A. Website and applicant portal

The information contained in this chapter applies equally to our website www.jobs.prezero.de and our applicant portal.

1. Responsible person in the sense of Art. 4 No. 7 DSGVO

The person responsible for data processing within the meaning of Article 4 (7) GDPR is:

PreZero Stiftung & Co. KG
Stiftsbergstraße 1
74172 Neckarsulm

E-Mail: info@prezero.com
Phone: +49 (0)7132 30 77 33 44 (ext. Servicehotline)

2. Data we process when you visit this website

2.1 Purposes and legal basis of data processing

When you visit this website, log files are generated containing the following information:

• The website/application from which you accessed our site (Referrer-URL);
• The IP address;
• The date and time of access;
• The client request;
• The http response code;
• The data volume transmitted;
• The name and URL of the requested file;
• Information about the type of browser and operating system you are using;
• The name of your Access Provider.

The legal basis for the data processing is Art. 6(1)(f) GDPR. The legitimate interest arises from the protection of our systems and the prevention of abusive or fraudulent behavior each time a user accesses this website.

Where processing of the aforementioned data is necessary for preparing and/or performing a contractual relationship, we process your data on the basis of Art. 6(1)(b) GDPR.

2.2 Recipients/categories of recipient

In exceptional cases, your personal data may be accessible for support and maintenance purposes of Schwarz IT KG, since our website is operated on our behalf on servers provided by Schwarz IT KG.

In exceptional cases, your personal data may be accessible for support and maintenance purposes to RAIDBOXES GmbH, Friedrich-Ebert-Straße 7, 48153 Münster, as our website is operated on our behalf on servers provided by RAIDBOXES GmbH.

In exceptional cases, your personal data may be accessible for support and maintenance purposes to SAP Deutschland SE & Co. KG, Hasso-Plattner-Ring 7, 69190 Walldorf, as the applicant portal is operated on servers provided by SAP Deutschland SE & Co. KG .

2.3 Obligation to provide your data

You are neither contractually nor legally obliged to provide us with personal data. However, the data mentioned is processed for technical reasons as soon as you access our site. If you no longer wish to provide us with the data, this is only possible if you no longer use our website.

2.4 Storage time

We store the aforementioned data for a period of 10 days.

3. Use of Cookies

We, PreZero Stiftung & Co. KG, Stiftsbergstraße 1, 74172 Neckarsulm, are the controller with respect to data processing in connection with the use of "cookies" and other similar technologies to process usage data on all (sub-)domains at www.job.prezero.de.

Cookies are small text files that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our websites. Cookies do not cause any harm to your end device, nor do they contain any viruses, trojans or other malware. The cookie stores certain information that results in connection with the specific end device deployed. This does not, however, mean that we will immediately become aware of your identity.

You can configure your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. You can also configure your browser to generally not accept cookies or to only reject cookies from individual providers. We would like to point out, however, that this may impair the functionality of this website.

3.1 Purposes and legal basis of data processing

The use of cookies and the other technologies to process usage data serves the following purposes, depending on the category of the cookie or other technology:

• Technically necessary: Technically necessary cookies help to make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
• Preferences: Using these methods, we can take into account your actual or perceived preferences to enhance the user experience. For example, we can use your settings to display our website in a language relevant to you. They also mean we can avoid displaying products that may not be available in your region.
• Statistics: These methods enable us to tailor the design of our services by producing anonymized statistics about how they are used. For example, we can use them to determine how better to adapt our websites to user habits.
• Marketing: These enable us to display relevant advertising content based on an analysis of your usage behavior. Your usage behavior can also be tracked over various websites, browsers or devices via a user ID (unique identifier).

Depending on the purpose, the use of cookies and similar technologies to process usage data involves processing the following types of personal data in particular:

Technically necessary:

• User inputs, in order to remember inputs across multiple sub-pages;
• Authentication data to identify a user after signing in, enabling you to access authorized content on subsequent visits (e.g., access to the customer portal);
• Security-related events (e.g., identifying repeat failed sign-in attempts);
• Required data.

Preferences:

• Settings to customize the user interface that are not linked to a permanent identifier.

Statistics:

• Pseudonymized usage profiles containing information on the use of our website. These contain in particular:
  • browser type/browser version
  • operating system used
  • referrer URL (the previously visited page)
  • host name of the accessing computer (IP address)
  • time of the server request
  • individual user ID and events triggered on the website (web browsing behavior).
• The IP address is routinely anonymized, which in principle means it is no longer possible to identify you.
• We only store the user ID together with other data you provide (e.g., name, e-mail address, etc.) if you give us express permission to do so. In itself, we cannot use the user ID to identify you.

Marketing:

• Pseudonymized usage profiles containing information on the use of our website. These contain in particular: IP address, individual user ID, products potentially of interest, events triggered on the website (web browsing behavior).
• The IP addresses are routinely anonymized, which in principle means it is no longer possible to identify you.
• We only store the user ID together with other data you provide (e.g., name, e-mail address, etc.) if you give us express permission to do so. In itself, we cannot use the user ID to identify you. We may potentially share the user ID and associated usage profiles with third parties via providers of advertising networks.

The legal basis for using preference, statistics and marketing cookies and similar technologies is your consent given pursuant to Art. 6(1)(a) GDPR and § 25(1) S. 1 TDDDG. The legal basis for using technically necessary cookies and similar technologies is Art. 6(1)(f) GDPR and § 25(2) No. 2 TDDDG. Our legitimate interest lies in a technically stable and secure operation of the website.

You may withdraw/modify your consent at any time with effect for the future without this affecting the lawfulness of the processing based on consent before its withdrawal. To do so, simply click here and make your selection.

For an overview of the cookies and other technologies we use, including the respective purposes of processing, storage periods and any third party providers involved, see our cookie policy.

3.2 Transfer of data to third countries

To the extent that you have consented to the use of the relevant cookies, your data will be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, if it is processed using Google Analytics. This will also be the case if you play YouTube videos. Some of these servers are located in the USA. An adequate level of data protection is guaranteed due to the adequacy decision according to Article 45 GDPR (EU-US Data Privacy Framework).

In order to protect your data and ensure the secure transmission of forms, we use Google reCaptcha, a service provided by Google LLC ("Google"), on the basis of Article 6(1)(f) GDPR. Our legitimate interest follows from the aforementioned purposes. This service performs an analysis of various information to determine whether the data was entered by a person or by an automated program (bot). The information generated is transmitted to a Google server in the USA and processed there. The collection and analysis of that information does not enable us or Google to identify you. In particular, Google does not merge the information with your personal data.

For further information on Google reCaptcha, please see https://policies.google.com/privacy?hl=de or https://policies.google.com/terms?hl=de.

3.3 Obligation to provide your data

You are under no statutory or contractual obligation to provide personal data to us. You may prevent optional cookies from being stored by adjusting the aforementioned settings, selecting the categories of cookies accordingly or by withdrawing or modifying any consent you may have given.

3.4 Storage time

The storage period for cookies can be found in our cookie policy. If “persistent” is entered in the “expiration” column, the cookie will be stored permanently until the corresponding consent is withdrawn.

4. Embedded YouTube videos

We have embedded YouTube videos on our website, which are stored at http://www.YouTube.com and can be played directly from our website. All videos are embedded with privacy-enhanced mode enabled, which means that no data about you as the user is transferred to YouTube if you do not play the videos. Data is only transferred if you play the videos. 

As a result, YouTube (Google LLC) receives the information that you have accessed our site as well as the technically required usage data. In addition, YouTube (Google LLC) will then be able to implement tracking technologies. We have no influence on further data processing by the third-party provider YouTube (Google LLC). The data processing takes place on the basis of your consent in accordance with Article 6 (1) sentence 1 a) GDPR. Your consent is voluntary and includes that third-party content may be downloaded and the data described may be transferred to YouTube (Google LLC). For transfers to the USA, an appropriate level of data protection is guaranteed due to the certification of the provider under the adequacy decision (EU-US Data Privacy Framework).

You can find further information on the purpose and scope of data collection and how YouTube processes data in the provider's privacy policy. You will also find further information there about your rights in this regard and settings to protect your privacy. YouTube's Address and privacy policies: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; https://www.google.de/intl/de/policies/privacy/.

5. Our social media sites

5.1 Responsibilities

The party responsible for the collection and processing of data described below (the controller) is in some cases us, PreZero Stiftung & Co. KG, and in some cases the operator of the relevant social media platform. For certain types of processing, we and the platform operator act as joint controllers as defined in Art. 26 GDPR.

We use the following social media sites:

PreZero Stiftung:

• Facebook: https://www.facebook.com/PreZero-International-101028862067453
• Instagram: https://www.instagram.com/prezero_int/
• YouTube: https://www.youtube.com/channel/UCWZ4ro9pkchUI_23PNXinFA
• LinkedIn: https://www.linkedin.com/company/prezero-international/about/
• Twitter: https://twitter.com/PreZeroINT

PreZero Deutschland:

• Facebook: https://www.facebook.com/PreZero/
• Instagram: https://www.instagram.com/prezero_deutschland
• YouTube: https://www.youtube.com/channel/UCw6ZFxx5JpemTckp9RclciQ
• LinkedIN: https://www.linkedin.com/company/prezero-deutschland/
• Xing: https://www.xing.com/company/prezero

5.1.1 The platform operator as controller

We have only limited influence over the data processing carried out by the operators of social media platforms (e.g., managing members and shared information). Where we have the ability to influence and configure the data processing, we work to ensure that the social media platform operator handles the data in compliance with data protection laws, to the extent possible. However, in many areas, we cannot influence the data processing by the social media platform operator, nor do we know exactly what data they process.

The platform operator manages the entire IT infrastructure of the service, maintains its own privacy policies, and has its own user relationship with you (provided you are a registered user of the social media service). Furthermore, the operator is solely responsible for all matters concerning the data in your user profile, to which we, as a company, have no access.

Detailed information on data processing by the social media platform provider and further options for objection can be found in the provider’s privacy policy:

• Facebook: https://www.facebook.com/privacy/explanation
• Instagram: https://help.instagram.com/519522125107875
• YouTube: https://www.youtube.com/intl/de/about/policies/ 
• LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=d_org_guest_company_overview_footer-privacy-policy 
• Twitter: https://twitter.com/de/privacy

5.1.2 Our Responsibility as PreZero Stiftung & Co. KG

5.1.2.1 Purposes and Legal Basis of Data Processing

The purpose of data processing by us on our social media presences is to inform customers about services, promotions, competitions, relevant topics, company news, and to interact with visitors to our social media pages on these topics, as well as to respond to corresponding inquiries, praise, or criticism.

We only reserve the right to delete content if it is necessary to do so. We may share your content on our page if this is a function of the social media platform, and we communicate with you via the social media platform. The legal basis is Article 6(1)(f) of the GDPR. The data processing is carried out in the interest of our public relations and communication. The operator has no influence on the processing of your data by us within the scope of customer communication or competitions.

As previously stated, wherever the social media platform provider gives us the option, we strive to design our social media pages to be as compliant with data protection regulations as possible.

5.1.2.2 Recipients/Categories of Recipients

The data you enter on our social media pages, such as comments, videos, images, likes, public messages, etc., are published by the social media platform and are never used or processed by us for other purposes. We only reserve the right to delete unlawful content if this should be necessary. This is the case, for example, with infringing or unlawful posts, hate comments, suggestive comments (explicit sexual content), or attachments (e.g., images or videos) that may violate copyrights, personal rights, or criminal laws.

We may share your content on our page if this is a function of the social media platform and communicate via the social media platform. If you send us an inquiry on the social media platform, we may, depending on the required answer, refer you to other secure communication channels that guarantee confidentiality. You always have the option to send confidential inquiries to the address listed in section 1 or in our imprint/legal notice.

5.1.2.3 Obligation to Provide Your Data

You are neither contractually nor legally obliged to provide us with personal data. If you use our social media pages purely for informational purposes, we do not collect any personal data from you. If you do not want to provide us with personal data, you can still visit our pages. However, in this case, you will not be able to use extended functions such as the messaging function, posting images or contributions, etc.

5.1.2.4 Storage Duration

All personal information that you send to us in connection with inquiries will be deleted by us or securely anonymised no later than 90 days after the final response has been provided to you. The retention period of 90 days is explained by the fact that you may occasionally contact us again about the same matter after a response, and we must then be able to refer to the prior correspondence. Experience has shown that inquiries regarding our answers generally no longer occur after 90 days. If you assert your rights as a data subject, your personal data will be stored for 3 years after the final response to prove that we have provided you with comprehensive information and complied with the legal requirements.

All public posts by you on one of our social media pages remain on the timeline indefinitely unless we delete them due to an update of the underlying topic, a legal violation, a violation of our guidelines, or you delete the post yourself. We have no influence over the deletion of your data by the operator itself. The respective operator’s data protection regulations therefore apply in addition to this.

5.2 Joint Responsibility

There is a relationship with the following platform operators of the social media service in accordance with Article 26 (1) GDPR (joint responsibility):

• Facebook: https://en-gb.facebook.com/legal/terms/page_controller_addendum
• LinkedIn: https://legal.linkedin.com/pages-joint-controller-addendum

The platform operators and we act as joint controllers for the web tracking methods used by the social media platform operator. Web tracking can occur regardless of whether you are logged in or registered with the social media platform. As already explained, we have almost no influence on the web tracking methods of the social media platform. For example, we cannot disable them.

The legal basis for the web tracking methods is your consent in accordance with Article 6 (1) (a) GDPR.

Further information on the recipients or categories of recipients and the storage duration or the criteria for determining the storage duration can be found in the platform operators' privacy policies. We have no influence on these.

The options for exercising your rights to prevent these web tracking methods can be found in the platform operators’ privacy policies. You can also contact the platform operators using the contact details provided in the respective imprint/legal notice.

With regard to statistics provided to us by the social media platform provider, we can only influence and prevent them to a limited extent. However, we ensure that no additional optional statistics are provided to us.

Please be aware: it cannot be ruled out that the social media platform provider may use your profile and behavioural data, for example, to evaluate your habits, personal relationships, preferences, etc. PreZero Stiftung & Co. KG has no influence on the processing or sharing of your data by the social media platform provider.

B. Application Process

1. Responsible person within the meaning of Article 4 (7) GDPR

1.1. Jobs at the Neckarsulm, Wesseling and Hamm locations

When you apply for a position at one of the following companies

• GreenCycle GmbH, Stiftsbergstraße 1, 74172 Neckarsulm
• OutNature GmbH, Stiftsbergstraße 1, 74172 Neckarsulm
• PreTurn GmbH, Olgastraße 80, 74072 Heilbronn
• PreZero Dual GmbH (Betriebsstätte), Kronenweg 4, 50389 Wesseling
• PreZero Dual GmbH, Stiftsbergstraße 1, 74172 Neckarsulm
• PreZero International GmbH, Stiftsbergstraße 1, 74172 Neckarsulm
• PreZero Polymers International GmbH, Stiftsbergstraße 1, 74172 Neckarsulm
• PreZero Stiftung & Co. KG, Stiftsbergstraße 1, 74172 Neckarsulm

the respective company is jointly responsible for the data processing in connection with the application process

PreZero Stiftung & Co. KG
Stiftsbergstraße 1
74172 Neckarsulm

Mail: bewerbung.stiftung@prezero.com

as PreZero Stiftung & Co. KG carries out the application process together with the respective company. For this reason, the respective company and PreZero Stiftung & Co. KG are jointly responsible for the protection of your personal data (Article 26 GDPR).

As part of their joint responsibility, the aforementioned companies have agreed who fulfills which obligations under the GDPR. This concerns in particular the fulfillment of the rights of the data subjects and the information requirements according to Articles 13 and 14 GDPR.

For applications for a position at PreZero Stiftung & Co. KG, this body is responsible within the meaning of Article 4 (7) GDPR.

1.2. Positions at the other locations

When you apply for a position at one of the following

• Heimkreiter GmbH, Josef-Janker-Ring 3, 83646 Bad Tölz
• Olper Entsorgungszentrum GmbH & Co. KG, Alte Scheune, 57462 Olpe
• Pader Entsorgung GmbH & Co. KG, Alte Schanze 1, 33106 Paderborn
• PreZero Aktenvernichtung GmbH, Kreisstraße 30, 30629 Hannover
• PreZero Battery Recycling GmbH, Brüsseler Str. 10, 49716 Meppen
• PreZero Bioenergie Münsterland GmbH & Co. KG, Joseph-Monier-Straße 8, 48268 Greven
• PreZero Circular Solutions GmbH & Co. KG, Kronenweg 45, 50389 Wesseling
• PreZero Elektrorecycling GmbH, An der Autobahn 7, 89347 Bubesheim
• PreZero Energy Bernburg GmbH, Köthensche Straße 3a, 06406 Bernburg
• PreZero Energy Zorbau GmbH, Bayerische Str. 20, 06686 Lützen
• PreZero Flexible Packaging GmbH, Brüggenkampstraße 20, 59077 Hamm
• PreZero Flexible Trading GmbH, Landsberger Straße 249, 12623 Berlin
• PreZero Holz GmbH, Hafen Berenbusch 4, 31675 Bückeburg
• PreZero Kunststoffrecycling GmbH & Co. KG, An der Pforte 2, 32457 Porta Westfalica
• PreZero Logistik GmbH & Co. KG, An der Pforte 2, 32457 Porta Westfalica
• PreZero Metall GmbH, Am Atlaswerk 22, 33106 Paderborn
• PreZero Polymers Deutschland GmbH, Obersülzer Str. 45, 67269 Grünstadt
• PreZero Recycling Deutschland GmbH & Co. KG, Auf der Plaße1, 32469 Petershagen
• PreZero Recycling Mitte GmbH, Grube Falkenstein, 35688 Dillenburg
• PreZero Recycling Süd GmbH, In den Erlen 2, 75248 Ölbronn-Dürrn
• PreZero Service Deutschland GmbH & Co. KG, Kleiststraße 49, 32457 Porta Westfalica
• PreZero Service Hamm GmbH, Im Ostfelde 25, 59071 Hamm
• PreZero Service Köthen GmbH, Pfriemsdorfer Weg 10, 06366 Köthen
• PreZero Service Mitte GmbH & Co. KG, Kreisstraße 30, 30629 Hannover
• PreZero Service Mitte-West GmbH & Co. KG, Herforder Straße311, 33609 Bielefeld
• PreZero Service Nord GmbH, Am Ziegelhof 11, 25832 Tönning
• PreZero Service Nord-West GmbH & Co. KG, Hullmans Damm 15, 49525 Lengerich
• PreZero Service Nordhessen GmbH, Am Fieseler Werk 13, 34253 Lohfelden
• PreZero Service Ost GmbH & Co. KG, Gerichtsweg 28, 04103 Leipzig
• PreZero Service Rheinland GmbH, Neuenhofstraße 66, 47055 Duisburg
• PreZero Service Sachsen-Anhalt GmbH, Gutenbergerstraße 6, 06188 Landsberg OT Oppin
• PreZero Service Süd GmbH & Co. KG, Daimlerstraße 2, 75438 Knittlingen
• PreZero Service Westfalen GmbH & Co. KG, An der Pforte 2, 32457 Porta Westfalica
• PreZero Stoffstrom Management GmbH, Kronenweg 45, 50389 Wesseling
• PreZero Wertstoffmanagement GmbH, Kleiststraße 49, 32457 Porta Westfalica
• Xplastics GmbH, Lußhardstraße 11, 76646 Bruchsal

the respective company is jointly responsible for the data processing in connection with the application process

PreZero Service Deutschland GmbH & Co. KG
Kronenweg 45
50389 Wesseling

Mail: bewerbung@prezero.com

as PreZero Service Deutschland GmbH & Co. KG carries out the application process together with the respective company. For this reason, the respective company and PreZero Service Deutschland GmbH & Co. KG are jointly responsible for the protection of your personal data (Article 26 GDPR).

As part of their joint responsibility, the aforementioned companies have agreed who fulfills which obligations under the GDPR. This concerns in particular the fulfillment of the rights of the data subjects and the information requirements according to Articles 13 and 14 GDPR.

For applications for a position of PreZero Service Deutschland GmbH & Co. KG, this body is responsible within the meaning of Article 4 (7) GDPR.

1.3. Further information on responsibility and Article 26 GDPR

Even if there is a joint responsibility, the parties fulfill the data protection obligations according to their respective responsibilities for the individual process sections as follows:

Within the framework of the joint responsibility, each company is responsible according to the above tables. The companies shall immediately inform each other about legal positions asserted by those affected. They provide each other with all the information they need to respond to requests for information.

Data protection rights can be asserted with all participating companies.

2. Implementation of the application process

2.1. Purposes of data processing / legal basis

You have the option of registering for our job portal, creating a personal profile and using it, for example, to manage your profile data, upload and submit applications and the associated documents, or to view your current applications.

We process your personal data, which you transmit to us as part of your registration or application, for the purposes mentioned and the associated selection of applicants and, where applicable, the recruitment of applicants. Your data will also be processed for the selection of applicants and, where applicable, for recruitment if you submit your application documents to us outside of our job portal, e.g. B. by e-mail or by post.

Only the data about your application that you provide to us will be saved. In particular, this can be: master data (e.g. names, addresses, dates of birth, data on relatives, VAT ID), contact data (e.g. e-mail addresses, telephone numbers, messenger services), content data (e.g. text entries, photographs, videos, contents of documents / Files) and employee data (e.g., working hours, qualifications, degrees, public offices held, social security data, vocational integration management data, salary expectations).

In this context, please note that you yourself determine the scope and content of your application data. Therefore, please only provide us with information about you that you would like to be taken into account in the application process. If you have provided us with data that is not relevant (e.g. information on parents or religious denomination), this will not be taken into account for the selection decision.

The legal basis for data processing is Article 88 (1) GDPR in conjunction with Section 26 (1) BDSG or Article 6 (1) (b) GDPR. As part of the application process, we may process special categories of personal data i. S. d. Article 9 (1) GDPR (e.g. health data), if these are required for the position to be filled. In this case, processing takes place on the basis of § 26 (3) BDSG.

Insofar as we reimburse you for travel expenses during an interview, the processing of your required data is carried out on the basis of Article 6 (1) (c) GDPR.

2.2. Applications by mail

Please note: If you send us your application documents by post, the data included will be manually transferred to the SAP SuccessFactors application system. It is therefore currently not possible to participate in the application process without your data being processed in SuccessFactors.

2.3. Application via online portal (SuccessFactors) without registration / Easy Apply

In the context of an application without registration, a candidate profile is created: By entering and sending the data and, if necessary, documents in the Easy Apply screen, a candidate profile is created on the basis of this data and the respective application is sent.

You will then receive your login information for the system. By logging in for the first time and creating a password, the candidate profile can then be used in full.

2.4. Upload documents

Documents such as a resume can also be uploaded and stored in the candidate profile. If these are in the candidate profile, they are visible to the recruiter for every application that is submitted on the basis of the profile. Alternatively, documents specific to an individual application can also be uploaded, which are then only stored with the corresponding application and not in the candidate profile.

2.5. Recipients / categories of recipients

If you apply for one of our advertised positions, the HR department of PreZero Stiftung & Co. KG or PreZero Service Deutschland GmbH & Co. KG (depending on which companies are responsible) as well as the company or department in which the to the extent required to access your data. If necessary, your data may be accessible to other companies in the Schwarz Group if they are involved in the application process (e.g. for reasons of internal advice). If there is a works council at a corresponding company, works council members will also receive the necessary access to your data as part of the application process.

This also applies if you send us your speculative application. If you do not restrict your speculative application to a specific department or position, several companies or departments may also have access to your data in order to decide whether we can offer you a position.

If we reimburse you for travel costs during an interview, your data will be processed by PreZero Service Deutschland GmbH & Co. KG to the extent necessary in order to reimburse you for the costs if it concerns a position of PreZero Service Deutschland GmbH & Co. KG or a company that is jointly responsible. Insofar as it is a position of PreZero Stiftung & Co. KG or a jointly responsible company, the data processing is carried out to the required extent and for the stated purpose by Schwarz Dienstleistung KG, Stiftsbergstraße 1, 74172 Neckarsulm. If it concerns a body of PreZero Service Deutschland GmbH or a jointly responsible company, the data processing is carried out to the required extent and for the stated purpose by PreZero Service Deutschland GmbH & Co. KG.

In exceptional cases, your data may be accessible to SAP Deutschland SE & Co. KG, Hasso-Plattner-Ring 7, 69190 Walldorf for support and maintenance purposes, as the applicant portal is operated on servers provided by SAP Deutschland SE & Co. KG. This applies accordingly to data that you transmit to us outside of our job portal, e.g. B. Application by e-mail or post, as we assign your application and data to the corresponding position in our portal.

If a contract is concluded for a position of PreZero Stiftung & Co. KG or a jointly responsible company, your data required for the conclusion of the contract will be transmitted to Schwarz Dienstleistungen KG, as the contract is created by them.

In the case of contracts concluded by means of digital signature, your data is also accessible to all persons involved in the contract approval and signing, as they receive a protocol after signing the contract, in which all processing steps, including e-mail address, IP address, date and time are visible. Furthermore, your data may be accessible to the respective service providers, which we use for the corresponding digital signature process. For Adobe Sign, this is Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West, Business Campus, Saggart D24, Dublin, Ireland.

We generally do not pass on the data to other third parties. In exceptional cases, data is processed on our behalf by contract processors. These are each carefully selected and contractually bound according to Article 28 GDPR.

2.6. Obligation to provide your data

You are neither contractually nor legally obliged to provide us with personal data. However, without the data, we cannot contact you or carry out an application process. The data is also required in the event of a contract being concluded as part of the recruitment process.

2.7. Storage duration / criteria for determining the storage duration

In the event of rejection, we store personal data that you provide to us as part of your application for a period of three months from the date of rejection. If you send us your application in paper form, e.g. B. by mail, your application documents will be digitized and also stored for the specified period. After digitization, you will receive your original documents back from us.

If your application is successful and we are hiring you as an employee in one of our companies, your application documents and the associated personal data will be stored beyond the application process and transferred to the personnel file. You will receive further information on this in the context of your recruitment in our data protection information for employees.

Your profile in our online application system and the data stored in it remain stored in the system regardless of a specific active application. This gives you the opportunity to apply for other positions online. As soon as your profile has been inactive for 12 months and no application is being processed, your profile will be automatically deleted. However, you can delete your profile yourself at any time. If your current applications are being processed at this time, they will be withdrawn and your profile will be deleted. The profile is deleted immediately and the applications themselves are automatically deleted in accordance with applicable law.

2.8. Consent to make own profile visible to

Your application relates to a job advertised at one of the above-mentioned companies. Your application documents will only ever be evaluated and considered for the specific position for which you have applied.

If, independently of the individual application, you are also interested in other positions at the other above-mentioned companies, you can create several individual applications in this regard from your profile.

In addition, in our application process, before submitting an application, you can select whether this application should be considered for other vacant positions at the above-mentioned companies worldwide, only for vacant positions in the above-mentioned companies in the same country in which you are applying, or only for the specific position for which you are applying. If you also approve your application for other vacant positions and are considered as an applicant for these, we will transfer your data to the responsible department of the advertising company as part of the application process.

When selecting access from the German PreZero companies, the information provided above under B.1.1. and B.1.2. access to your profile. They are jointly responsible for data processing.

When selecting access for the PreZero companies worldwide, in addition to the above-mentioned German companies, the PreZero companies of all other countries have access to your profile.  You can find an overview of all PreZero companies worldwide here.

If your profile may be considered for vacant positions at the PreZero companies worldwide, the information listed under B.1.1. and B.1.2. listed companies are jointly responsible for data processing with the other global companies.

The data processing takes place on the basis of your consent in accordance with Article 6 (1) (a) GDPR, in conjunction with § 26 (2) BDSG. Your consent is voluntary. You can revoke it at any time by changing your settings directly via your profile or

• for positions at the locations named under B.1.1 by mail to bewerbung.stiftung@prezero.com.
• for positions at the locations named under B.1.2 by mail to bewerbung@prezero.com.

The legality of the processing that has already taken place before receipt of your revocation is not affected by the revocation. In the event of a revocation, only the original application will continue to be considered.

3. Talent pool

3.1. Purposes of data processing / legal basis

You have the option of either being included directly in a talent pool by registering via a corresponding landing page or of giving your consent to participation in the talent pool in the course of your application for a specific position. In the latter case, if your profile matches, you will be included in a talent pool by assigning a recruiter.

If you are assigned to a talent pool, we can consider you for future job postings according to your qualifications, as well as contact you by telephone or e-mail.

There are talent pools operated by PreZero Stiftung & Co. KG, which contain candidates who can potentially be considered for positions at the companies supported by the PreZero Stiftung (see Section B.1.1.), As well as by candidates of PreZero Service Deutschland GmbH & Co. KG, which contains candidates who can potentially be considered for positions at the companies managed by PreZero Germany (see Section B.1.2.). The talent pools are operated under the joint responsibility of the respective participating companies.

When registering via a landing page (e.g. in the context of a trade fair), the respective form or consent text indicates for which group of PreZero companies the talent pool is operated. If you give your consent to the talent pool in the course of a specific application, it depends on which company you are applying to, which talent pool your profile will potentially be included in - your application is considered a position at a company supported by the PreZero Stiftung (or at the Stiftung itself), the talent pool consent also refers to the talent pool managed by the Stiftung. The same applies to an application for a position at a company that is managed by PreZero Service Deutschland GmbH & Co. KG - your consent to inclusion in the talent pool operated by PreZero Germany applies here.

By voluntarily participating in the talent pool or registering for a talent pool, you consent to your profile being managed by PreZero Stiftung & Co. KG or PreZero Service Deutschland GmbH & Co. KG, depending on which company manages the respective talent pool. potentially to all PreZero companies that are involved in the joint operation of the respective talent pool and they can invite you to apply for suitable positions.

The legal basis for data processing within the talent pool is your consent in accordance with Article 6 (1) (a) GDPR. Your data that you have specified in your candidate profile (in the case of a talent pool participation for a specific application) or in the form on the landing page (in the case of direct registration for a talent pool) is processed.

3.2. Recipients / categories of recipients

We work with private talent pools that are each managed by one or more selected recruiters from a national company. I.e. after inclusion in a talent pool, access to your profile is possible for all recruiters in the company who support it. Only the relevant companies will continue to have access to ongoing applications.

3.3. Obligation to provide your data

Consent to be included in our talent pool is voluntary and non-granting has no impact on other ongoing application processes at the PreZero companies.

3.4. Revocation option

You can end your participation in the talent pool at any time - please revoke your consent by mail:

• for talent pools operated by the PreZero Stiftung at bewerbung.stiftung@prezero.com
• for talent pools operated by PreZero Service Germany at bewerbung@prezero.com

Your profile will then be removed from the respective talent pool. This does not affect your active applications for individual positions and your candidate profile will not be deleted.

The revocation has effect for the future does not affect the legality of the data processing until the time of the revocation.

3.5. Storage duration / criteria for determining the storage duration

The storage duration of the data in the talent pool is based on the general deletion criteria for your profile, i.e. it remains in the talent pool for one year after the last login, unless you have previously revoked your consent.

4. Talent Relationship Management / Job Alerts Newsletter

As part of your application, you can participate in Talent Relationship Management or order a Job Alerts newsletter: As part of Talent Relationship Management, you will occasionally be informed by e-mail of other potentially interesting positions and / or offers to get to know PreZero.

PreZero Stiftung & Co. KG, Stiftsbergstraße 1, 74172 Neckarsulm is responsible for the implementation of the Talent Relationship Management and the dispatch of the Job Alerts.

These emails will only be sent if you have given us your express consent in accordance with Article 6 (1) (a) GDPR. After placing your order, you will first receive a confirmation email to the email address you provided (so-called double opt-in). You can also revoke your consent at any time. An uncomplicated option for revocation is, for example, the unsubscribe link available in every Job Alerts newsletter. Alternatively, you can also send your revocation by e-mail to bewerbung.stiftung@prezero.com.

As part of the newsletter registration, we store other data in addition to the data already mentioned, if this is necessary so that we can prove that you have ordered our newsletter. This may include saving the full IP address at the time of ordering or confirming the newsletter, as well as a copy of the confirmation e-mail sent by us. The corresponding data processing is carried out on the basis of Article 6 (1) sentence 1 (f) GDPR and in the legitimate interest of being able to account for the legality of the newsletter dispatch.

C. Webinars

1. Responsible person within the meaning of Article 4 (7) GDPR

The person responsible for data processing within the meaning of Article 4 (7) GDPR is: 

PreZero Deutschland KG
Kleiststraße 49
32457 Porta Westfalica

Phone: (+49) 800 863676336
E-mail: info@prezero.com

2. Types of data for participation

If you would like to participate in a webinar live, you will be asked to provide your name, your business or private email address (mandatory) as well as your company, business telephone number and job title ( optional).

If you use the interactive functions as part of your participation, the content of your chat or other contributions (e.g. questions, answers to surveys) may also be processed. Please note that the webinar will be recorded and therefore the content of your interactions will also be part of the recording. Please do not provide any personal information about yourself or third parties in your posts. If you do not want to be recognizable in the recordings, we ask that you deactivate your camera and microphone and do not post any content in the chat.

Further information can be found in the data protection information of the respective webinar itself.

Subsequent access:
If you would like to watch a webinar in the stream, you will be required to provide your name, your business e-mail address (mandatory) and your Company, business telephone number and job title (optional).

3. Purposes and legal bases

We collect the above-mentioned identity and contact data in order to be able to include them in our customer database and to be able to provide you with information about our products and, if necessary, training documents for the webinar by e-mail and by telephone on the basis of your voluntary consent according to Article 6 (1) (a) GDPR and § 7a (1) of the Act against Unfair Competition (UWG). Regarding the establishment of contact by e-mail, please refer to the above-mentioned notes on sending out newsletters.

Your consent is voluntary and can be revoked at any time. In this case, your contact data will be deleted immediately. The legality of the processing that has already taken place up to the receipt of the revocation is not affected by the revocation.

Participation:

In addition, the other data is required to technically provide the webinar including the interactive functions. This data is processed on the basis of legitimate interests in accordance with Article 6 (1) (f) GDPR in enabling the webinar to be held within the required framework.

4. Recipients / categories of recipients

We generally exclude the transfer of data to third parties outside of PreZero Service Deutschland GmbH & Co. KG. In exceptional cases, data is processed on our behalf by contract processors. These are each carefully selected and contractually bound according to Article 28 GDPR. The service provider Cisco International Limited, 9-11 New Square Park, Bedfont Lakes, Feltham, England TW14 8HA, United Kingdom is used to provide the Webex webinar tool. An adequate level of data protection is ensured (adequacy decision according to Art. 45 GDPR). The service provider Microsoft Ireland Operations Ltd South County Business Park, One Micro oft Court, Carmanhall an Leopardstown, Dublin, D18 P521, Ireland is used to provide the MS Teams Webinar / MS Teams Live webinar tool.

In exceptional cases, your personal data may be accessible to Schwarz IT KG, Stiftsbergstraße 1, 74172 Neckarsulm for support and maintenance purposes, as our website is operated on our behalf on servers provided by Schwarz IT KG.

For the operation of our customer database Microsoft Ireland Operations Ltd South County Business Park, One Microsoft Court, Carmanhall an Leopardstown, Dublin, D18 P521, Ireland.

5. Obligation to provide your data

There is no contractual or legal obligation to provide the data. Please note, however, that we require the voluntary provision of your contact data and the associated advertising consent in return for participation or access to our free webinars.

6. Storage period / criteria for storage period

We delete personal data as soon as it is no longer required for the above-mentioned purposes. Recordings of the webinar are stored for five years. Your contact details will be stored in our customer database until you withdraw your consent. Your consent itself will also be retained for verification purposes for a further three years after deletion or for xx years after the last telephone contact within the framework of the legal documentation requirements.

D. Your Data Subject Rights

You have the right, pursuant to Article 15(1) of the GDPR, to receive information free of charge upon request about the personal data stored about you.

In addition, if the legal requirements are met, you have the right to rectification (Article 16 GDPR), erasure (Article 17 GDPR), and restriction of processing (Article 18 GDPR) of your personal data.

If the data processing is based on Article 6(1)(e) or 6(1)(f) of the GDPR, you have the right to object pursuant to Article 21 of the GDPR. If you object to data processing, it will cease in the future unless the controller can demonstrate compelling legitimate grounds for further processing that override the data subject’s interest in the objection.

If you yourself have provided the processed data, you have the right to data portability pursuant to Article 20 of the GDPR.

If the data processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) of the GDPR, you can revoke your consent at any time with effect for the future, without affecting the lawfulness of the processing carried out up to that point.

In the aforementioned cases, for open questions, or in the event of complaints, please contact the Data Protection Officer in writing or by e-mail. You also have the right to lodge a complaint with a data protection supervisory authority. The competent supervisory authority is that of the federal state in which you reside or where the controller has its registered office.

E. Data Protection Officer Contact

If you have further questions about the processing of your data or the exercise of your rights, you can contact the responsible Data Protection Officer at the Controller:

PreZero Stiftung & Co. KG 
– Data Protection Officer – 
Stiftsbergstraße 1
74172 Neckarsulm 

Mail: datenschutz-stiftung@prezero.com
 

PreZero Service Deutschland GmbH & Co. KG
– Data Protection Officer – 
Kronenweg 45
50389 Wesseling

Mail: datenschutz@prezero.com