Data protection statement
and data protection information in accordance with GDPR

The operators of this website take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with the statutory data protection regulations and this data protection statement.

1. Information about the collection of personal data and your rights 

1.1 We inform you below about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behaviour, IP-Address. 

1.2 The controller in accordance with Art. 4(7) EU General Data Protection Regulation (GDPR) is Meinecke & Rosengarten - Team für forschungsgestützte Marketingberatung GmbH, Winterstraße 2, 22765 Hamburg, basis(at)meinecke-rosengarten.de, phone: +49 (0) 40 38 60 92-0, fax: +49 (0) 40 38 60 92-99. You can contact our external data protection officer Andrea Schweizer on +49-89-9280850, as(at)schweizer.eu or by post (Schneckenburgerstr. 22, D-81675 Munich). 

1.3 When you contact us by e-mail, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions and enquiries. Our legitimate interest in processing and storing the data results from the need to be able to process your contact request properly and to answer your questions and enquiries. The relevant legal basis for this processing is therefore Art. 6 (1) sentence 1 lit. f) DS-GVO. Insofar as your enquiry is aimed at the conclusion of a contract/submission of an order, the legal basis is Art. 6 para. 1 p. 1 lit. b) DS-GVO. We process your data only for the purpose of communicating with you and processing your request. We delete the data accruing in this context after the storage is no longer necessary to achieve the purpose of its collection (after the conclusion of the conversation), or restrict the processing if there are legal retention obligations.

1.4 You have the following legal rights with regard to us concerning your personal data: 
- Right of access (Art. 15 GDPR), 
- Right to rectification (Art. 16 GDPR), 
- Right to erasure (‘right to be forgotten’) (Art. 17 GDPR), 
- Right to restriction of processing (Art. 18 GDPR), 
- Right to data portability (Art. 20 GDPR), 
- Right to object to processing (Art. 21 GDPR) 

You also have the right to complain to a data protection supervisory authority concerning the processing of your personal data by us. 

2. Collection of personal data during a mere informational visit to our website 

2.1 If you use the website merely for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to guarantee stability and security (legal basis is Art. 6(1)(f) GDPR): 
- IP address 
- Date and time of the request 
- Time zone difference to Greenwich Mean Time (GMT) 
- Content of the request (specific page) 
- Access status/HTTP status code 
- The amount of data transferred in each case 
- Website from which the request originates 
- Browser 
- Operating system and its interface 
- Language and version of the browser software. 

We have signed an order processing contract with our host provider in accordance with Art. 28 DS-GVO. The IP address is anonymised via a random value so that a personal reference is no longer possible. The log file data is stored in encrypted form and deleted after 14 days at the latest.

2.2 We do not use cookies, neither to operate our website technically, nor to make it more user-friendly or to optimise it for advertising purposes.

2.3 Use of cookies: 
a) This website uses the following types of cookies, the scope and functionality of which are explained below: 
- Transient cookies (see b) 
- Persistent cookies (see c). 

b) Transient cookies are automatically deleted when you close your browser. These include, in particular, session cookies. They store what is known as a session ID, which can be used to assign various requests from your browser to the shared session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close your browser. 

c) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.

d) You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. We would like to point out that you may not be able to use all functions of this website. 

e) The Flash cookies used are not recorded by your browser, but by your Flash plug-in. We also use HTML5 storage objects, which are stored on your device. These objects store the required data regardless of the browser you are using and do not have an automatic expiration date. If you do not wish the Flash cookies to be processed, you must install an appropriate add-on, e.g. “Better Privacy” for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash Killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using private mode in your browser. We also recommend that you regularly delete your cookies and browser history manually. 

3. Data protection for applications and during the application procedure 
The controller collects and processes the personal data of applicants for the purpose of processing the application procedure. In doing so, we receive all data that you send us voluntarily and consciously, but at least your sending e-mail address. Processing may also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents electronically, for example by e-mail, to the controller. If the controller concludes a contract with an applicant, the data transmitted will be stored for the purpose of processing the employee relationship in compliance with the statutory provisions (legal basis: § 26 Art. 6(1)(b) GDPR). If the controller does not conclude a contract with the applicant, the application documents will be deleted six months after notification of the rejection decision, provided that no other legitimate interests (legal basis: Art. 6(1)(f) GDPR) of the controller conflict with such deletion. Other legitimate interests in this sense include, for example, the duty to provide evidence in proceedings under the General Act on Equal Treatment (Allgemeines Gleichbehandlungsgesetz – AGG). 

4. Social-Media
We maintain presences on the social media platforms LinkedIn and Xing in order to exchange information with interested parties and customers and to inform them about our services (legal basis: Art. 6 (1) sentence 1 lit. f) DS-GVO). Our website does not contain any links to these platforms, so we do not process any data during your mere informative visit. For more information on the purpose and scope of data collection and processing by the respective social media channels, please refer to the following data protection declarations of these providers. There you will also receive further information on your rights in this regard and setting options for protecting your privacy.
a) LinkedIn: The operating company is LinkedIn Ireland Unlimited Company, Legal Dept. (Privacy Policy and User Agreement), Wilton Plaza, Wilton Place, Dublin 2, Irland. The privacy policy published by LinkedIn can be found at https://www.linkedin.com/legal/privacy-policy.
b) Xing: The operating company of Xing is New Work SE, Dammtorstr. 30, 20354 Hamburg, Deutschland. The privacy policy published by Xing can be found at https://www.xing.com/privacy.

5. Objection to or withdrawal of consent for the processing of your data 
5.1 If you have given your consent to the processing of your data, you can withdraw it at any time (Meinecke & Rosengarten - Team für forschungsgestützte Marketingberatung GmbH, Winterstraße 2, 22765 Hamburg, basis(at)meinecke-rosengarten.de , telephone: +49 (0) 40 38 60 92-0, fax: +49 (0) 40 38 60 92-99). A withdrawal of this kind influences the permissibility of the processing of your personal data after you have announced it to us. 

5.2 If we base the processing of your personal data on a balancing of interests (Art. 6(1)(f) GDPR), you can object to the processing (Meinecke & Rosengarten - Team für forschungsgestützte Marketingberatung GmbH, Winterstraße 2, 22765 Hamburg, basis(at)meinecke-rosengarten.de , telephone: +49 (0) 40 38 60 92-0, fax: +49 (0) 40 38 60 92-99). This is the case if the processing is not necessary, in particular, for the performance of a contract with you. 

6. Sharing of data with third parties 
In some cases, we use external service providers (processors – website hosting, website programming) that we have carefully selected, commissioned in writing and in accordance with the legal regulations, who are bound by our instructions and regularly monitored. The service providers are not permitted to pass your data on to third parties. 

7. Data security/technical and organisational measures 
Technical measures are maintained to ensure data security, in particular to protect your personal data. 

8. Reservation of right to make amendments 
We reserve the right to change this privacy statement at any time in accordance with legal requirements. 

Last updated: September 2021 
Copyright: Lachenmann in Koreng/Lachenmann, Formularhandbuch Datenschutzrecht, 2^nd  edition 2018, edited and supplemented by Andrea Schweizer, Kanzlei Prof. Schweizer Rechtsanwaltsgesellschaft mbH, Schneckenburgerstr.22, 81675 Munich.