Data protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this Privacy Policy.

In general, you can use our website without providing personal data. The personal data (e.g. name, address, email addresses and IP address) collected by us is provided on a voluntary basis, as far as possible. This data will not be disclosed to third parties without your explicit consent.

Please note that data transmitted via the internet (e.g. when communicating via email) may be subject to security vulnerabilities. It is not possible to fully protect the data from third-party access.

Data Controller

GP+S Consulting GmbH
Nehringstr. 2
61352 Bad Homburg v.d.H.
Germany
Tel: +49 6172 - 4 95 56 0
Fax: +49 6172 - 4 95 56 125
Email: info@gps-consulting.com

Data Protection Officer

PROLIANCE GmbH / www.datenschutzexperte.de
Data Protection Officer: Dominik Fünkner
Leopoldstr. 21
80802 München
Germany
E-Mail: datenschutzbeauftragter@datenschutzexperte.de

Terms
Our Privacy Policy should be easy for everyone to understand. The Privacy Policy generally uses the official terms of the General Data Protection Regulation (GDPR). The official terms are explained in Article 4 GDPR.

Data processing when you visit our website
When you visit our website, it is technically necessary that data is transmitted to our web server via your internet browser. The following data is collected during an ongoing connection to facilitate communication between your internet browser and our web server:

  • Domain visited
  • Date and time of visit
  • Page from which the file was requested
  • Access status (file transfer, file not found, etc.)
  • Web browser used and operating system used
  • IP address of the visiting computer
  • Data volume transferred

We collect the data listed above in order to ensure a smooth connection to the website and to allow users to conveniently use our website. In addition, the log files facilitate the evaluation of system security and stability as well as administrative processes. The legal basis for the temporary storage of data and log files is Article 6 para. 1 letter f General Data Protection Regulation (GDPR).

For reasons of technical security, in particular to ward off attacks on our web server, this data may be temporarily stored by us. It is not possible to identify a specific individual based on these data. After seven days at the latest, the data is anonymised by shortening the IP address at the domain level, so that it is no longer possible to relate to the individual user.

Google Analytics
This website uses the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (hereinafter referred to as "Google"). Google Analytics uses cookies. These are text files that are stored on your computer, which help to analyse how you use the website. The information generated by the cookies about your use of this website is usually transmitted to a Google server in the USA and stored there.

If IP anonymisation is enabled on this website, Google will first truncate your email within the member states of the European Union or in other countries which are signatories to the Agreement on the European Economic Area. Only in exceptional cases will your full IP address be transmitted to a Google server in the USA and anonymised there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted from your browser via Google Analytics will not be merged with other data from Google. The US-based Google Inc. complies with the EU-US Privacy Shield, which ensures compliance with EU data protection regulations. The processing is carried out in accordance with Article 6 para. 1 letter f GDPR and § 15 para. 3 of the German Telemedia Act (TMG) based on our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes.

You can prevent the installation of the cookies by activating the relevant setting of your browser software, however, please note that if you do this you may not be able to access all the functions of this website. You can also prevent the collection by Google of the data generated by cookies and data related to your use of the website (including your IP address) and the processing of this data by Google by downloading the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=en

You can also prevent Google Analytics from collecting your data by clicking on the following link and setting a so-called "opt-out cookie": Disable Google Analytics

The Google Analytics Terms of Use and Privacy Policy are available under the following links: http://www.google.com/analytics/terms/en.html and https://www.google.com/intl/en/policies/.

For information about how your data is handled by Google Analytics, please refer to the Google Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en

Simple Analytics
Our website uses "Simple Analytics", an internet analysis service from Simple Analytics, Hooftlaan 4, 1401 ED Bussum, Netherlands. With the help of this service, certain usage data of site visitors (date and time of access, user agent of the browser) are collected in anonymous form, evaluated and processed in automatic reports.

The legal basis is our legitimate interest, in accordance with Art. 6 para. 1 lit. f DSGVO, to continuously optimize our online offer on one hand, and in recognizing and solving technical problems such as error messages during page views or search engine problems, on the other hand. Simple Analytics operates via a simple script code without cookies or the use of IP address. This means that Simple Analytics does not save cookies on your end user device, at any time.

The software only tracks the following metrics:

  • page views
  • referrer
  • top pages
  • screen sizes
  • browser
  • countries

The information processed via Simple Analytics never contains personal references and therefore, does not allow any conclusions about your person.

If you do not wish the information described to be processed in the future, you can prevent this by deactivating Java-Script in your browser. Alternatively, you can also prevent the execution of Java-Script code by installing a Java-Script blocker (e.g. https://noscript.net/ or https://www.ghostery.com). In this case, however, it is very likely that you will not be able to use all functions of the website to their full extent.

Further information on data processing and data protection at Simple Analytics can be found at https://docs.simpleanalytics.com/what-we-collect?ref=simpleanalytics.com.

Cookies
The websites partially use so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies are used to make our online services more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are called session cookies. They are automatically deleted after you end your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognise your browser again on your next visit.

If individual cookies implemented by us also process personal data, the processing will be carried out in accordance with Article 6 para. 1 letter b GDPR either for the execution of the contract or in accordance with Article 6 para. 1 letter f GDPR for safeguarding our legitimate interests in the optimal functionality of the website as well as in a customer-friendly and effective display of the pages visited.

You can change the settings of your browser so that you will be informed when cookies are saved and that cookies are only permitted in specific cases. You can also adjust the settings so that cookies are only accepted in particular cases only or to exclude them in general, or to set up the automatic deletion of cookies when you close the browser. The cookie settings can be managed under the following links for the respective browser.

You can also individually manage the cookies of many providers as well as features that are used for advertising. The appropriate user tools can be found at:
https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices

Please note that disabling cookies may limit the functionality of this website.

Web Fonts
1) We use Google Web Fonts, a service provided by Google on our website. Google Web Fonts allows us to use external fonts, called Google Fonts. When you access a page, your browser loads the required Google Fonts into your browser cache in order to display text and fonts correctly. If your browser does not support this feature, a default font will be used by your computer for viewing. The web fonts are integrated through a server access, usually a Google server in the USA, through which the server is informed which pages of our website you have visited. The IP address of the browser of the end device of the visitor to the website will also be stored by Google.

2) We use Google Web Fonts for optimisation purposes, in particular to improve the website experience and to make the design more user-friendly.

3) This also represents our legitimate interest pursuant to Article 6 para. 1 letter f GDPR.

4) Google is certified for the Privacy Shield Agreement between the European Union and the United States. As a result, Google agrees to comply with the standards and regulations of European data protection law. Further information can be found under the following link: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

5) Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
For more information about data protection, please refer to Google's Privacy Policy: http://www.google.de/intl/de/policies/privacy
For more information about Google Web Fonts, see: http://www.google.com/webfonts/,https://developers.google.com/fonts/faq?hl=de-DE&csw=1 and https://www.google.com/fonts#AboutPlace:about.

(6) We use web fonts provided by the service Fonts.com on our website. The service collects the IP addresses of visitors. After 30 days, this log data will be deleted and thereafter no personal data will be processed. The relevant privacy policy can be found here: https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy/.

Contact form
If you send us enquiries via the contact form, the information submitted on the enquiry form, including the contact details provided by you on the form will be stored by us for the processing of your enquiry as well as for any follow-up questions that may arise. We will not share this information without your consent. The legal basis for processing the data is our legitimate interest in answering your enquiry in accordance with Article 6 para. 1 letter f GDPR or Article 6 para. 1 letter b GDPR, if your enquiry concerns the conclusion of a contract. Your data will be deleted after the processing of your enquiry has been concluded, provided that no statutory retention obligations require otherwise.

Unsolicited advertising
The use of contact details published as part of our imprint obligation for the purpose of sending unsolicited advertising is strictly prohibited. The operator of this website expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information such as spam emails.

Our privacy policy for applicants
https://www.gps-consulting.com/de/karriere/datenschutzerklearung-bewerber/

Our privacy policy for freelancers
https://www.gps-consulting.com/de/interim-management/datenschutzerklearung-interim

Data transfer and recipient

We do not pass on your personal data to third parties, except:

  • if we have explicitly stated this in the description of the respective Privacy Policy,
  • if you expressly consent to it pursuant to Article 6 para. 1 sent. 1 letter a GDPR,
  • if disclosure is required to establish, exercise or defend legal claims and there is no reason to believe that you have an overriding interest in not disclosing your data pursuant to Article 6 para. 1 sent. 1 letter f GDPR,
  • if the disclosure is a legal obligation pursuant to Article 6 para. 1 sent. 1 letter c GDPR and
  • if this is required for the settlement of contractual relationships with you pursuant to Article 6 para. 1 sent. 1 letter b GDPR

We also use external service providers for the processing of our services, which we have carefully selected and commissioned in writing. These are bound by our instructions and are regularly monitored by us. We have entered into order processing contracts with these external service providers pursuant to Article 28 GDPR. Specifically, these are service providers for web hosting, the sending of emails and maintenance of our IT systems. Our service providers will not pass on this data to third parties.

Storage duration of personal data

The storage duration of your personal data is determined by the relevant statutory retention periods (e.g. from commercial law and fiscal law). After expiry of the respective deadline, the corresponding data will be routinely deleted. Provided the data is not required to fulfil the contract or to establish an agreement and if we have no legitimate interest in the re-storage, the data will be deleted when no longer required for these purposes or if you make use of your right of revocation or objection.

Your rights

Below you will find information on the data subject rights which are available to you under current data protection law and Data Controller responsible for the processing of your personal data:

You have the right to demand information about your personal data processed by us pursuant to Article 15 GDPR. In particular, you can demand information on the processing purposes, the categories of personal data and the categories of recipients to whom your data has been disclosed as well as the planned storage period, the rights to rectification, erasure, restriction of processing and objection, the right to lodge a complaint, the source of your data if it was not collected by us, the existence of automated decision-making including profiling and, where appropriate, meaningful information about its details.

You have the right to demand the immediate rectification of inaccurate personal data or completion of incomplete personal data about you stored by us pursuant to Article 16 GDPR.

You have the right to demand the erasure of your personal data stored by us, if the processing is not necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for asserting, exercising or defending legal claims, pursuant to Article 17 GDPR.

You have the right to demand to demand restriction of processing of your personal data if you contest the accuracy of the data, if the processing is unlawful and you oppose the deletion and we no longer need the data but you require the data to establish, exercise or defend legal claims pursuant to Article 18 GDPR, or if you have filed an objection against the processing pursuant to Article 21 GDPR.

You have the right to receive the personal data you provided to us in a structured, commonly used and machine-readable format or to request the transfer of said data to another data controller in accordance to Article 20 GDPR.

You have the right to lodge a complaint with a regulatory authority in accordance with Article 77 GDPR. As a rule, you should contact either the regulatory authority of the federal state in which our headquarters is situated or, if applicable, your main place of residence or work.

You have the right to revoke granted consent pursuant to Article 7 para. 3 GDPR: You have the right to revoke consent given for the processing of your personal data at any time, which will take effect from the date of revocation. In case of revocation, we will delete the data concerned immediately, provided there is no legal basis for the processing to continue without requiring your consent.

The revocation of consent does not affect the legality of the processing that occurred on the basis of the consent up until the date of revocation.

Right to object

If your personal data is processed by us on the basis of a legitimate interest in accordance with Article 6 para. 1 sent. 1 letter f DSGVO, you have the right to object to the processing of your personal data due to personal circumstances that may arise pursuant to Article 21 GDPR. If the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement of specifying any particular personal circumstance.

If you would like to exercise your right of withdrawal or objection, please send an email to: info@gps-consulting.com.

Data Protection Declaration for Our Social Media Presences on Facebook, XING and LinkedIn

Introduction
The protection of your personal data is a very important issue to us. In the following, you will find information regarding the handling of your data which are collected as the result of your usage of our social media presences on social networks and platforms. The processing of your data shall be done in accordance with the statutory directives.

Provider

Facebook Fan Page

Responsible Party
For the case that the data which you provide to us are also or exclusively processed by Facebook, in addition to us or in our place, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, shall be considered to be the Responsible Party for the data processing in accordance with the GDPR. For this, we have concluded an Agreement with Facebook in accordance with Art. 26 GDPR regarding a joint responsibility for the processing of data (Controller Addendum). In this Agreement, it is prescribed for which data processing procedures we and/or Facebook are responsible whenever you visit our Facebook Fan Page. You can review this Agreement by clicking on the following link: https://www.facebook.com/legal/terms/page_controller_addendum.

If you, as the visitor to the page, would like to exercise your rights (of information, correction, deletion, restriction, data portability, to a complaint to the competent government supervisory agency, of objection and/or revocation), you can contact both Facebook as well as us in this regard.

You can adjust your advertising settings in your user account on your own. In order to do so, please click on the following link and log in:
https://www.facebook.com/settings?tab=ads or http://www.youronlinechoices.com

Please review additional details in this regard in Facebook’s Data Protection Declaration: https://www.facebook.com/about/privacy/

Facebook’s Data Protection Officer
In order to contact Facebook’s Data Protection Officer, you can use the online contact form that has been provided by Facebook by clicking on the following link: https://www.facebook.com/help/contact/540977946302970.

Data Processing for Statistical Purposes via Page Insights
Facebook provides so-called Page Insights for our Facebook Fan Page: https://www.facebook.com/business/a/page/page-insights. These Page Insights encompass summarised data which provide information regarding how persons interact with our web page. Page Insights may be based upon personal data which are collected in conjunction with a visit or an interaction by persons on and/or with our web page and in conjunction with the content that has been made available. Please therefore pay attention to which personal data you share with us via Facebook. Your data may be processed for market research and advertising purposes even if you are not logged in to Facebook and/or have no Facebook account. Thus, for example, user profiles may be created from the usage behaviour and the users’ interests ascertained therefrom. The user profiles may once again be used in order to, for example, display adverts within and outside of the platforms which presumably correspond to the users’ interests. This data collection is done via cookies which are stored on your device. Moreover, data can also be stored in the user profiles independently of the devices which are being used by the users – particularly if the users are members of the respective platforms and are logged in to them. The legal basis for the processing shall be Art. 6 Para. 1 lit. f GDPR. Our entitled interest lies in the optimised depiction of our web site, the effective provision of information to and communication with the customers and prospective customers as well as in the targeted displaying of adverts. Please keep in mind that we have no control over the data collection and the continued data processing by Facebook. Consequently, we can provide no information regarding in what scope, at what location and for what duration the data are stored by Facebook. Moreover, we can make no statements regarding to what extent Facebook fulfils its valid deletion obligations, what evaluations of and linkings with the data are made by Facebook and to whom the data are disseminated by Facebook. If you wish to prevent the processing of your personal data by Facebook, please contact us by other means.

Other Social Media Providers

Responsible Party
If your personal data are processed by one of the below-mentioned providers, this respective provider shall be considered to be the Responsible Party for the data processing in accordance with the GDPR. For the assertion of your affected party’s rights, we wish to point out that they can be most effectively asserted against the respective providers. Only they have access to the data collected about you. However, if you should nonetheless require assistance in this regard, please feel free to gladly contact us at any time.

We have online presences on the social media platforms of the following providers:

  • LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
  • XING SE, Dammtorstraße 29-32, 20354 Hamburg, Germany

Data Protection Officer
You can find information regarding contacting the Data Protection Officer of the other social media providers here:

General Data on Social Media Platforms from GP+S Consulting GmbH

Responsible Party
The Responsible Party for the data processing in accordance with the GDPR shall be the following party insofar as these data provided to us by you via one of the social media platforms are processed by us ourselves:
GP+S Consulting GmbH
Nehringstraße 2
61352 Bad Homburg
Telephone: +49 6172 - 4 95 56 0
E-mail: info@gps-consulting.com
Web: www.gps-consulting.com

Our Data Protection Officer
In case that you have any issues with regards to the data processing which we have implemented as the Responsible Party, you can contact our Data Protection Officer via the following contact data:

PROLIANCE GmbH / www.datenschutzexperte.de
Data Protection Officer: Dominik Fünkner
Leopoldstr. 21
80802 Munich
E-mail: datenschutzbeauftragter@datenschutzexperte.de

General Data Processing on the Social Media Platforms

Data Processing for the Purposes of Market Research and Advertising
As a rule, personal data are processed on the company’s website for market research and advertising purposes. In this regard, a cookie is placed into your browser whereby this cookie enables the respective provider to recognise you again whenever you visit a website. Via the collected data, usage profiles can be created. They are used, within and outside the platform, to display adverts which will presumably correspond to your interests. Moreover, data can also be stored in the usage profiles independently of the devices which you are using. This is frequently the case if you are a member of the respective platforms and are logged into the respective platform.

Data Processing for the Purpose of Initiating Contact
We ourselves collect personal data whenever you, for example, contact us via a contact form or via a messenger service such as the Facebook Messenger. Which data are collected shall be dependent on your data as well as the contact data provided or approved by you. They are stored by us for the purpose of the processing of your inquiry and for the case of follow-up questions. In no case shall we provide the data to third parties without your consent. The legal basis for the processing of the data shall be our entitled interest in the responding to your concern in accordance with Art. 6 Para. 1 lit. f GDPR as well as, where applicable, Art. 6 Para. 1 lit. b GDPR if your inquiry is intended to request the conclusion of a contractual agreement. After the definitive processing of your inquiry, your data shall be deleted unless statutory retention obligations oppose this. We assume that a definitive processing has been done whenever it can be concluded based upon the respective circumstances that the affected issue has been definitively clarified.

Data Processing for the Purpose of the Contractual Implementation
If your initiation of contact with us via a social network or another platform is for the purpose of concluding a contractual agreement with us for the delivery of goods or the rendering of services, we shall process your data for the purpose of the fulfilment of the contractual agreement or for the implementation of pre-contractual measures and/or for the rendering of the requested services. The legal basis for the processing of your data shall in this case be Art. 6 Para. 1 lit. b GDPR. Your data shall be deleted whenever they are no longer required for the implementation of the contractual agreement or it has been determined that the pre-contractual measures will not result in the conclusion of a contractual agreement which corresponds to the purpose of the initiation of contact. However, please keep in mind that it may nonetheless be required – even after the conclusion of the contractual agreement – to store the personal data of our contractual partners in order to fulfil contractual or statutory obligations.

Consent-Based Data Processing
If you are asked by the respective providers of the platforms for a consent for the processing for a designated purpose, the legal basis for the processing shall be Art. 6 Para. 1 lit. a., Art. 7 GDPR. Any consent already granted may be revoked at any time with effectiveness for the future.

Data Dissemination and Recipient
Please keep in mind that, as the result of the usage of the social media platforms, data processing outside of the EU and the European Economic Area can be done so that the European data protection level cannot be mandatorily guaranteed. The social media providers mentioned herein with their commercial residences in the USA have been certified via the U.S.-European Data Protection Convention called “Privacy Shield” which ensures the fulfilment of the data protection level that is valid in the EU.

We have no control over the processing and the handling of your personal data by the respective providers. Likewise, we have no information in this regard available to us. For additional information, please review the respective provider’s Data Protection Declaration:

Your rights
Below you will find information on the data subject rights which are available to you under current data protection law and Data Controller responsible for the processing of your personal data:

  • You have the right to demand information about your personal data processed by us pursuant to Article 15 GDPR. In particular, you can demand information on the processing purposes, the categories of personal data and the categories of recipients to whom your data has been disclosed as well as the planned storage period, the rights to rectification, erasure, restriction of processing and objection, the right to lodge a complaint, the source of your data if it was not collected by us, the existence of automated decision-making including profiling and, where appropriate, meaningful information about its details.
  • You have the right to demand the immediate rectification of inaccurate personal data or completion of incomplete personal data about you stored by us pursuant to Article 16 GDPR.
  • You have the right to demand the erasure of your personal data stored by us, if the processing is not necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for asserting, exercising or defending legal claims, pursuant to Article 17 GDPR.
  • You have the right to demand to demand restriction of processing of your personal data if you contest the accuracy of the data, if the processing is unlawful and you oppose the deletion and we no longer need the data but you require the data to establish, exercise or defend legal claims pursuant to Article 18 GDPR, or if you have filed an objection against the processing pursuant to Article 21 GDPR.
  • You have the right to receive the personal data you provided to us in a structured, commonly used and machine-readable format or to request the transfer of said data to another data controller in accordance to Article 20 GDPR.
  • You have the right to lodge a complaint with a regulatory authority in accordance with Article 77 GDPR. As a rule, you should contact either the regulatory authority of the federal state in which our headquarters is situated or, if applicable, your main place of residence or work.
  • You have the right to revoke granted consent pursuant to Article 7 para. 3 GDPR: You have the right to revoke consent given for the processing of your personal data at any time, which will take effect from the date of revocation. In case of revocation, we will delete the data concerned immediately, provided there is no legal basis for the processing to continue without requiring your consent. The revocation of consent does not affect the legality of the processing that occurred on the basis of the consent up until the date of revocation.

Right to object
If your personal data is processed by us on the basis of a legitimate interest in accordance with Article 6 para. 1 sent. 1 letter f DSGVO, you have the right to object to the processing of your personal data due to personal circumstances that may arise pursuant to Article 21 GDPR. If the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement of specifying any particular personal circumstance.

If you would like to exercise your right of withdrawal or objection, please send an email to: info@gps-consulting.com.

Storage Timeframe
The personal data which we collect shall be deleted by our system whenever they are no longer required for the purposes designated for their collection or if you have exercised your right of revocation or right of objection. Any statutory retention timeframes shall remain unaffected. We have no control over the storage timeframe of your data which are stored by the providers of the social media for their own purposes. For details, please obtain information directly from these providers.

Changes to the privacy policy
We reserve the right to change this Privacy Policy at any time in accordance with current data protection regulations. We will notify you of any significant changes to the Privacy Policy via a clearly visible announcement on our website.

This Privacy Policy was drafted by www.datenschutzexperte.de.

Publication date: 12.12.2019