adelphi receives the German Sustainability Award "Company"
News publ. 24. Nov 2023
We are delighted that you are interested in our services and want to make sure that you feel you have come to the right place – including when it comes to how we handle your personal data. We take protecting your personal data very seriously. We want you to know when we collect data, what data we collect and how we use it. Below, you will find details on the type of personal data we collect, on the extent of the collected data, on the reasons why we do so and what we use the collected data for. You can check back to these details on our website at any time.
To ensure that your personal data remains safe, we ensure that your data is protected from access by unauthorised parties and from unauthorised disclosure. Your data will not be supplied to third parties without authorisation.
If you have any questions or suggestions regarding this data policy, or concerning data protection in general, please feel free to get in touch with our (external) data protection officer under the contact details below.
The controller as defined in the General Data Protection Regulation and other data protection laws nationally applicable in the EU member states or other regulations related to data protection is:
Phone: +49 (30) 8900068-0
Fax: +49 (30) 8900068-10
email: officeadelphi [dot] de (office[at]adelphi[dot]de)
The controller’s data protection officer is:
c/o Althammer & Kill GmbH & Co. KG
Phone: +49 (511) 330603-26
email: privacyadelphi [dot] de (privacy[at]adelphi[dot]de)
We process our users’ personal data only to the extent required for providing a functional website and supplying our content and services. We process our users’ personal data regularly only if the respective users have given their consent. The only exception to this is where it is actually impossible for us to obtain prior consent and processing of the data is legally allowed.
Where we obtain the corresponding data subjects’ consent for processing their personal data, art. 6 paragraph 1 point a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
Where we need to process personal data for the purposes of fulfilling a contract, and the data subject is party to the contract, art. 6 paragraph 1 point b of the GDPR serves as the legal basis. This also applies to processing necessary to accommodate preparations for entering into a contract.
Where processing of personal data is necessary for our company to fulfil a legal obligation, art. 6 paragraph 1 point c of the GDPR serves as the legal basis.
Where processing of personal data is necessary for protecting the vital interests of the data subject, or those of another individual, art. 6 paragraph 1 point d of the GDPR serves as the legal basis.
Where processing is necessary to protect our company's or a third party’s legitimate interests, and such interests are not overridden by the interests, fundamental rights and freedoms of the data subject, art. 6 paragraph 1 point f of the GDPR serves as the legal basis.
The data subject’s personal data will be deleted or blocked as soon as the purpose for which it has been collected has been fulfilled. Data may remain on record beyond this period if such is specified in European or national legislation from European Union Regulations, laws or other provisions to which the controller is subject. Data will also be deleted if a storage period specified in the above standards expires unless conclusion or fulfilment of a contract requires the data to remain on record further.
Any time our website is accessed, our system automatically records data and information concerning the accessing computer.
The following data is recorded:
This data is also recorded in our system’s log files. This data is not stored together with any of the user’s other personal data.
The legal basis for temporary recording of this data in our log files is art. 6 paragraph 1 point f GDPR.
Our system needs to temporarily record the IP address in order to provide the website to the user’s computer. This also requires that the user’s IP address remains logged throughout the session.
Recording the data in log files is necessary to ensure that the website operates correctly. The data further helps us optimise the website and ensure that our computer systems remain secure. No data is processed for marketing purposes in this context.
The above purposes also constitute our legitimate interests in data processing under art. 6 paragraph 1 point f GDPR.
The data is deleted as soon as it is no longer required for achieving the purpose for which it was recorded. With respect to data being recorded in order to provide the website, the data is no longer required as soon as the respective session ends.
With respect to data being recorded in log files, the data is no longer required after fourteen days at the latest. Data may remain on record for longer. If so, the users’ IP addresses are deleted or rendered untraceable to make identification of the accessing client impossible.
The website cannot be provided without recording the data and the operation of the site in the Internet is impossible without storing the data in log files. There is correspondingly no option for the user to object.
The following data is recorded and transferred in the cookies:
Our website further employs cookies that facilitate analysis of the users’ web-surfing behaviour.
This can entail transfer of the following data:
User data recorded this way is pseudonymised through technical measures. It cannot be used to identify the accessing user. This data is not stored together with any of the user’s other personal data.
The legal basis for using cookies to process personal data is art. 6 paragraph 1 point f GDPR.
The purpose of using technically necessary cookies is to make using our website easier for users. Several of our website’s functions will not work without using cookies. These functions require the browser to be recognised again after leaving and returning to our website.
The following functions require cookies:
The user data recorded in technically necessary cookies is not used to create user profiles.
We use analysis cookies to improve the quality of our website and its contents. The analysis cookies tell us how the website is being used and this way allow us to keep on improving it.
For further details on the analysis cookies used, refer to the section on web analysis by Matomo below.
The above purposes also constitute our legitimate interests in processing personal data under art. 6 paragraph 1 point f GDPR.
To keep your data secure during transmission, we use the latest state of the art in encryption technology (e.g. TLS/SSL) via HTTPS.
Our website offers you the option of subscribing to our free newsletter. When you register a subscription, the data you enter in the input screen is sent to us.
We also record the following data as part of registration:
During the registration process, we will ask you to give your consent to our processing the data and will point you towards this data policy.
No data will be forwarded to third parties as part of data processing when supplying the newsletter. The data will be used solely for supplying the newsletter.
The legal basis for processing data after newsletter subscription and with the user’s consent is art. 6 paragraph 1 point a GDPR.
We record the user’s email address to allow us to send out the newsletter.
We collect the other data as part of subscription registration to prevent our services from being used inappropriately and to prevent the email address from being fraudulently used. The data also helps us provide tailored information.
The data is deleted as soon as it is no longer required for achieving the purpose for which it was recorded. We therefore keep the user’s email address on record for as long as the user remains subscribed to the newsletter.
The other personal data collected during registration will also be deleted when the user unsubscribes from the newsletter.
Users can unsubscribe from the newsletter at any time. The newsletter itself includes a corresponding link.
This also allows users to withdraw their consent regarding our storing of the personal data collected during registration.
Our website includes a contact form that allows getting in touch with us electronically. When a user uses this option, we receive and store the data entered in the input screen. The data comprises:
During the sending process, we will ask you to give your consent to our processing the data and will point you towards this data policy.
You also have the option to contact us under the email address provided. If you do so, we will store the personal user data included in the email.
We will not give this data to anybody else. The data will be used solely for handling our conversation.
The legal basis for processing data with the user’s consent is art. 6 paragraph 1 point a GDPR.
The legal basis for processing data received as part of email communication is art. 6 paragraph 1 point f GDPR. If email communication pursues conclusion of a contract, the legal basis shall further be art. 6 paragraph 1 point b GDPR.
We process the personal data obtained from the input screen solely for the purposes of handling contact. Where users contact us via email, this also constitutes the legitimate interest in processing the data.
The other personal data processed during transmission serve to prevent abuse of the contact form and to ensure that our computer systems remain secure.
The data is deleted as soon as it is no longer required for achieving the purpose for which it was recorded. In terms of the personal data from the contact form’s input screen and that received by email, this applies when the respective conversation with the user has concluded. The conversation has concluded when the circumstances indicate that the respective subject has been fully resolved.
The additional personal data collected during transmission will be deleted after seven days at the latest.
All users can at any time withdraw their consent to our processing their personal data. If a user contacts us by email, they can object at any time to our storing their personal data. If they do so, the conversation cannot be pursued further.
You can withdraw your consent and object to our storing data by phone (name and address of controller) or by sending an email to withdrawaladelphi [dot] de (withdrawal[at]adelphi[dot]de).
If you do so, we will delete all personal data recorded as part of our contact.
We use the "Zoom" tool to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: "Online Meetings"). "Zoom" is a service of Zoom Video Communications, Inc. (55 Almaden Blvd, Suite 600, San Jose, California (95113), USA).
If you visit the "Zoom" website, the provider of "Zoom" is responsible for data processing.
However, visiting the website is only necessary for using "Zoom" in order to download the software for using "Zoom".
You can also use "Zoom" if you enter the respective meeting ID and, if necessary, other access data for the meeting directly in the "Zoom" app.
If you do not want to or cannot use the "Zoom" app, the basic functions can also be used via a browser version, which you can also find on the "Zoom" website.
When using "Zoom", different types of data are processed. The scope of the data also depends on the information you provide before or during participation in an "online meeting".
The following personal data is subject to processing:
In order to participate in an "online meeting" or to enter the "meeting room", you must at least provide information about your name.
We use "zoom" to conduct "online meetings". If we want to record "online meetings", we will inform you in advance in a transparent manner and - if necessary - ask for your consent. The fact of the recording will also be displayed in the "Zoom" app.
If it is necessary for the purpose of recording the results of an online meeting, we will log the chat content. However, this will usually not be the case.
In the case of webinars, we may also process the questions asked by webinar participants for the purposes of recording and follow-up of webinars.
If you are registered as a user at "Zoom", reports on "online meetings" (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) can be stored for up to one month at "Zoom".
The possibility of software-based "attention tracking" in "online meeting" tools such as "Zoom" is deactivated.
Automated decision making as defined by Art. 22 GDPR is not used.
As far as personal data is processed, § 26 BDSG is the legal basis for data processing.
If, in connection with the use of "Zoom", personal data are not required for the establishment, performance or termination of the employment relationship, but are nevertheless an elementary component in the use of "Zoom", Art. 6 Paragraph 1 letter f) GDPR is the legal basis for data processing. In these cases, we are interested in the effective conduct of "online meetings".
In other respects, the legal basis for data processing when conducting "online meetings" is Art. 6 para. 1 lit. b) GDPR, insofar as the meetings are conducted within the framework of contractual relationships.
If no contractual relationship exists, the legal basis is Art. 6 para. 1 lit. f) GDPR. Here too, we are interested in the effective implementation of "online meetings".
Personal data processed during participation in "online meetings" is generally not passed on to third parties, unless it is specifically intended to be passed on.
Please note that content from "online meetings" as well as personal meetings are often used to communicate information with customers, interested parties or third parties and are therefore intended to be passed on.
Other recipients: The provider of "Zoom" necessarily obtains knowledge of the above-mentioned data to the extent that this is provided for in our contract processing agreement with "Zoom".
"Zoom" is a service by a provider from the USA. Processing of personal data therefore also takes place in a third country.
We have concluded an order processing contract with the provider of "Zoom" with EU standard contractual clauses.
Further information on data protection at Zoom can be found in the provider's data protection declaration at: https://zoom.us/privacy and https://support.zoom.us/hc/en-us/articles/360000126326-Official-Statement-EU-GDPR-Compliance
It is great that you are interested in working for us!
We take protecting your personal data very seriously throughout the entire application process and would therefore like to tell you about how we protect data.
The online application portal can be accessed via our "Career Market" page. In order to offer you a convenient application process, we use the software solution of the provider BITE GmbH, Magirus-Deutz-Straße 16, 89077 Ulm (www.b-ite.de). In this context, BITE GmbH acts as a processor in accordance with Art. 4 No. 8, Art. 28 GDPR. By calling up the job advertisement page, a connection is established with the online application management system to BITE GmbH.
We process applicant data in order to meet our preparatory or contractual obligations during the application process as per art. 6 paragraph 1 point b GDPR and, if legal procedures require us to do so, as per art. 6 paragraph 1 point f GDPR (in Germany, the Federal Data Protection Act §26 BDSG also applies). All of adelphi’s employees and contracted agents have been expressly obligated to comply with the data protection provisions.
If personal data of a special category as per art. 9 paragraph 1 GDPR is voluntarily transmitted as part of an application, processing of this data is also subject to art. 9 paragraph 2 point b GDPR (e.g. data on health such as a disability or data concerning ethnicity). If, during the application process, we request personal data of a special category as per art. 9 paragraph 1 GDPR from applicants, processing of this data is also subject to art. 9 paragraph 2 point a GDPR (e.g. data on health that are required for performing the job).
This data policy applies to all personal data you send us with your application, be it online, in writing or any other way, and to any information inferable from the data when you send it to us for review with respect to employment in a vacant position or future vacancy.
Personal data comprises individual statements of personal of material circumstances but also includes information such as you name, your address, your phone number or your date of birth. We will therefore use your personal data and other data in our online application system solely to ensure that applications can be processed smoothly and correctly. Your data will be made available only to people involved in the application process.
We process the data you provide for the purpose of initiating the employment or contractual relationship in accordance with Section 26 (1) BDSG and Article 6 (1) sentence 1 lit. b GDPR.
Your personal data will be compared with our requirements profiles and evaluated accordingly for the purposes of filling job vacancies. We will keep your personal data on record only until it has been decided that you will not be employed. We will then delete your data. This usually means six months later. If you consent, we may keep your personal data on record after the application process for an advertised vacancy is over or if you have sent us a speculative application so that you will remain in our applicant pool for consideration in the event of future vacancies.
You can at any time enquire as to your personal data, and have it corrected or deleted. You can also at any time withdraw your consent to our using your personal data. To withdraw your consent, please send us an email to: jobsadelphi [dot] de (jobs[at]adelphi[dot]de)
Whenever you visit our websites, our web servers always temporarily save the connection data for the computer requesting access, the websites you are accessing, the date and duration of your visit, your browser's and operating system’s IDs and the website from which you accessed our site. We do this to help keep our systems secure. Any other personal data is only recorded of you enter it in our system as part of the application process.
We have put in place all necessary technical and organisational precautions to appropriately protect the data you provide us from loss, misuse or unauthorised use. This includes saving your data in secure business premises that are off-limits to the public.
adelphi cannot accept any liability for damage you may suffer from transmitting your personal data through the Internet.
If you have any questions concerning the protection of your personal data, please send us an email: jobsadelphi [dot] de (jobs[at]adelphi[dot]de).
We embed YouTube videos on some of our websites. These plug-ins are operated by YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you access a web page with the YouTube plug-in and click the video, you will be connected to YouTube’s servers. When this happens, YouTube receives information on the sites you are visiting. If you are logged in to your YouTube account, YouTube will be able to trace your surfing behaviour. You can prevent this by logging out of your YouTube account beforehand.
If you have disabled cookies for the Google Ad program, these YouTube cookies will also be disabled. However, YouTube stores further, non-personal user data in other cookies. If you want to prevent this, you will need to disable cookies in your browser settings.
For more information on data protection and YouTube, refer to the provider’s data policy here: https://www.google.com/intl/en/policies/privacy/
We embed Vimeo videos on some of our websites. These plug-ins are operated by Vimeo Inc., Attention: Legal Department, 555 West 18th Street New York, New York 10011, USA. When you access a web page with the Vimeo plug-in and click the video, you will be connected to Vimeo’s servers. When this happens, Vimeo receives information on the sites you are visiting. If you are logged in to your Vimeo account, Vimeo will be able to trace your surfing behaviour. You can prevent this by logging out of your Vimeo account beforehand.
Please note that Vimeo may employ Google Analytics; see the data policy (https://www.google.com/policies/privacy) and your opt-out options for Google Analytics (https://tools.google.com/dlpage/gaoptout) and the Google settings relating to data use for marketing purposes (https://adssettings.google.com/).
For more information on data protection and Vimeo, refer to the provider’s data policy here: https://vimeo.com/privacy.
We maintain an online presence in social media and platforms to communicate with the prospects and users active there and to keep them up-to-date on our services. When accessing social media networks and platforms, the respective operators’ terms and conditions and data policies will apply.
Unless noted otherwise in our data policy, we process the data of users who communicate with us through social media networks or platforms, e.g. by leaving comments on our websites or sending us messages.
The social media buttons we use on our website comply with data protection rules. They do not automatically connect you to Facebook (facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA).
By clicking Facebook’s Like button when logged in to your Facebook account, you can link our website content to your Facebook account. This will allow Facebook to trace your visit to our website to your user account. Please note that we as the provider of our sites are not informed of the data transmitted or of how Facebook uses the data. For more information, see Facebook’s data policy at https://facebook.com/policy.php.
The social media buttons we use on our website comply with data protection rules. They do not automatically connect you to X (X Corp. 1355 Market St, Suite 900, San Francisco, CA 94103, USA.).
By using X and its reposts function, the websites you visit are linked to your X account and communicated to other users. This also transmits data to X.
Please note that we as the provider of our sites are not informed of the data transmitted or of how X uses the data. For more information, see X’s data policy at https://x.com/privacy.
The social media buttons we use on our website comply with data protection rules. They do not automatically connect you to LinkedIn (LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA).
By clicking LinkedIn’s Recommend button when logged in to your LinkedIn account, you can link our website content to your LinkedIn account. This will allow LinkedIn to trace your visit to our website to your LinkedIn user account.
We have no control over the data LinkedIn records this way, nor over the extent of data LinkedIn collects this way. We are not informed of what data LinkedIn receives. For details on data collected by LinkedIn and on your rights and setting options, see LinkedIn’s data policy here: https://www.linkedin.com/legal/privacy-policy.
We use the reCAPTCHA service provided by Google Inc. to protect the orders you send us using the Internet form. The reCAPTCHA service employs a query to establish whether entries are made by a human being or fraudulently by automated, machine processing. The query includes transmission of the sending IP address and may include further data required by Google to operate the reCAPTCHA service. This entails transmission of your input to Google and its use by them. By using reCAPTCHA, you consent to Google using your recognition input for digitizing other works. If you have enabled IP anonymisation on this website, Google will truncate your IP address before transmission within European Union member states or other states party to the Treaty on the European Economic Area. In some exceptional cases, the full IP address will be transmitted to one of Google’s servers in the USA and truncated there. Google will use this information on behalf of this website’s operator to analyse your use of the service. The IP address sent by your browser as part of reCAPTCHA will not be associated with other data Google has. That data is subject to Google’s remaining data policy. For more information on Google’s data policy, see: https://www.google.com/policies/privacy/.
We use the open-source tool Matomo (formerly PIWIK) on our website to analyse our users’ surfing behaviour. The software stores a cookie on the user’s computer (see above for more on cookies). When any part of our website is accessed, the following data is stored:
This software runs only on the servers hosting our website. Users’ personal data is saved there and nowhere else. The data is not made accessible to third parties.
The software is set so that it does not save the full IP address but instead masks 2 bytes of the IP address (example: 192.168.xxx.xxx). This makes it impossible to associate the truncated IP address with the accessing computer.
The legal basis for processing the users’ personal data is art. 6 paragraph 1 point f GDPR.
Processing the users’ personal data allows us to analyse their surfing behaviour. By analysing the obtained data, we can compile information on how the various components of our website are used. This helps us keep on improving our website and its user experience. The above purposes also constitute our legitimate interests in processing the data under art. 6 paragraph 1 point f GDPR. Anonymising the IP addresses adequately satisfies the users’ interests in protecting their personal data.
The data is deleted as soon as we no longer need them for our records.
In our cases, this corresponds to six months later.
We offer our users the option to opt out of the analysis process. To do so, follow the corresponding link. This will save another cookie to your system which tells our system not to store your user data. If you delete this cookie from your system later, you will need to set the opt-out cookie again.
You may choose not to have a unique web analytics cookie identification number assigned to your computer to avoid the aggregation and analysis of data collected on this website.
To make that choice, please click below to receive an opt-out cookie.
For more details on privacy settings in Matomo, follow the link: https://matomo.org/docs/privacy/.
If your personal data is processed, you are a data subject as defined in the GDPR and consequently have the following rights:
You are entitled to request information from the controller on whether we are processing any personal data related to yourself.
If we do, you can further request information from the controller on the following:
You are entitled to request information on whether the personal data relating to yourself will be transmitted to a non-EU member state or international organisation. You are entitled in this context to request information on suitable safeguards according to art. 46 GDPR related to the transmission.
You are entitled to request that the controller corrects and/or completes the personal data relating to yourself if this data is incorrect or incomplete. The controller is obliged to do so without delay.
You can request limits to the processing of personal data relating to yourself if the following applies:
If processing the personal data relating to yourself has been limited, the data can without your consent be used neither to assert, exercise or defend legal claims nor to enforce protection of another individual’s or legal entity’s rights nor can it be processed in the public interest of the European Union or one of its member states. This does not apply to the storing of the data.
If processing has been restricted in accordance with the above conditions, you will be notified by the controller before any restrictions are lifted.
a) Obligation to delete
You can request that the controller delete the personal data relating to yourself immediately; the controller is then obliged to delete the data immediately, provided one of the following conditions applies:
b) Notification of third parties
If the controller has published personal data relating to yourself and has become obliged to delete it as per art. 17 paragraph 1 GDPR, the controller will take action, including technical measures, using the available technology and at appropriate expense with the aim of notifying any controllers processing your personal data that you as the data subject have requested deletion of all links to said personal data or to copies or reproductions thereof.
The right to erasure becomes void if processing is necessary
If you have asserted your right to rectification, erasure or restriction of processing against the controller, the controller is under obligation to notify all recipients to whom the personal data relating to yourself has been disclosed of the corresponding rectification or erasure of data or of the restriction of their processing. The controller is exempted from this obligation where such notification proves impossible or unreasonable.
You have the right to be informed of who these recipients are.
You have the right to receive the personal data concerning yourself that you have provided to a controller in a structured, commonly used and machine-readable format. You are also entitled to transmit this data to another controller without the controller to whom you have provided the data hindering you from doing so and if
When exercising this right, you can further request controllers to send the personal data relating to yourself directly to another controller, provided this is technically feasible. This must not adversely affect the liberties and rights of others.
The right to data portability does not extend to the processing of personal data where such processing is necessary for fulfilling a duty in the public interest or for exercising executive duties appointed to the controller.
You are entitled to object for reasons arising from your own personal situation at any time against processing of personal data relating to yourself where processing is legitimised by art. 6 paragraph 1 points e or f GDPR; this applies in equal measure to profiling legitimised by these provisions.
The controller will cease to process your personal data unless they can prove compelling legitimate reasons for processing that override your interests, rights and liberties or processing pursues the assertion, exercise or defence of legal claims.
If personal data relating to yourself is processed for the purpose of direct advertising, you are entitled to object at any time to the processing of your personal data for this purpose; this applies equally to profiling where it occurs in connection with such direct advertising.
If you object to processing for direct advertising, the personal data relating to yourself will no longer be processed for this purpose.
You may, in connection with the use of information society services – Directive 2002/58/EC notwithstanding – exercise your right to object by means of automated methods that are subject to technical specifications.
You are entitled to withdraw your consent under data protection law at any time. Your withdrawing consent does not affect legitimacy of any processing that has occurred with your consent prior to withdrawal.
You have the right not to be subject to any decision that entails legal implications for yourself or has similar, substantially adverse effects on yourself, if said decision is based solely on automated processing; this includes profiling. You do not have this right if the decision
However, such decisions may have been made based on personal data of special categories as per art. 9 paragraph 1 GDPR unless art. 9 paragraph 2 points a or g GDPR also apply and appropriate measures have been taken to protect your rights, liberties and legitimate personal interests.
With respect to cases (1) and (3), the controller shall take appropriate precautions to protect your rights, liberties and legitimate personal interests; such precautions will include at least the right to enforce intervention by a human individual at the controller’s, to put forward your own opinion and to contest the decision.
If you believe that processing of personal data relating to yourself is in breach of the GDPR, you have the right to lodge a complaint with a supervisory authority, particularly in the EU member state you, your place of work or the locale of the alleged infringement are in. This does not affect your recourse to other administrative or judicial remedies.
The supervisory authority receiving the complaint will keep the appellant up to date on status and results of the complaint, including on recourse to judicial remedies as per art. 78 GDPR.
We reserve the right to amend this data policy to keep it in line with the latest legal requirements or to adjust it to reflect changes to our services, e.g. if we introduce new services. The latest version of our data policy will apply to any further visits.
Latest version: 25 January 2023