with article 8 (1) of the DS-GVO.If one of the above reasons applies and an affected person wishes to initiate the deletion of personal data stored by Paul IT-Service GmbH, it may at any time contact an employee of the controller Apply. The employee of Paul IT-Service GmbH will make sure that the request for deletion is immediately fulfilled.
    • If the personal data were made public by Paul IT-Service GmbH and if our company is obligated as the person responsible under article 17 (1) DS-DS-GVO for the deletion of personal data, Paul IT-Service GmbH shall, taking into account the available Technology and the implementation costs appropriate measures, including technical means, to inform other data controllers who process the published personal data that the person concerned is These other data controllers have requested the deletion of all links to this personal data or of copies or replicas of such personal data, insofar as the processing is not required. The employee of Paul IT-Service GmbH will arrange the necessary in individual cases.
  5. Right to limitation of processing
    Any person concerned by the processing of personal data shall have the right granted by the European directive and regulation giver to require the controller to restrict the processing if one of the following conditions is met:

    • The correctness of the personal data is disputed by the person concerned, for a period of time, which enables the controller to verify the accuracy of the personal data.
    • The processing is unlawful, the person concerned rejects the deletion of the personal data and instead demands the restriction of the use of the personal data.
    • The person responsible no longer needs the personal data for the purposes of the processing, but the individual needs it for the assertion, exercise or defence of legal claims.
    • The person concerned has appealed against the processing in accordance with article 21 (1) of the DS-GVO and it is not yet determined whether the legitimate reasons of the person responsible outweigh those of the data subject.
    • If one of the above conditions is given and an affected person wants to demand the restriction of personal data stored at Paul IT-Service GmbH, it can at any time contact an employee of the processing The person responsible. The employee of Paul IT-Service GmbH will arrange for the restriction of the processing.
  6. Right to data transferability
    Any person concerned by the processing of personal data shall have the right granted by the European directive and regulation provider, the personal data relating to it, which has been provided by the person concerned to a party responsible, In a structured, common and machine-readable format. It shall also have the right to transmit such data to another person responsible without hindrance by the person responsible for providing the personal data, provided that the processing is based on the consent provided for in article 6 (1) (a) of the DS-GVO or Article 9 (2) (a) (a) of the DS-GVO or a contract pursuant to article 6 (1) (b) of the DS-GVO and the processing is carried out using automated procedures, provided that processing is not necessary for the performance of a task which is in the public interest Or in the exercise of public authority which has been transferred to the person responsible.
    Furthermore, in exercising its right to transfer data in accordance with article 20 (1) of the DS-GVO, the person concerned shall have the right to obtain that the personal data are transmitted directly by one person responsible to another person responsible, insofar as this is technically feasible and if this does not affect the rights and freedoms of other persons.
    In order to assert the right to transfer data, the person concerned may at any time contact an employee of Paul IT-Service GmbH.
  7. Right to objection
    Any person concerned by the processing of personal data shall have the right, for reasons arising out of its particular situation, to be subject to the processing of any personal information which the European directive and regulation Data which is made on the basis of article 6 (1) (e) or (f) DS-GVO. This also applies to profiling based on these provisions.
    Paul IT-Service GmbH no longer processes the personal data in the event of opposition, unless we can prove compelling reasons for the processing that outweigh the interests, rights and freedoms of the person concerned, or the Processing is for the assertion, exercise or defence of legal claims.
    If Paul IT-Service GmbH processes personal data in order to operate direct advertising, the person concerned shall have the right at any time to object to the processing of personal data for the purpose of such advertising. This also applies to profiling as far as it is related to such direct advertising. If the data subject conflicts with Paul IT-Service GmbH for the purposes of direct marketing, Paul IT-Service GmbH will no longer process the personal information for these purposes.
    In addition, the person concerned shall have the right, for reasons arising from their particular situation, against the processing of personal data relating to them, which may be obtained from Paul IT-Service GmbH for scientific or historical research purposes or for statistical Pursuant to article 89 (1) of the DS-GVO, shall be subject to opposition, unless such processing is necessary to fulfil a public interest task.
    In order to exercise the right of opposition, the person concerned may directly contact any employee of Paul IT-Service GmbH or another employee. The person concerned is also free to exercise its right of objection in connection with the use of information society services, irrespective of Directive 2002/58/EC, by means of automated procedures in which technical specifications be used.

Cookies
You can find the description of our cookies at: https://paul-it-service.de/index.php/de/cookie-policy- eu/

OpenStreetMap
We are using the OpenStreetMap map system on our website. The
Map system is interactive and offers you many options and map functions.
When you call up the content, information is sent from your browser to the provider of the map service. This is the same data that is also transmitted by the browser when a website or a file is accessed (see: “General information when visiting the website”).
The legal basis for the use of OpenStreetMap is our legitimate interest in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR.
Further information on data processing by OpenStreetMap can be found here: https://wiki.osmfoundation.org/wiki/Privacy_Policy