The Alliance for Cyber Security, founded in 2012 by the German Federal Office for Information Security (BSI), aims to strengthen Germany’s resilience to cyber attacks. Companies, associations, authorities and organizations are thus provided with a platform through which information on current threat situations and practical cyber security measures can be exchanged. Participants benefit from the know-how as well as the numerous committed partners and can thus significantly improve the protection of their own IT infrastructure.
The responsible party within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
d.vinci HR-Systems GmbH
Nagelsweg 37-39, 20097 Hamburg
+ 49 (0) 40 37 47 99-70
+ 49 (0) 40 37 47 99 99
Management: Nina Rahn, Tobias Tiedgen
Registered office of the company: Hamburg
Registry court: Amtsgericht Hamburg
Registration number: HRB 93221
VAT ID according to §27a UStG DE 243027247
Your data subject rights
You can exercise the following rights at any time using the contact details provided by our data protection officer:
Information about your data stored by us and its processing,
Correction of incorrect personal data,
Deletion of your data stored by us,
Restriction of data processing, if we are not yet allowed to delete your data due to legal obligations,
Objection to the processing of your data by us and
Data portability, provided that you have consented to the data processing or have concluded a contract with us.
If you have given us consent, you can revoke this at any time with effect for the future.
You can file a complaint with the supervisory authority responsible for you at any time. Your competent supervisory authority depends on the federal state of your residence, your work or the alleged violation. A list of supervisory authorities (for the non-public sector) with address can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links- node.html.
Purposes of data processing by the controller and third parties
you have given your express consent to this,
the processing is necessary for the performance of a contract with you,
the processing is necessary for compliance with a legal obligation,
the processing is necessary to protect legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data.
Deletion or blocking of data
We adhere to the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes stated here or as stipulated by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.
Collection of general information when visiting our website
When you access our website, information of a general nature is automatically collected by means of a cookie. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your Internet service provider and the like. This is exclusively information that does not allow any conclusions to be drawn about your person.
This information is technically necessary in order to correctly deliver the content of web pages requested by you and is mandatory when using the Internet. In particular, it is processed for the following purposes:
Ensuring a smooth connection of the website,
Ensuring a smooth use of our website,
evaluating system security and stability, and for other administrative purposes.
The processing of your personal data is based on our legitimate interest from the aforementioned purposes for data collection. We do not use your data to draw conclusions about your person. Recipients of the data are only the responsible body and, if applicable, order processors.
Anonymous information of this kind is statistically evaluated by us, if necessary, in order to optimize our Internet presence and the technology behind it.
To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.
When users leave comments on our website, in addition to this information, the time of their creation and the user name previously selected by the website visitor are also stored. This serves our security, as we can be prosecuted for illegal content on our website, even if it was created by users.
We use the CRM system of salesforce.com Germany GmbH, Erikaann-Straße, 80636 Munich, Germany, on the basis of our legitimate interests (i.e. interest in the optimization and economic operation of our products and services within the meaning of Art. 6 para. 1 lit. f. GDPR) we use the CRM system of salesforce.com Germany GmbH, Erika-Mann-Straße 31, 80636 Munich. Salesforce specializes primarily in customer relationship management (CRM) for companies. To use Salesforce, at least one valid Email address must be provided. The other data, such as the first and last name, can become important for the processing of customer transactions and are therefore collected.
Use of social media links
Our Internet presence contains links to social networks such as Instagram, WhatsApp, Facebook, Twitter, TikTok, Youtube, Linkedin and Xing. When calling up the parts of our internet presence that contain such links, no personal data is transmitted to the operators of these social networks. Only when you click on the link and thereby visit the relevant social network, the operator of the visited network receives the relevant personal data. For more information about the data processing that takes place when you visit a social network and the person responsible for this within the meaning of Art. 4 No. 7 DSGVO, please refer to the website of the respective social network.
Translated with www.DeepL.com/Translator (free version)
We use the analysis tool Pardot of salesforce.com Inc, The Landmark at One Market, Suite 300, San Francisco, CA 94105, USA on the basis of your expressly granted consent (within the meaning of Art. 6 para. 1 lit a. GDPR). Pardot is a Salesforce software module. It provides special software for recording and evaluating the use of a website by website visitors. Based on your consent, we will regularly send you our newsletter or similar information by email to your specified email address.
To receive the newsletter, it is sufficient to provide your Email address. Subscribers may also be informed by email about circumstances relevant to the service or registration (for example, changes to the newsletter offer or technical circumstances).
For an effective registration we need a valid Email address. In order to verify that a registration is actually made by the owner of an email address, we use the “double-opt-in” procedure. For this purpose, we log the order of the newsletter, the sending of a confirmation e-mail and the receipt of the response requested herewith.
For technical reasons, this information can be assigned to individual newsletter recipients. However, the evaluations only serve us to recognize the reading habits of our users and to adapt our content to the users or to send different content according to the interests of our users.
You can object to the evaluation of your user behavior at any time by clicking on the unsubscribe link provided in every newsletter email or by informing us by email to firstname.lastname@example.org or via another contact channel. The information will be stored for as long as you are subscribed to the newsletter. After unsubscribing, we store the data purely statistically and anonymously.
In addition, you can deactivate the creation of pseudonymized usage profiles at any time by configuring your Internet browser so that cookies from the domain “pardot.com” are not accepted.
Use of Freshdesk
Use of the live chat software from Userlike
We use the live chat software of Userlike on the basis of our legitimate interests (i.e. interest in the optimization and economic operation of our products and services within the meaning of Art. 6 para. 1 lit. f. GDPR), we use the live chat software of the company Userlike UG (limited liability), Probsteigasse 44-46, 50670 Cologne, Germany.
Use of Feature Upvote
Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, Inc. (hereinafter: Google). The legal basis for this processing of personal data is Art. 6 (1) lit. f GDPR. Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, due to the activation of IP anonymization on these web pages, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
The purposes of data processing are to evaluate the use of the website and to compile reports on website activities. Based on the use of the website and the Internet, other related services shall then be provided. The processing is based on the legitimate interest of the website operator.
In addition or as an alternative to the browser add-on, you can prevent tracking by Google Analytics on our pages by clicking this link. This will install an opt-out cookie on your device. This will prevent the collection by Google Analytics for this website and for this browser in the future, as long as the cookie remains installed in your browser.
If browser notifications are activated by you for this website through the “signalize” service, a function of your Internet browser is used to provide the notifications for you. Only anonymous or pseudonymous data is transmitted for sending messages. Depending on the configuration of the website, this can be:
Identification value: a randomly generated, anonymous or pseudonymous value (example: 108bf9a85547edb1108bf9a85547edb1), which is stored in a tracking cookie ID and makes it possible to identify and retrieve the calling browser and the settings made in it for the notifications.
Pseudonymized identification numbers to identify the device or the user.
This data is processed only to deliver the notifications you have subscribed to and to make notification-related settings. We ask for your consent to store this data. The legal basis for data processing in this case is Art. 6 (1) lit. a GDPR. You can object to receiving notifications at any time via your browser settings. Information about opting out for web push notifications for the respective browsers can be found here: Google Chrome, Mozilla Firefox, Opera & Microsoft Edge.
In order to make the browser notifications meaningful for you in terms of content, we use the preferences collected on the basis of a pseudonymous user profile by means of tracking pixels and merge your notification ID with the user profile of the website solely for the purpose of personalized messaging. Tracking technology is also used to statistically analyze notifications on our behalf. This makes it possible to determine whether a notification was delivered and, if so, whether it was clicked on. The data thus generated is processed and stored on our behalf by etracker GmbH exclusively in Germany and is thus subject to strict German and European data protection laws and standards. etracker has been independently audited and certified in this regard and is permitted to bear the ePrivacyseal data protection seal of approval.
Data processing for statistical analysis of the notifications as well as to better adapt future notifications to the interests of the recipients is based on our legitimate interest in personalized direct advertising pursuant to Art. 6 (1) lit. f GDPR. Since the privacy of our visitors is very important to us, the data that may allow a reference to an individual person, such as the IP address, login or device identifiers, are anonymized or pseudonymized as soon as possible. A direct reference to a person is thereby excluded. No other use or disclosure to third parties will take place.
You can object to the aforementioned data processing at any time.
Use of script libraries (Google Webfonts)
In order to display our content correctly and graphically appealing across browsers, we use script libraries and font libraries such as Google Webfonts (https://www.google.com/webfonts/) on this website. Google Web Fonts are transferred to your browser’s cache to avoid multiple loading. If the browser does not support Google Web Fonts or prevents access, content is displayed in a standard font.
Calling up script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – although it is currently also unclear whether and, if so, for what purposes – that operators of corresponding libraries collect data.
Embedded YouTube videos
On some of our websites, we embed YouTube videos. The operator of the corresponding plugins is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit a page with the YouTube plugin, a connection to YouTube servers is established. This tells Youtube which pages you are visiting. If you are logged into your Youtube account, Youtube can assign your surfing behavior to you personally. You can prevent this by logging out of your Youtube account beforehand.
If you have deactivated the saving of cookies for the Google Ad program, you will not have to deal with such cookies when watching Youtube videos. However, Youtube also stores non-personal usage information in other cookies. If you would like to prevent this, you must block the storage of cookies in the browser.
Our website uses Google conversion tracking. If you have reached our website via an advertisement placed by Google, a cookie is set on your computer by Google Adwords. The conversion tracking cookie is set when a user clicks on an advertisement placed by Google. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of our website and the cookie has not yet expired, we and Google can recognize that the user clicked on the advertisement and was redirected to this page. Each Google AdWords customer receives a different cookie. Cookies can therefore not be tracked across AdWords customers’ websites. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their advertisement and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
If you do not wish to participate in the tracking, you can refuse the setting of a cookie required for this – for example, by means of a browser setting that generally deactivates the automatic setting of cookies or by setting your browser so that cookies from the domain “googleleadservices.com” are blocked.
Please note that you may not delete the opt-out cookies as long as you do not want any measurement data to be recorded. If you have deleted all your cookies in the browser, you must set the respective opt-out cookie again.
Use of Google Remarketing
This website uses the remarketing function of Google Inc. The function is used to present website visitors with interest-based advertisements within the Google advertising network. A so-called “cookie” is stored in the browser of the website visitor, which makes it possible to recognize the visitor when he or she visits websites that belong to the Google advertising network. On these pages, the visitor can be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google’s remarketing function.
d.vinci Multiposting Module
Integration of the data protection seal of Mein-Datenschutzbeauftragter.de
Changes to our data protection policy
Questions to the data protection officer
If you have any questions about data protection, please write us an Email or contact directly the person responsible for data protection in our organization: