d.vinci – Data Protection

We have been a member of the Alliance for Cyber Security since May 2019.

Founded in 2012 by the German Federal Office for Information Security (BSI), the Alliance for Cyber Security aims to strengthen Germany’s resistance to cyber attacks. This provides companies, associations, authorities and organizations with a platform for exchanging information on current threats and practical cyber security measures. Participants benefit from the know-how and the numerous committed partners and can thus significantly improve the protection of their own IT infrastructure.

Privacy Policy

Responsible body per data protection law, in particular the EU General Data Protection Regulation (GDPR), is:

d.vinci HR-Systems GmbH
Nagelsweg 37-39, 20097 Hamburg
+(49) 40 37 47 99 0
+(49) 40 37 47 99 99
Management: Nina Rahn, Tobias Tiedgen
Seat of the company: Hamburg
Court registration: District Court of Hamburg
Registration number: HRB 93221
VAT ID per §27a of the German VAT Act: DE 243027247

Your Rights as a Data Subject

You can always exercise the following rights by contacting our data protection officer:

  • Provision of information about what data we hold on you and how we process it,
  • Correction of incorrect personal data,
  • Deletion of data we have regarding you,
  • Limitation of data processing, if we are not allowed to delete your data due to legal obligations,
  • Objection to the processing of your data by us and
  • Data portability, if you have consented to the data processing or have signed a contract with us.

If you have given us your consent, you can revoke it at any time with effect for the future.

You can complain to the relevant supervisory authority at any time. Your supervisory authority will depend on the federal state in which you live, in which you work, or in which the alleged violation took place. A list of the supervisory authorities (for the non-public arena) with addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links- node.html.

Purposes of Data Processing by the Responsible Body and Third Parties

We process your personal data only for the purposes stated in this Privacy Policy. Transfer of your personal data to third parties for purposes other than those listed does not take place. We only share your personal information with third parties if:

  • You have given your express consent,
  • Processing is required to complete a contract with you,
  • Processing is required to fulfil a legal obligation,

The processing is necessary to protect legitimate interests and there is no reason to believe that you have an overriding interest in the non-disclosure of your data.

Deletion or Blocking of Data

We adhere to the principles of data avoidance and data economy. Therefore, we only store your personal data for as long as is necessary to achieve the purposes mentioned here or as provided for by the various storage periods specified by law. After expiry of the respective purpose or expiry of these deadlines, the corresponding data will be routinely be blocked and deleted in accordance with the legal regulations.

Collecting General Information When You Visit Our Website

When you access our website, a cookie automatically gathers information of a general nature. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your internet service provider, and similar information. This is solely information which cannot be used to draw conclusions about you as a person.

This information is technically necessary to properly deliver content from web pages requested by you and is unavoidable when using the internet. They are processed for the following purposes in particular:

  • Ensuring a hassle-free connection to the site,
  • Ensuring the smooth use of our website,
  • Evaluating system security and stability, and
  • For further administrative purposes.

The processing of your personal data is based on our legitimate interest per the aforementioned data collection purposes. We do not use your data to draw conclusions about your person. The data will only be received by the responsible body and possibly by the data processor.

Anonymous information of this kind may be statistically evaluated by us for optimisation of our website and the underlying technology.


You can of course also view our website without cookies. Internet browsers are generally set to accept cookies. In general, you can disable the use of cookies at any time through the settings of your browser. Please use the help features of your internet browser to find out how to change these settings. Please note that some features of our website may not work if you have disabled the use of cookies.

SSL Encryption

In order to protect the security of your data during transmission, we use current, state-of-the-art encryption methods (e.g. SSL) over HTTPS.

Comments Feature

If users leave comments on our site, the time of their creation and the username previously chosen by the site visitor will also be saved. This is for our security, as we may be prosecuted for any illegal content on our website, even if it was created by users.


On the basis of your expressly given consent, we will regularly send you our newsletter or comparable information, by email and to the email address you specified.

To receive the newsletter, providing your email address is sufficient. When you sign up to receive our newsletter, the data you provide will be used exclusively for this purpose. Subscribers may also be notified by email about matters relevant to the service or the registration (such as changes to the newsletter or technical issues).

To ensure registration, we need a valid email address. To verify whether the owner of an email address actually wishes to subscribe, we use the “double opt-in” procedure. To do this we record the order of the newsletter, the dispatch of a confirmation email and the receipt of the requested answer.

By signing up for the newsletter, you agree that to provide this feature, we may use the infrastructure of MailGun Inc., 620 Folsom St, Ste 100, San Francisco, CA 94107, USA, to deliver emails. MailGun Inc. is certified under the EU-US Privacy Shield and is committed to maintaining a level of data privacy comparable to that ensured by European data protection standards. Further information can be found in the privacy policy of MailGun Inc.: https://www.mailgun.com/privacy-policy/

You can withdraw your consent to the storage of your personal data and its use for the newsletter dispatch at any time. Each newsletter has a link to it. You can also send us your request to delete your data to privacy@dvinci.de

Contact Form

If you contact us by contact form or email, you freely consent to us contacting you. For this, you will need to enter a valid email address. This is used to categorise and answer your request. The specification of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions. Once your query has been answered, your personal data will be automatically deleted.

Use of Freshdesk

On the basis of our legitimate interests (i.e. interest in the optimisation and economic operation of our customer support in the sense of Art. 6 para. 1 lit. f. DSGVO) the service of the provider Freshworks Inc, 1250 Bayhill Drive, Suite 315, San Bruno, CA 94066, USA. The location of the data centre of our Freshdesk domain is Frankfurt am Main. Freshdesk’s services allow us to organize and efficiently answer customer inquiries in order to ensure the smoothest possible customer support. Freshdesk is a ticketing system of the American Freshworks Inc. Information about the type, scope and purpose of data processing can be found in the Freshworks privacy policy.

Use of the Live Chat Software from Userlike

On the basis of our legitimate interests (i.e. interest in the optimization and economic operation of our products and services within the meaning of Art. 6 para. 1 lit. f. DSGVO) we use the live chat software of the company Userlike UG ( limited liability), Probsteigasse 44-46, 50670 Cologne, Germany. The live chat provides an additional customer service for the visitors of our website to get in touch with our employees directly.

Userlike uses cookies, which are stored on the visitors’ computer, to provide a personal conversation in the form of a real-time chat on the website. Information about the nature, extent and purpose of data processing can be found in Userlike UG’s privacy policy ( limited liability): https://www.userlike.com/de/terms#privacy-policy.

Translated with www.DeepL.com/Translator (free version)

Use of Feature Upvote

On the basis of our legitimate interests (i.e. interest in the optimisation and economic operation of our products and services within the meaning of Art. 6 para. 1 lit. f. DSGVO) we use the service Feature Upvote of the provider Barbary Software SL, Carrer Marina 60, 08005 Barcelona, Spain. Feature Upvote’s services allow us to collect feedback from customers in order to further improve our products. Feature Upvote allows our customers to suggest new features for our products and vote on the suggestions. Feature Upvote is a product feedback system from the Spanish company Barbary Software SL. Information about the type, scope and purpose of data processing can be found in Feature Upvote’s privacy policy.

Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (hereinafter: Google). The legal basis for this processing of personal data is Article 6 (1) lit. f DSGVO. Google Analytics uses so-called “cookies”, i.e. text files that are stored on your computer and which allow analysis of how you use the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, due to the activation of IP anonymisation on these websites, your IP address will be shortened beforehand by Google if you are within a member state of the European Union or in another state which signatory to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide to the website operator other services related to website activity and internet usage. The IP address provided by Google Analytics as part of Google Analytics will not be merged by Google with other data.

The purposes of data processing are the evaluation of the use of the website and the compilation of reports on activities on the website. Based on the use of the website and of the internet, other related services will be provided. The data processing is based on the legitimate interest of the website operator.

You can prevent the storage of cookies by setting your browser software accordingly; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you can prevent the collection by Google of the data (including your IP address) generated by the cookie and related to your use of the website, and also the processing of this data by Google, by downloading and installing the browser plug-in available under the following link: Browser Add On for the Deactivation of Google Analytics.

In addition to or as an alternative to the browser add-on, you can prevent tracking via Google Analytics on our sites by clicking on this link. An opt-out cookie will be installed on your device. This will prevent data collection by Google Analytics for this website and for this browser in the future, as long as the cookie remains installed in your browser.

Analysis via WiredMinds

Our website uses the counting pixel technology of WiredMinds AG (www.wiredminds.de) to analyse visitor behaviour

Data are collected, processed and stored, and from these, usage profiles are created under a pseudonym. Where possible and useful, these usage profiles are completely anonymised. Cookies can be used for this purpose. Cookies are small text files that are stored in the visitor’s internet browser and serve to recognise the internet browser for future visits. The collected data, which may also contain personal data, will be transmitted to WiredMinds or collected directly by WiredMinds. WiredMinds may use information created by visits to the websites to create anonymised usage profiles. Without the separate consent of the data subject, the data obtained will not be used to personally identify the visitor of this website and they will not be merged with personal data about the bearer of the pseudonym. When IP addresses are recorded, they are immediately anonymised by deleting the last number block.

Data collection, processing and storage may be objected to at any time, with future effect, via the following link: Exclude from website-tracking

Browser notifications

If you activate browser notifications for this website using the “signalize” service, a function of your Internet browser is used to provide the notifications for you. Only anonymous or pseudonymous data will be transmitted for sending messages. This can be depending on the configuration of the website:

  • identification value: a randomly generated, anonymous or pseudonymous value (example: 108bf9a85547edb1108bf9a85547edb1) stored in a tracking cookie ID, which allows the calling browser and the notification settings made therein to be identified and retrieved
  • Pseudonymised code numbers for identification of the device or the user
This data is only processed to deliver the notifications you have subscribed to and to make notification-related settings. We ask for your consent to store this data. In this case, the legal basis for data processing is Art. 6 para. 1 lit. a DSGVO. You can object to the receipt of notifications at any time via the settings of your browser. Information on the unsubscription for Web Push notifications for the respective browsers can be found here: Google Chrome, Mozilla Firefox, Opera & Microsoft Edge.
In order to make the browser notifications meaningful for you in terms of content, we use the preferences collected by means of tracking pixels on the basis of a pseudonymous user profile and merge your notification ID with the user profile of the website for the sole purpose of sending personalized messages. The tracking technology is also used for statistical evaluation of the notifications on our behalf. This allows us to determine whether a notification was delivered and, if so, whether it was clicked. The data generated in this way is processed and stored on our behalf by etracker GmbH exclusively in Germany and is therefore subject to the strict German and European data protection laws and standards. etracker has been independently tested and certified in this respect and is entitled to use the data protection seal of approval ePrivacyseal.

The data processing for the statistical analysis of the notifications and in order to better adapt future notifications to the interests of the recipients is based on our legitimate interest in personalised direct advertising in accordance with Art. 6 Para. 1 letter f DSGVO. As the privacy of our visitors is very important to us, data that may allow a reference to an individual person, such as the IP address, login or device IDs, are anonymised or pseudonymised as soon as possible. A direct personal reference is thereby excluded. There is no other use or disclosure to third parties.

You can object to the aforementioned data processing at any time.

Use of Script Libraries (Google Web Fonts)

To present our content in a correct and graphically appealing way, we use script libraries and font libraries such as Google Web Fonts on this website. (https://www.google.com/webfonts/). Google Web Fonts are transferred to the cache of your browser, so that they do not have to be loaded multiple times. If the browser does not support Google Web Fonts or prohibits access, content will be displayed in a standard font.

The loading of script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – but currently also unclear whether and for what purposes – that operators of such libraries collect data.

The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/

Embedded YouTube Videos

On some of our websites, we embed YouTube videos. The operator of the corresponding plugin is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with the YouTube plug-in, you connect to YouTube’s servers. YouTube will be informed which pages you visit. If you are logged into your YouTube account, YouTube can link your browsing behaviour to you personally. You can prevent this by logging out of your YouTube account beforehand.

If a YouTube video is started, the provider uses cookies that collect information about user behaviour.

Anyone who has disabled the storage of cookies for the Google ad programme will not have to expect such cookies, even when watching YouTube videos. YouTube also stores non-personal usage information in other cookies. If you want to prevent this, you must block the storage of cookies in the browser.

For further information on data protection at YouTube, please refer to the provider’s privacy policy at: https://www.google.de/intl/en/policies/privacy/

Google AdWords

Our website uses Google conversion tracking. If you have reached our website via an advertisement served by Google, Google Adwords will set a cookie on your computer. The conversion tracking cookie is set when a user clicks on a Google-served ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages on our website and the cookie has not expired, we and Google may recognise that the user clicked on the ad and was redirected to this page. Each Google AdWords customer receives a different cookie. Cookies cannot be tracked through AdWords advertisers’ websites. The information gathered using the conversion cookie is used to generate conversion statistics for AdWords advertisers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive information that personally identifies users.

If you do not want to be tracked, you can refuse the cookie which is required for tracking – you can do this, for example, via a browser setting that generally deactivates the automatic setting of cookies or that sets your browser so that cookies from the domain “googleleadservices.com” are blocked.

Please note that if you delete the opt-out cookie, measurement data about you will once again be recorded. If you have deleted all your cookies in the browser, you will have to set the respective opt-out cookie again.

Use of Google Remarketing

This website uses the remarketing feature provided by Google Inc. The feature is designed to present interest-based ads to web page visitors within the Google Network. A so-called “cookie” is stored in the browser of the website visitor. The cookie makes it possible to recognise the visitor when they visit websites that belong to the advertising network of Google. On these pages, visitors can be presented with ads that relate to content that the visitor previously viewed on websites that use Google’s remarketing feature.

Google states that it does not collect any personal data during this process. However, if you still do not want Google’s Remarketing feature, you can disable it by changing the settings under http://www.google.com/settings/ads. Alternatively, you can disable the use of cookies for interest-based advertising through the Network Initiative by following the instructions in http://www.networkadvertising.org/managing/opt_out.asp folgen.

d.vinci Multiposting Module

We give our customers the option of choosing the d.vinci Multiposting module. The d.vinci Multiposting Module is implemented by our technology partner and service provider, GoHiring GmbH, Friedelstraße 40, 12047 Berlin. GoHiring is a company that, with the help of its software, enables companies looking for personnel to publish job advertisements on various third-party job portals (job exchanges). When using the d.vinci Multiposting Module, personal data is transmitted to and processed by our service provider GoHiring. For further information on the data processing processes when using the d.vinci Multiposting Module, please refer toPrivacy policy of GoHiring GmbH.

Integration of the privacy seal of Mein-Datenschutzbeauftragter.de

We have integrated the data protection seal of Mein-Datenschutzbeauftragter.de on our website. The integration of the seal on our site is done via a JavaScript snippet. The image file of the seal is stored on the servers of Mein-Datenschutzbeauftragter.de. As soon as you access our website, the snippet is loaded and the image file is loaded from the servers of Mein-Datenschutzbeauftragter.de and displayed on our website. In order to make the retrieval technically possible and to display the seal in your browser accordingly, your IP address in particular is transmitted to Mein-Datenschutzbeauftragter.de and stored in the server logs of Mein-Datenschutzbeauftragter.de. The image is provided with a link that leads to the website of Mein-Daten-Datenschutzbeauftragter.de for further information about the seal. In this regard, the statements on linking in this privacy policy apply. No user profiles are created or other tracking measures are carried out by the seal. The integration is carried out in accordance with the legal basis of Art. 6 para. 1 lit. f DSGVO due to our legitimate interest in informing you about the data protection-compliant design of our website with a seal that is always up to date.

Changes to Our Privacy Policy

We reserve the right to modify this Privacy Policy to always comply with the current legal requirements, or to add changes in our services to the Privacy Policy; for instance when we introduce new services. This new Privacy Policy will then apply to subsequent visits you make to the website.

Questions to the Data Protection Officer

If you have questions about privacy, please email us or contact our organisation’s data protection officer:

Herr Frank Gundlach
Rudolf‐Diesel‐Straße 10
23617 Stockelsdorf
or send an email to

This Privacy Policy was created with activeMind AG’s Privacy Policy Generator.

Version September 2020