Privacy Policy

Privacy Policy

We greatly app­re­ciate your inte­rest in our com­pany. Data pro­tec­tion has a par­ti­cu­larly high prio­rity for the manage­ment of bizzy GmbH & Co. KG. The use of the web­sites of bizzy GmbH & Co. KG is gene­rally pos­sible wit­hout pro­vi­ding any per­sonal data. However, if a data sub­ject wishes to make use of spe­cial ser­vices of our com­pany via our web­site, the pro­ces­sing of per­sonal data may become neces­sary. If the pro­ces­sing of per­sonal data is required and there is no legal basis for such pro­ces­sing, we will gene­rally obtain the con­sent of the data sub­ject.

The pro­ces­sing of per­sonal data, such as the name, address, e‑mail address, or tele­phone number of a data sub­ject, is always car­ried out in accordance with the General Data Pro­tec­tion Regu­la­tion (GDPR) and in com­pli­ance with the country-spe­cific data pro­tec­tion pro­vi­sions appli­cable to bizzy GmbH & Co. KG.

By means of this Pri­vacy Policy, our com­pany would like to inform the public about the nature, scope, and pur­pose of the per­sonal data we collect, use, and pro­cess. Fur­ther­more, data sub­jects are informed of their rights by means of this Pri­vacy Policy.

As the con­troller respon­sible for pro­ces­sing, bizzy GmbH & Co. KG has imple­mented num­e­rous tech­nical and orga­niza­tional mea­sures to ensure the most com­plete pro­tec­tion pos­sible of per­sonal data pro­cessed through this web­site. Nevert­heless, internet-based data trans­mis­sions can gene­rally have secu­rity gaps, so abso­lute pro­tec­tion cannot be gua­ran­teed. For this reason, every data sub­ject is free to transfer per­sonal data to us by alter­na­tive means, e.g. by tele­phone.


Definitions

The Pri­vacy Policy of bizzy GmbH & Co. KG is based on the ter­mi­no­logy used by the Euro­pean legis­lator when adop­ting the General Data Pro­tec­tion Regu­la­tion (GDPR). Our Pri­vacy Policy is intended to be easy to read and under­stand for the general public, as well as for our cus­to­mers and busi­ness part­ners. To ensure this, we would like to explain the ter­mi­no­logy used in advance.

In this Pri­vacy Policy, we use the fol­lo­wing terms, among others:

a) Per­sonal data
Per­sonal data means any infor­ma­tion rela­ting to an iden­ti­fied or iden­ti­fiable natural person (her­ein­after “data sub­ject”). An iden­ti­fiable natural person is one who can be iden­ti­fied, directly or indi­rectly, in par­ti­cular by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­tion number, loca­tion data, an online iden­ti­fier, or to one or more fac­tors spe­cific to the phy­sical, phy­sio­lo­gical, genetic, mental, eco­nomic, cul­tural, or social iden­tity of that natural person.

b) Data sub­ject
A data sub­ject is any iden­ti­fied or iden­ti­fiable natural person whose per­sonal data is pro­cessed by the con­troller respon­sible for the pro­ces­sing.

c) Pro­ces­sing
Pro­ces­sing is any ope­ra­tion or set of ope­ra­tions which is per­formed on per­sonal data or on sets of per­sonal data, whe­ther or not by auto­mated means, such as coll­ec­tion, recor­ding, orga­niza­tion, struc­tu­ring, sto­rage, adapt­a­tion or altera­tion, retrieval, con­sul­ta­tion, use, dis­clo­sure by trans­mis­sion, dis­se­mi­na­tion, or other­wise making available, ali­gnment or com­bi­na­tion, rest­ric­tion, era­sure, or des­truc­tion.

d) Rest­ric­tion of pro­ces­sing
Rest­ric­tion of pro­ces­sing means the mar­king of stored per­sonal data with the aim of limi­ting its pro­ces­sing in the future.

e) Pro­filing
Pro­filing means any form of auto­mated pro­ces­sing of per­sonal data con­sis­ting of the use of per­sonal data to eva­luate cer­tain per­sonal aspects rela­ting to a natural person, in par­ti­cular to ana­lyze or pre­dict aspects con­cer­ning that natural person’s per­for­mance at work, eco­nomic situa­tion, health, per­sonal pre­fe­rences, inte­rests, relia­bi­lity, beha­vior, loca­tion, or move­ments.

f) Pseud­ony­miza­tion
Pseud­ony­miza­tion means the pro­ces­sing of per­sonal data in such a manner that the per­sonal data can no longer be attri­buted to a spe­cific data sub­ject wit­hout the use of addi­tional infor­ma­tion, pro­vided that such addi­tional infor­ma­tion is kept sepa­ra­tely and is sub­ject to tech­nical and orga­niza­tional mea­sures to ensure that the per­sonal data are not attri­buted to an iden­ti­fied or iden­ti­fiable natural person.

g) Con­troller or con­troller respon­sible for the pro­ces­sing
Con­troller or con­troller respon­sible for the pro­ces­sing means the natural or legal person, public aut­ho­rity, agency, or other body which, alone or jointly with others, deter­mines the pur­poses and means of the pro­ces­sing of per­sonal data.

h) Pro­cessor
A pro­cessor is a natural or legal person, public aut­ho­rity, agency, or other body which pro­cesses per­sonal data on behalf of the con­troller.

i) Reci­pient
A reci­pient is a natural or legal person, public aut­ho­rity, agency, or ano­ther body, to which the per­sonal data are dis­c­losed, whe­ther a third party or not. However, public aut­ho­ri­ties which may receive per­sonal data in the frame­work of a par­ti­cular inquiry in accordance with Union or Member State law shall not be regarded as reci­pi­ents.

j) Third party
A third party is a natural or legal person, public aut­ho­rity, agency, or body other than the data sub­ject, con­troller, pro­cessor, and per­sons who, under the direct aut­ho­rity of the con­troller or pro­cessor, are aut­ho­rized to pro­cess per­sonal data.

k) Con­sent
Con­sent of the data sub­ject means any freely given, spe­cific, informed, and unam­bi­guous indi­ca­tion of the data subject’s wishes by which he or she, by a state­ment or by a clear affir­ma­tive action, signi­fies agree­ment to the pro­ces­sing of per­sonal data rela­ting to him or her.

Name and Address of the Controller

The con­troller within the mea­ning of the General Data Pro­tec­tion Regu­la­tion (GDPR), other data pro­tec­tion laws appli­cable in the Member States of the Euro­pean Union, and other pro­vi­sions with a data pro­tec­tion cha­racter is:

bizzy GmbH & Co.KG
Heil­bronner Straße 150
70191 Stutt­gart
Contact: via Contact form


Cookies

Infor­ma­tion about coo­kies and how we use them can be found in our Cookie Policy

Collection of General Data and Information

Each time the web­site of bizzy GmbH & Co. KG is accessed by a data sub­ject or an auto­mated system, a series of general data and infor­ma­tion is coll­ected and stored in the server’s log files. The fol­lo­wing infor­ma­tion may be coll­ected:

  1. the types and ver­sions of brow­sers used,

  2. the ope­ra­ting system used by the acces­sing system,

  3. the web­site from which an acces­sing system rea­ches our web­site (so-called referrer),

  4. the sub-pages accessed via an acces­sing system on our web­site,

  5. the date and time of access to the web­site,

  6. an Internet Pro­tocol (IP) address,

  7. the Internet ser­vice pro­vider of the acces­sing system, and

  8. other similar data and infor­ma­tion that serve to pro­tect against threats in the event of attacks on our IT sys­tems.

When using this general data and infor­ma­tion, bizzy GmbH & Co. KG does not draw any con­clu­sions about the data sub­ject. Rather, this infor­ma­tion is needed to:

  • deliver the con­tent of our web­site cor­rectly,

  • opti­mize the con­tent of our web­site and its adver­ti­sing,

  • ensure the long-term func­tion­a­lity of our IT sys­tems and web­site tech­no­logy, and

  • pro­vide the neces­sary infor­ma­tion to law enforce­ment aut­ho­ri­ties in the event of a cyber­at­tack.

The­r­e­fore, this anony­mously coll­ected data and infor­ma­tion is eva­luated by bizzy GmbH & Co. KG both sta­tis­ti­cally and with the aim of incre­asing data pro­tec­tion and data secu­rity in our com­pany, ulti­m­ately ensu­ring an optimal level of pro­tec­tion for the per­sonal data we pro­cess.

The anony­mous data of the server log files is stored sepa­ra­tely from all per­sonal data pro­vided by a data sub­ject.

Registration on Our Website

Data sub­jects have the oppor­tu­nity to register on the web­site of the con­troller by pro­vi­ding per­sonal data. Which per­sonal data is trans­mitted to the con­troller is deter­mined by the respec­tive input mask used for regis­tra­tion. The per­sonal data entered by the data sub­ject is coll­ected and stored exclu­si­vely for internal use by the con­troller and for its own pur­poses. The con­troller may arrange for transfer to one or more pro­ces­sors (e.g., a parcel ser­vice), which will also use the per­sonal data solely for an internal pur­pose attri­bu­table to the con­troller.

By regis­tering on the web­site of the con­troller, the IP address assi­gned by the Internet ser­vice pro­vider (ISP) of the data sub­ject, as well as the date and time of regis­tra­tion, are also stored. The sto­rage of this data takes place against the back­ground that this is the only way to pre­vent misuse of our ser­vices and, if neces­sary, to enable the inves­ti­ga­tion of com­mitted offenses. In this respect, the sto­rage of this data is neces­sary to secure the con­troller. This data will not be dis­c­losed to third par­ties unless there is a legal obli­ga­tion to dis­c­lose it or the dis­clo­sure serves the pur­pose of cri­minal pro­se­cu­tion.

The regis­tra­tion of the data sub­ject, with the vol­un­tary pro­vi­sion of per­sonal data, is intended to enable the con­troller to offer con­tent or ser­vices that can only be offered to regis­tered users due to the nature of the matter. Regis­tered per­sons are free to change the per­sonal data pro­vided during regis­tra­tion at any time or to have it com­ple­tely deleted from the data­base of the con­troller.

The con­troller shall, at any time upon request, pro­vide each data sub­ject with infor­ma­tion about which per­sonal data is stored about the data sub­ject. Fur­ther­more, the con­troller shall cor­rect or delete per­sonal data at the request or indi­ca­tion of the data sub­ject, pro­vided that this does not con­flict with any sta­tu­tory reten­tion obli­ga­tions. All employees of the con­troller are available to the data sub­ject as contact per­sons in this con­text.

Subscription to Our Newsletter

On the web­site of bizzy GmbH & Co. KG, users are given the oppor­tu­nity to sub­scribe to our company’s news­letter. The input mask used for this pur­pose deter­mines what per­sonal data is trans­mitted to the con­troller when orde­ring the news­letter.

bizzy GmbH & Co. KG informs its cus­to­mers and busi­ness part­ners at regular inter­vals by means of a news­letter about com­pany offers. The com­pany news­letter may, in prin­ciple, only be received by the data sub­ject if:

  1. the data sub­ject has a valid e‑mail address, and

  2. the data sub­ject regis­ters for the news­letter mai­ling.

For legal reasons, a con­fir­ma­tion e‑mail in the double opt-in pro­ce­dure will be sent to the e‑mail address entered by a data sub­ject for the first time for news­letter dis­patch. This con­fir­ma­tion e‑mail serves to check whe­ther the owner of the e‑mail address, as the data sub­ject, has aut­ho­rized the receipt of the news­letter.

During the regis­tra­tion for the news­letter, we also store the IP address of the com­puter system assi­gned by the Internet ser­vice pro­vider (ISP) and used by the data sub­ject at the time of regis­tra­tion, as well as the date and time of regis­tra­tion. The coll­ec­tion of this data is neces­sary in order to trace (pos­sible) misuse of a data subject’s e‑mail address at a later date and the­r­e­fore serves the legal pro­tec­tion of the con­troller.

The per­sonal data coll­ected as part of a regis­tra­tion for the news­letter is used exclu­si­vely for sen­ding our news­letter. Sub­scri­bers to the news­letter may also be informed by e‑mail if this is neces­sary for the ope­ra­tion of the news­letter ser­vice or a related regis­tra­tion, as might be the case in the event of changes to the news­letter offe­ring or a change in tech­nical cir­cum­s­tances. There is no transfer of the per­sonal data coll­ected by the news­letter ser­vice to third par­ties.

The sub­scrip­tion to our news­letter may be ter­mi­nated by the data sub­ject at any time. The con­sent to the sto­rage of per­sonal data, which the data sub­ject has given us for the news­letter dis­patch, may be revoked at any time. For the pur­pose of revo­king con­sent, a cor­re­spon­ding link is found in each news­letter. Fur­ther­more, it is pos­sible to unsub­scribe from the news­letter at any time directly on the web­site of the con­troller or to com­mu­ni­cate this to the con­troller in ano­ther way.

If we engage a third-party pro­vider to send the news­letter or to use a news­letter soft­ware solu­tion, we will expli­citly indi­cate this on our web­site. In such cases, the pri­vacy poli­cies of the com­mis­sioned pro­vider apply accor­dingly.

Use of Google reCAPTCHA

We use the Google reCAPTCHA ser­vice to deter­mine whe­ther data entered in our contact or news­letter form is pro­vided by a human or by an auto­mated pro­gram. Google veri­fies this based on the fol­lo­wing data: the IP address of the device used, the spe­cific web page you visit on our site where reCAPTCHA is embedded, the date and dura­tion of the visit, reco­gni­tion data of the browser and ope­ra­ting system used, Google account infor­ma­tion (if you are logged into Google), mouse move­ments on the reCAPTCHA area, and tasks in which you must iden­tify images.

The legal basis for the described data pro­ces­sing is Article 6(1)(f) GDPR. Our legi­ti­mate inte­rest lies in ensu­ring the secu­rity of our web­site and pro­tec­ting it against auto­mated inputs (abuse and attacks).


Newsletter Tracking / Link Tracking

The news­let­ters and cer­tain links on the web­site of bizzy GmbH & Co. KG con­tain so-called tracking pixels. A tracking pixel is a minia­ture gra­phic embedded in e‑mails sent in HTML format, enab­ling log file recor­ding and ana­lysis. This allows a sta­tis­tical eva­lua­tion of the suc­cess or failure of online mar­ke­ting cam­paigns.

Based on the embedded tracking pixel, bizzy GmbH & Co. KG can see if and when an e‑mail was opened by a data sub­ject and which links con­tained in the e‑mail were accessed.

The per­sonal data coll­ected through tracking pixels con­tained in the newsletters/links are stored and ana­lyzed by the con­troller in order to opti­mize the news­letter dis­tri­bu­tion and to better adapt the con­tent of future news­let­ters to the inte­rests of the data sub­ject. These per­sonal data will not be dis­c­losed to third par­ties.

Data sub­jects are entitled at any time to revoke the sepa­rate con­sent decla­ra­tion pro­vided via the double opt-in pro­ce­dure. After revo­ca­tion, these per­sonal data will be deleted by the con­troller. Unsub­scribing from the news­letter is auto­ma­ti­cally inter­preted by bizzy GmbH & Co. KG as a revo­ca­tion.

Contact via the Website

The web­site of bizzy GmbH & Co. KG con­tains, due to legal requi­re­ments, infor­ma­tion that enables quick elec­tronic contact with our com­pany as well as direct com­mu­ni­ca­tion with us. This also includes a general address of so-called elec­tronic mail (e‑mail address).

If a data sub­ject cont­acts the con­troller by e‑mail or via a contact form, the per­sonal data trans­mitted by the data sub­ject is auto­ma­ti­cally stored. Such per­sonal data trans­mitted on a vol­un­tary basis by a data sub­ject to the con­troller is stored for the pur­pose of pro­ces­sing or cont­ac­ting the data sub­ject. There is no transfer of this per­sonal data to third par­ties.

Routine Erasure and Blocking of Personal Data

The con­troller shall pro­cess and store per­sonal data of the data sub­ject only for the period neces­sary to achieve the pur­pose of sto­rage, or insofar as this is granted by the Euro­pean legis­lator or ano­ther legis­lator in laws or regu­la­tions to which the con­troller is sub­ject.

If the sto­rage pur­pose is not appli­cable, or if a sto­rage period pre­scribed by the Euro­pean legis­lator or ano­ther com­pe­tent legis­lator expires, the per­sonal data shall be rou­ti­nely blo­cked or erased in accordance with legal requi­re­ments.

Rights of the Data Subject

Every data sub­ject has the fol­lo­wing rights under the GDPR:

a) Right of con­fir­ma­tion
Each data sub­ject shall have the right granted by the Euro­pean legis­lator to obtain from the con­troller con­fir­ma­tion as to whe­ther or not per­sonal data con­cer­ning him or her are being pro­cessed. If a data sub­ject wishes to exer­cise this right of con­fir­ma­tion, he or she may contact an employee of the con­troller at any time.

b) Right of access
Each data sub­ject shall have the right to obtain from the con­troller free infor­ma­tion about his or her per­sonal data stored at any time and a copy of this infor­ma­tion. Fur­ther­more, the Euro­pean legis­lator grants the data sub­ject access to the fol­lo­wing infor­ma­tion:

  • the pur­poses of the pro­ces­sing,

  • the cate­go­ries of per­sonal data con­cerned,

  • the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­sonal data have been or will be dis­c­losed, in par­ti­cular reci­pi­ents in third count­ries or inter­na­tional orga­niza­tions,

  • where pos­sible, the envi­saged period for which the per­sonal data will be stored, or, if not pos­sible, the cri­teria used to deter­mine that period,

  • the exis­tence of the right to request from the con­troller rec­ti­fi­ca­tion or era­sure of per­sonal data, or rest­ric­tion of pro­ces­sing of per­sonal data con­cer­ning the data sub­ject, or to object to such pro­ces­sing,

  • the exis­tence of the right to lodge a com­plaint with a super­vi­sory aut­ho­rity,

  • where the per­sonal data are not coll­ected from the data sub­ject: any available infor­ma­tion as to their source,

  • the exis­tence of auto­mated decision-making, inclu­ding pro­filing, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful infor­ma­tion about the logic involved, as well as the signi­fi­cance and envi­saged con­se­quences of such pro­ces­sing for the data sub­ject.

Fur­ther­more, the data sub­ject has the right to know whe­ther per­sonal data are trans­ferred to a third country or to an inter­na­tional orga­niza­tion. In such case, the data sub­ject has the right to be informed of the appro­priate safe­guards rela­ting to the transfer.

c) Right to rec­ti­fi­ca­tion
Each data sub­ject shall have the right to obtain from the con­troller the rec­ti­fi­ca­tion of inac­cu­rate per­sonal data con­cer­ning him or her wit­hout undue delay. Taking into account the pur­poses of the pro­ces­sing, the data sub­ject has the right to have incom­plete per­sonal data com­pleted, inclu­ding by means of pro­vi­ding a sup­ple­men­tary state­ment.

d) Right to era­sure (Right to be for­gotten)
Each data sub­ject shall have the right to obtain from the con­troller the era­sure of per­sonal data con­cer­ning him or her wit­hout undue delay where one of the fol­lo­wing grounds applies, as long as the pro­ces­sing is not neces­sary:

  • The per­sonal data are no longer neces­sary in rela­tion to the pur­poses for which they were coll­ected or other­wise pro­cessed.

  • The data sub­ject with­draws con­sent on which the pro­ces­sing is based accor­ding to Article 6(1)(a) GDPR, or Article 9(2)(a) GDPR, and where there is no other legal ground for the pro­ces­sing.

  • The data sub­ject objects to the pro­ces­sing pur­suant to Article 21(1) GDPR, and there are no over­ri­ding legi­ti­mate grounds for the pro­ces­sing, or the data sub­ject objects to the pro­ces­sing pur­suant to Article 21(2) GDPR.

  • The per­sonal data have been unlawfully pro­cessed.

  • The per­sonal data must be erased for com­pli­ance with a legal obli­ga­tion in Union or Member State law to which the con­troller is sub­ject.

  • The per­sonal data have been coll­ected in rela­tion to the offer of infor­ma­tion society ser­vices referred to in Article 8(1) GDPR.

If one of the above reasons applies, and a data sub­ject wishes to request the era­sure of per­sonal data stored by bizzy GmbH & Co. KG, he or she may contact any employee of the con­troller at any time. The employee of bizzy GmbH & Co. KG shall ensure that the era­sure request is com­plied with imme­dia­tely.

Where bizzy GmbH & Co. KG has made per­sonal data public and is obliged pur­suant to Article 17(1) GDPR to erase the per­sonal data, bizzy GmbH & Co. KG, taking account of available tech­no­logy and the cost of imple­men­ta­tion, shall take reasonable steps, inclu­ding tech­nical mea­sures, to inform other con­trol­lers pro­ces­sing the per­sonal data that the data sub­ject has requested era­sure by such con­trol­lers of any links to, or copy or repli­ca­tion of, those per­sonal data, as far as pro­ces­sing is not required.

e) Right of rest­ric­tion of pro­ces­sing
Each data sub­ject shall have the right to obtain from the con­troller rest­ric­tion of pro­ces­sing where one of the fol­lo­wing applies:

  • The accu­racy of the per­sonal data is con­tested by the data sub­ject, for a period enab­ling the con­troller to verify the accu­racy of the per­sonal data.

  • The pro­ces­sing is unlawful and the data sub­ject opposes the era­sure of the per­sonal data and requests ins­tead the rest­ric­tion of their use.

  • The con­troller no longer needs the per­sonal data for the pur­poses of the pro­ces­sing, but they are required by the data sub­ject for the estab­lish­ment, exer­cise, or defense of legal claims.

  • The data sub­ject has objected to pro­ces­sing pur­suant to Article 21(1) GDPR pen­ding the veri­fi­ca­tion whe­ther the legi­ti­mate grounds of the con­troller over­ride those of the data sub­ject.

If one of the above con­di­tions is met, and a data sub­ject wishes to request the rest­ric­tion of pro­ces­sing of per­sonal data stored by bizzy GmbH & Co. KG, he or she may contact any employee of the con­troller at any time. The employee will arrange the rest­ric­tion of pro­ces­sing.

f) Right to data por­ta­bi­lity
Each data sub­ject shall have the right to receive the per­sonal data con­cer­ning him or her, which was pro­vided to a con­troller, in a struc­tured, com­monly used, and machine-rea­dable format. He or she shall also have the right to transmit those data to ano­ther con­troller wit­hout hin­drance from the con­troller to which the per­sonal data have been pro­vided, as long as the pro­ces­sing is based on con­sent pur­suant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, or on a con­tract pur­suant to Article 6(1)(b) GDPR, and the pro­ces­sing is car­ried out by auto­mated means, pro­vided that the pro­ces­sing is not neces­sary for the per­for­mance of a task car­ried out in the public inte­rest or in the exer­cise of offi­cial aut­ho­rity vested in the con­troller.

In exer­cising his or her right to data por­ta­bi­lity pur­suant to Article 20(1) GDPR, the data sub­ject shall have the right to have the per­sonal data trans­mitted directly from one con­troller to ano­ther, where tech­ni­cally fea­sible and when doing so does not adver­sely affect the rights and free­doms of others.

To assert the right to data por­ta­bi­lity, the data sub­ject may contact any employee of bizzy GmbH & Co. KG at any time.

g) Right to object
Each data sub­ject shall have the right to object, on grounds rela­ting to his or her par­ti­cular situa­tion, at any time, to the pro­ces­sing of per­sonal data con­cer­ning him or her, which is based on Article 6(1)(e) or (f) GDPR. This also applies to pro­filing based on these pro­vi­sions.

bizzy GmbH & Co. KG shall no longer pro­cess the per­sonal data in the event of the objec­tion, unless we can demons­trate com­pel­ling legi­ti­mate grounds for the pro­ces­sing which over­ride the inte­rests, rights, and free­doms of the data sub­ject, or for the estab­lish­ment, exer­cise, or defense of legal claims.

Where bizzy GmbH & Co. KG pro­cesses per­sonal data for direct mar­ke­ting pur­poses, the data sub­ject shall have the right to object at any time to the pro­ces­sing of per­sonal data con­cer­ning him or her for such mar­ke­ting. This applies to pro­filing to the extent that it is related to such direct mar­ke­ting. If the data sub­ject objects to bizzy GmbH & Co. KG to the pro­ces­sing for direct mar­ke­ting pur­poses, bizzy GmbH & Co. KG will no longer pro­cess the per­sonal data for these pur­poses.

In addi­tion, the data sub­ject has the right, on grounds rela­ting to his or her par­ti­cular situa­tion, to object to the pro­ces­sing of per­sonal data con­cer­ning him or her by bizzy GmbH & Co. KG for sci­en­tific or his­to­rical rese­arch pur­poses, or for sta­tis­tical pur­poses pur­suant to Article 89(1) GDPR, unless the pro­ces­sing is neces­sary for the per­for­mance of a task car­ried out for reasons of public inte­rest.

To exer­cise the right to object, the data sub­ject may contact any employee of bizzy GmbH & Co. KG. The data sub­ject is also free, in the con­text of the use of infor­ma­tion society ser­vices, and not­wi­th­stan­ding Direc­tive 2002/58/EC, to exer­cise his or her right to object by auto­mated means using tech­nical spe­ci­fi­ca­tions.

h) Auto­mated indi­vi­dual decision-making, inclu­ding pro­filing
Each data sub­ject shall have the right not to be sub­ject to a decision based solely on auto­mated pro­ces­sing, inclu­ding pro­filing, which pro­duces legal effects con­cer­ning him or her, or simi­larly signi­fi­cantly affects him or her, as long as the decision:

  • is not neces­sary for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the con­troller, or

  • is not aut­ho­rized by Union or Member State law to which the con­troller is sub­ject and which also lays down sui­table mea­sures to safe­guard the data subject’s rights and free­doms and legi­ti­mate inte­rests, or

  • is not based on the data subject’s explicit con­sent.

If the decision is:

  • neces­sary for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the con­troller, or

  • based on the data subject’s explicit con­sent,

bizzy GmbH & Co. KG shall imple­ment sui­table mea­sures to safe­guard the data subject’s rights and free­doms and legi­ti­mate inte­rests, inclu­ding at least the right to obtain human inter­ven­tion on the part of the con­troller, to express his or her point of view, and to con­test the decision.

If the data sub­ject wishes to exer­cise the rights con­cer­ning auto­mated indi­vi­dual decision-making, he or she may contact any employee of bizzy GmbH & Co. KG at any time.

i) Right to with­draw con­sent
Each data sub­ject shall have the right to with­draw his or her con­sent to pro­ces­sing of his or her per­sonal data at any time.

If the data sub­ject wishes to exer­cise the right to with­draw con­sent, he or she may contact any employee of bizzy GmbH & Co. KG at any time.

Data Protection in Applications and the Application Process

The con­troller coll­ects and pro­cesses the per­sonal data of appli­cants for the pur­pose of mana­ging the recruit­ment pro­cess. Pro­ces­sing may also take place elec­tro­ni­cally. This is par­ti­cu­larly the case if an appli­cant sub­mits rele­vant appli­ca­tion docu­ments to the con­troller by elec­tronic means, for example by e‑mail or via a web form on the web­site.

If the con­troller con­cludes an employ­ment con­tract with an appli­cant, the trans­mitted data will be stored for the pur­pose of pro­ces­sing the employ­ment rela­ti­onship in com­pli­ance with legal requi­re­ments. If no employ­ment con­tract is con­cluded with the appli­cant, the appli­ca­tion docu­ments will be auto­ma­ti­cally deleted two months after noti­fi­ca­tion of the rejec­tion decision, pro­vided that no other legi­ti­mate inte­rests of the con­troller pre­vent such dele­tion. A legi­ti­mate inte­rest in this sense could be, for example, a duty to pro­vide evi­dence in pro­cee­dings under the General Equal Tre­at­ment Act (AGG).


Privacy Policy for the Use of Google Analytics

This web­site uses func­tions of the web ana­ly­tics ser­vice Google Ana­ly­tics. The pro­vider is Google Inc., 1600 Amphi­theatre Parkway, Moun­tain View, CA 94043, USA. Google Ana­ly­tics uses so-called “coo­kies,” which are text files placed on your com­puter that enable an ana­lysis of your use of the web­site. The infor­ma­tion gene­rated by the cookie about your use of this web­site is gene­rally trans­mitted to a server of Google in the USA and stored there.

If IP anony­miza­tion is acti­vated on this web­site, your IP address will, however, be shor­tened by Google within the Member States of the Euro­pean Union or in other con­trac­ting states of the Agree­ment on the Euro­pean Eco­nomic Area. Only in excep­tional cases will the full IP address be trans­mitted to a Google server in the USA and shor­tened there.

On behalf of the ope­rator of this web­site, Google will use this infor­ma­tion to eva­luate your use of the web­site, to com­pile reports on web­site acti­vity, and to pro­vide the web­site ope­rator with other ser­vices rela­ting to web­site usage and internet usage. The IP address trans­mitted by your browser as part of Google Ana­ly­tics will not be merged with other data from Google.

You may pre­vent the sto­rage of coo­kies by sel­ec­ting the appro­priate set­tings in your browser soft­ware; however, please note that if you do so, you may not be able to use all the func­tions of this web­site to their full extent. You can also pre­vent the coll­ec­tion of data gene­rated by the cookie and related to your use of the web­site (inclu­ding your IP address) by Google as well as the pro­ces­sing of this data by Google by down­loa­ding and instal­ling the browser plug-in available at the fol­lo­wing link:
http://tools.google.com/dlpage/gaoptout?hl=en

Legal Basis for Processing

Article 6(1)(a) GDPR serves as the legal basis for pro­ces­sing ope­ra­tions for which we obtain con­sent for a spe­cific pro­ces­sing pur­pose. If the pro­ces­sing of per­sonal data is neces­sary for the per­for­mance of a con­tract to which the data sub­ject is a party—such as pro­ces­sing ope­ra­tions required for the supply of goods or the pro­vi­sion of ano­ther service—processing is based on Article 6(1)(b) GDPR. The same applies to pro­ces­sing ope­ra­tions neces­sary for car­rying out pre-con­trac­tual mea­sures, such as inqui­ries con­cer­ning our pro­ducts or ser­vices.

If our com­pany is sub­ject to a legal obli­ga­tion that requires the pro­ces­sing of per­sonal data, such as for ful­fil­ling tax obli­ga­tions, the pro­ces­sing is based on Article 6(1)© GDPR.

In rare cases, pro­ces­sing of per­sonal data may become neces­sary to pro­tect the vital inte­rests of the data sub­ject or ano­ther natural person. This would be the case, for example, if a visitor were injured on our pre­mises and his or her name, age, health insu­rance details, or other vital infor­ma­tion had to be passed on to a doctor, hos­pital, or third party. In this case, pro­ces­sing would be based on Article 6(1)(d) GDPR.

Finally, pro­ces­sing ope­ra­tions may be based on Article 6(1)(f) GDPR. This legal basis applies to pro­ces­sing ope­ra­tions not covered by any of the afo­re­men­tioned legal bases, where pro­ces­sing is neces­sary for the pur­poses of the legi­ti­mate inte­rests pur­sued by our com­pany or by a third party, pro­vided that such inte­rests are not over­ridden by the inte­rests, fun­da­mental rights, and free­doms of the data sub­ject. Such pro­ces­sing ope­ra­tions are par­ti­cu­larly per­mis­sible because they have been spe­ci­fi­cally men­tioned by the Euro­pean legis­lator. The legis­lator con­sidered that a legi­ti­mate inte­rest could be assumed if the data sub­ject is a cus­tomer of the con­troller (Recital 47, sen­tence 2 GDPR).


Legitimate Interests Pursued by the Controller or a Third Party

Where the pro­ces­sing of per­sonal data is based on Article 6(1)(f) GDPR, our legi­ti­mate inte­rest is to con­duct our busi­ness in favor of the well-being of all our employees and share­hol­ders.


Period for Which Personal Data Will Be Stored

The cri­terion used to deter­mine the period of sto­rage of per­sonal data is the respec­tive sta­tu­tory reten­tion period. After the expi­ra­tion of that period, the cor­re­spon­ding data is rou­ti­nely deleted, pro­vided it is no longer neces­sary for the per­for­mance of a con­tract or the initia­tion of a con­tract.

Provision of Personal Data as Statutory or Contractual Requirement

We inform you that the pro­vi­sion of per­sonal data is partly required by law (e.g., tax regu­la­tions) or can also result from con­trac­tual pro­vi­sions (e.g., details of the con­trac­tual partner). In some cases, it may be neces­sary for a con­tract to be con­cluded that a data sub­ject pro­vides us with per­sonal data which must sub­se­quently be pro­cessed by us.

The data sub­ject is, for example, obliged to pro­vide us with per­sonal data when our com­pany enters into a con­tract with him or her. Failure to pro­vide the per­sonal data would mean that the con­tract with the data sub­ject could not be con­cluded.

Before per­sonal data is pro­vided by the data sub­ject, the data sub­ject must contact one of our employees. Our employee will cla­rify, on a case-by-case basis, whe­ther the pro­vi­sion of per­sonal data is required by law or con­tract, or is neces­sary for the con­clu­sion of a con­tract, whe­ther there is an obli­ga­tion to pro­vide the per­sonal data, and what the con­se­quences of non-pro­vi­sion of the per­sonal data would be.


Existence of Automated Decision-Making

As a respon­sible com­pany, we do not use auto­matic decision-making or pro­filing.

Objection to Advertising Emails

We hereby object to the use of contact data published within the scope of the legal notice obli­ga­tion for the trans­mis­sion of adver­ti­sing and infor­ma­tion mate­rials not expressly requested. The ope­ra­tors of this web­site expressly reserve the right to take legal action in the event of unso­li­cited sen­ding of adver­ti­sing infor­ma­tion, for example through spam emails.

Top

Your partner in shaping and transforming sales and service organizations

Schedule your free, no-obligation introductory call right here. We look forward to connecting with you