Below we will inform you about the processing of your personal data by us and the claims and rights to which you are entitled in accordance with data protection regulations, in particular the European General Data Protection Regulation (GDPR).
This data protection information informs you about the type, scope and purpose of the processing of personal data within our website (hereinafter “website”). The data protection information applies regardless of the domains, platforms and devices used (e.g. desktop, mobile, etc.).
Personal data within the meaning of the GDPR is all data that can be related to you personally, e.g. E.g. name, address, email addresses, user behavior. Which data is processed in detail and how it is used depends largely on the services we use.
We use various other terms in the sense of the GDPR in our data protection information. This includes terms such as processing, restriction of processing, profiling, pseudonymization, controller, processor, recipient, third party, consent, supervisory authority and international organization. You can find corresponding definitions for these terms in Art. 4 GDPR.
1. Who is responsible for data processing and who can I contact?
The person responsible is:
Assisted Home Solutions GmbH
Freiherr-vom-Stein-Straße 10
64331 Weiterstadt
Phone: 06150 86940-981
Email: [email protected]
2. What sources and data do we use?
We process personal data that we receive from you as part of the use of our website and, if applicable, our business relationship.
When you use the website for purely informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. When you access our website, we collect the following access data, which is technically necessary for us to display our website to you and to ensure stability and security. The access data includes the IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (i.e. name of the specific website accessed), access status/HTTP status code, amount of data transferred, referrer URL (previously page visited), operating system and its interface, language and version as well as type of browser software, notification of successful access.
We also receive your personal data if you contact us using the contact form or email. Personal data here includes, for example, first name, last name, address, email, telephone number, type of treatment, treatment date and, if applicable, the data that you send to us as a message (hereinafter referred to as “contact data”).
3. What do we process your data for (purpose of processing) and on what legal basis?
We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) for the following purposes and on the basis of the following legal bases:
Consent, Article 9 Paragraph 2 Letter a) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) GDPR
If you have given us your consent to process personal data for specific purposes, in particular to contact you (e.g. via our contact form or by email to process and process the request, etc.), the lawfulness of this processing is based on given your consent. By clicking the submit button on the form, you expressly declare your informed consent to the collection, processing and use of your personal data.
Consent given can be revoked at any time. Please note that the revocation will only take effect in the future. Processing that took place before the revocation is therefore not affected by the revocation. The revocation can be made to the contact details mentioned above. .
Fulfillment of a contract and implementation of pre-contractual measures at the request of the person, Art. 6 Paragraph 1 Letter b) GDPR,
When you contact us, your information will be processed in addition to any consent given to process the contact request and its processing on the basis of the implementation of pre-contractual measures, Article 6 Paragraph 1 Sentence 1 Letter b) GDPR. Your personal data is then processed in order to make you an offer for a service you have requested.
Consent, Article 6 Paragraph 1 Sentence 1 Letter a) GDPR in conjunction with Section 25 Paragraph 1 Sentence 1 TDDDG.
When you visit our website for the first time, you will be asked whether you want to accept non-essential cookies. If you agree to the use of non-essential cookies, this enables us to analyze the use of our website. We may also conduct various marketing activities based on your interactions with the Website, other marketing channels and other third parties such as social networks.
To find out more about the cookies we use, including how to manage and delete cookies, see the Cookies section below.
Establishment of an employment relationship, and after completion of the application process in case of rejection to protect legitimate interests, Art. 6 Para. 1 Sentence 1 lit. f) GDPR (defence of claims), if consent has been given, Art. 6 Para. 1 Sentence 1 lit. a) GDPR
When you contact us (via contact form or email) in connection with your application, we process your data to check your suitability for the position (or other open positions in our company, if applicable) and to carry out the application process. Your applicant data will be viewed by the human resources department after we receive your application. Suitable applications are then forwarded internally to the department responsible for the respective open position. The further process will then be decided there. In principle, only those people in the company who need it for the proper processing of our application process have access to your data.
As part of the balancing of interests to protect legitimate interests, Article 6 Paragraph 1 Sentence 1 Letter f) GDPR
We process your access data (see data listed under point 2 above) to protect our legitimate interests or those of third parties. In particular, we pursue the following legitimate interests:
- Ensuring IT security, especially the security of the website;
- Advertising or market and opinion research, unless you have objected to the use of your data;
- Assertion of legal claims and defense in legal disputes
4. Who gets my data?
Within our company, those departments that need it to fulfill our contractual and legal obligations have access to your data.
Processors we use (Art. 28 GDPR) can also receive data for the purposes mentioned above. These are companies in the categories IT services, printing services, telecommunications, debt collection, advice and consulting as well as sales and marketing. If we pass on data to our service providers, they may only use the data to fulfill their tasks. The service providers were carefully selected and commissioned by us. They are contractually bound to our instructions, have appropriate technical and organizational measures in place to protect the rights of the data subjects, ensure an appropriate level of data protection and are carefully monitored by us.
Data will only be passed on to third parties who are not contract processors within the framework of the legal requirements. We only pass on user data to third parties if this is necessary, for example, to fulfill contractual obligations or based on legitimate interests in the economic and effective operation of our business, or if you have consented to the data transfer. When using the website for purely informational purposes, we generally do not pass on any data to third parties.
Further information regarding the transfer of your data to our partner clinics in paragraph 11.
5. How long will my data be stored?
For security reasons (e.g. to investigate acts of abuse or fraud), log file information is stored for a maximum of 90 days and then deleted (see point 2 above). Data whose further storage is necessary for evidentiary purposes is excluded from deletion until the respective incident has been finally clarified.
If necessary, we process and store your personal data for the duration of our business relationship, which also includes the initiation and processing of a contract.
In the event of a rejection, applicant data will be deleted after 6 months. If you have agreed to further storage of your personal data, we will add your data to our applicant pool. The data will be deleted there if you revoke your consent or at the latest after 5 years. If we fill the advertised position with you, your data will be stored in our personnel management system.
In addition, we are subject to various retention and documentation obligations, which arise, among other things, from the Commercial Code (HGB) and the Tax Code (AO). The periods specified there for storage and documentation are two to ten years.
Finally, the storage period is also determined by the statutory limitation periods, which, for example, according to Sections 195 ff. of the Civil Code (BGB), can usually be 3 years, but in certain cases up to thirty years, with the regular limitation period being three years.
If you assert your rights as a data subject, we will store the information provided to you in this regard until the expiry of the statutory limitation period in accordance with Section 31 Paragraph 2 No. 1 OWiG, Section 41 Paragraph 1 BDSG, Art. 83 Paragraph 5 lit b GDPR for three years. This period may be extended if the statutory limitation period is extended due to interruptions in the statute of limitations (e.g. in the context of inquiries from the supervisory authorities).
6. Will data be transferred to a third country or to an international organization?
The data provided will be processed within the European Union and in the USA. When data is transferred to the USA, we ensure that the recipients of the data comply with the EU-U.S. Data Privacy Framework certified or that we agree on EU standard data protection clauses with recipients without certification.
If we base the data transfer on the EU standard data protection clauses, we will take additional security measures to protect your data and to achieve an adequate level of protection for your personal data. You have the option of receiving or viewing a copy of the EU standard data protection clauses. If necessary, we will obtain your express consent to transfer data to the USA.
7. What data protection rights do I have?
Every affected person has
- the right to information in accordance with Art. 15 GDPR (i.e. you have the right to request information about your personal data stored by us at any time),
- the right to rectification in accordance with Art. 16 GDPR (i.e. if your personal data is incorrect or incomplete, you can request that this data be corrected),
- the right to deletion according to Art. 17 GDPR and the right to restriction of processing according to Art. 18 GDPR (i.e. you may have the right to request the deletion or restriction of the processing of your personal data if, for example, there is no reason for such processing legitimate business purpose no longer exists and legal retention obligations do not require further storage),
- the right to data portability under Art. 20 GDPR (i.e. you may have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format and to transmit this data to another person responsible without hindrance ).
You can also revoke your consent, generally with effect for the future.
In addition, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG). You can find the supervisory authority responsible for you at https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
We would also like to point out your right to object in accordance with Art. 21 GDPR:
Information about your right to object according to Art. 21 GDPR
You have the right to object at any time, for reasons related to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) sentence 1 lit. e) GDPR (data processing in the public interest) and Article 6 (1) sentence 1 lit. f) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
In individual cases, we process your personal data to conduct direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; This also applies to profiling insofar as it is connected to such direct advertising. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.
The objection can be made informally and there are no costs other than the transmission costs according to the basic tariffs.
If you would like to exercise your right to object, an informal message is sufficient, e.g. to the contact details mentioned above.
8. To what extent is there automated decision-making in individual cases, including profiling?
When accessing our website or contacting us via form or email, we generally do not use fully automated decision-making in accordance with Article 22 GDPR. If we use these procedures in individual cases, we will inform you separately if this is required by law. We do not process your data automatically with the aim of evaluating certain personal aspects (profiling).
9. Am I obliged to provide data?
As part of our website, you must provide the personal data that is required for technical or IT security reasons to use our website. If you do not provide this information, you will not be able to use our website.
When contacting us via form or email, you only need to provide the personal data that is necessary to process your request. Otherwise we cannot process your request.
10. Cookies
We ourselves and the service providers we use process personal data on this website and in this context use cookies and comparable technologies, such as web storage or web beacons. These technologies may store information on your device or access information stored on your device (so-called client-based tracking).
Cookies are stored in the browser on the user’s device. They contain information that is stored about a visited page. The cookie is either sent to the browser by the web server or generated in the browser by a script (JavaScript). The web server can read this cookie information directly when you visit this page again later or can transmit the cookie information to the server via a script on the website. If cookies are set, they usually collect and process certain user information on an individual basis, such as browser and location data as well as IP address values. Some of these cookies are essential for our website to function, while other cookies help us to improve our website by providing insights into how you use the website.
With web storage, information is stored locally in your browser’s cache. The stored information is either automatically deleted after the browser window is closed (“session storage”) or remains so that it can be read again when you visit the website again (“local storage”), provided you have set your browser settings. Do not clear cache (“browser data”).
Web beacons are 1×1 pixel graphics that are integrated into websites or e-mails (newsletters) in different ways and are also used to collect and evaluate user data.
You can individually prohibit the storage of cookies via the settings of your browser (you can find out how to set cookie treatment via the browser’s help page). You can find help with cookie management in the most common browsers at the following addresses:
- Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-loeschen-daten-von-websites-entfernen
- Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
- Google Chrome: https://support.google.com/accounts/answer/61416?hl=de
- Opera: http://www.opera.com/de/help
- Safari: https://support.apple.com/kb/PH17191?locale=de_DEviewlocale=de_DE
- Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-l%C3%B6schen-63947406-40ac-c3b8-57b9-2a946a29ae09.
Please note that deactivating cookies may lead to functional restrictions on this website.
We will inform you about the specific use of the above-mentioned technologies and the scope of the information collected in the following paragraphs.
10.1 Consent management with Real Cookie Banner
To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the “Real Cookie Banner” consent tool. Details on how “Real Cookie Banner” works can be found at https://devowl.io/de/rcb/datenverarbeitung/.
The legal basis for the processing of personal data in this context is Art. 6 (1) (c) GDPR and Art. 6 (1) (f) GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we cannot manage your consents.
11. Google Services
We use services from Google Ireland Limited (registration number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland (parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA) hereinafter “Google” on our website .
We have concluded a data processing contract with Google in accordance with Art. 28 GDPR.
Google’s data protection information can be found at https://policies.google.com/privacy and an opt-out is possible at https://adssettings.google.com/authenticated.
11.1 Google Maps
This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service we can integrate maps on our website.
In order to use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google can use Google Fonts for the purpose of uniform font display. When you access Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
The use of Google Maps is in the interest of an attractive presentation of our online offerings and to make it easy to find the places we indicate on the website. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Data transfer to the USA is based on the EU Commission’s standard contractual clauses.
Details can be found here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
You can find more information about how we handle user data in Google’s privacy policy:
https://policies.google.com/privacy.
The company is certified according to the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards when processing data in the USA. Every company certified according to the DPF undertakes to comply with these data protection standards. You can obtain further information from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
11.2 reCAPTCHA
We use the “reCAPTCHA” function to recognize whether entries in forms are made by people and not by automatically acting software tools (so-called “bots”).
The data processed includes IP address, information about operating systems, devices and browsers used, language settings, location, mouse movements, interactions with reCaptcha on other websites, possibly cookies and results of manual recognition processes (e.g. selection of images according to certain criteria) belong.
Data collection is carried out in accordance with Section 25 Paragraph 1 TDDDG, downstream data processing is carried out in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR based on our legitimate interest in the security of our web form.
12. Content Delivery Network
We use a so-called Content Delivery Network (“CDN”) from Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA (“Cloudflare”). The Content Delivery Network is an online service with which large media files (such as graphics, page content or scripts) are delivered via interconnected servers.
The processing is carried out in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate interest in the secure and efficient provision of our content, as well as the optimization of the loading speeds of our website.
For more information, please see Cloudflare’s privacy policy at: https://www.cloudflare.com/privacypolicy/
13. WPML
WPML is a multilingual system for WordPress websites from OnTheGoSystems Limited, Mercedes Barreda, 22/F 3 Lockhart Road, Hong Kong, Wanchai, China, to display the website in multiple languages and thus make it accessible to a larger number of users. Cookies or cookie-like technologies can be stored and read. These can store the user’s language and can redirect the user to the version of the website that corresponds to the language of the user’s browser. The legitimate interest in using this service is to store the user’s language in order to transmit the content in the correct language.
For more information, please see WPML’s privacy policy at: https://wpml.org/documentation/privacy-policy-and-gdpr-compliance/