Privacy policy

Privacy policy for Axxum GmbH

Our company attaches great value to the protection of personal data. The following information will tell you more about how and why we collect your personal data when you use our website. If you have any further questions about how we handle your personal data, please do not hesitate to contact our data protection officer.

1. Data controller

The data controller within the sense of the General Data Protection Regulation (GDPR) is:
Axxum GmbH
In der Fleute 46
42389 Wuppertal, Germany
info@axxum.eu

Our data protection officer can be contacted at:
Personal/confidential
ATTN: Data protection officer
Axxum GmbH
In der Fleute 46
42389 Wuppertal, Germany
datenschutz@axxum.eu

2. Legal basis for our data processing

The processing of personal data may be based on various legal bases. Where we require your data to fulfil a contract with you or to respond to requests from you regarding a contract, the legal basis for this data processing is Art. 6 (1)(1)(b) of the GDPR. If we obtain your consent for specific data processing, the legal basis is Art. 6(1)(1)(a) of the GDPR. Some data processing activity is carried out on the basis of our legitimate interest. In that case, we always compare your data privacy interests with our legitimate interest. The legal basis in this case is Art. 6(f) of the GDPR. Where processing is required to satisfy a legal obligation on our part, the legal basis is Art. 6(1)(c) of the GDPR.

3. Data processing when you access our website

If you use our website purely for information purposes, i.e. if you do not register or transfer information to us otherwise (e.g. via a contact form), we will collect the following technical information (logfiles)

  • User agent (text string of information about the browser you are using, your device type and operating system)
  • The current IP address of the terminal device you are using to visit our website
  • The date and time of access
  • The URL of the referring website
  • The URL of the (sub-)page that you are viewing on our website

These data must be collected for our website to be displayed and to ensure its stability and security. We (and our service providers) do not routinely know the identity of the person behind an IP address. We do not merge the aforementioned data with other data. The legal basis in this case is Art. 6(1)(1)(f) of the GDPR. As the collection of data for the provision of the website and the storage of those data in logfiles for the operation of the website and for protection against misuse are essential, our legitimate interest prevails at this point.

4. Data security

We have taken comprehensive technical and operational security precautions to protect your data from accidental or deliberate tampering, loss, destruction and unauthorised access. Our security procedures are tested at regular intervals and adjusted in line with technical advances.

5. Data transmission

We shall only ever transfer your personal data to a third party if we are legally obligated to do so or if doing so is essential for performance of the contractual relationship or if you have given your express consent for your data to be transferred.

6. Contact

When contacting us by e-mail or using our contact form, we will store the data that you provide (your e-mail address and, if applicable, your name and telephone number) so that we can answer your queries and process your request. The legal basis in this case is Art. 6(1)(1)(f) of the GDPR. To the extent that we request information via our contact form that is not required for the purpose of making contact, these entries will be marked as optional. This information helps us clarify your request and process it more quickly. You expressly provide this information on a voluntary basis and with your consent, Art.(6)(1)(a) of the GDPR. To the extent that this information relates to communication channels (e.g. e-mail address, telephone number), you also consent to us contacting you via this communication channel so that we may respond to your enquiry. You can revoke future consent at any time. The data that we collect when making contact will be deleted as soon as they are no longer required for the purpose for which they were collected, your query has been resolved in full and no further communication with you is required or you do not wish for further communication. As the data controller, our company has taken a range of technical and organisational measures to ensure the most comprehensive protection possible for the personal data processed via this website. Nevertheless, internet-based data transfers may still contain security vulnerabilities. Absolute protection cannot be guaranteed and the sending of unencrypted e-mails is never secure. With this in mind, we kindly request that you do not send sensitive data by unencrypted e-mail and instead use either encrypted communication channels or post.

7. Applications

You can submit an application to our company electronically, e.g. via e-mail. Please note that unencrypted e-mails are not protected against (unauthorised) access. Your data will be used to process your application and to make a decision about establishing an employment relationship. The legal basis in this case is Art. 26(1) in conjunction with Sec. 8(2) of the BDSG. In addition, your personal data may also be processed as part of any defence that may be required should legal claims arising from the application process be asserted against us. The legal basis in this case is Art. 6(1)(1)(f) of the GDPR. The legitimate interest in processing also lies in the stated purposes. In addition, you can also apply online using our application portal https://axxum.softgarden.io/de/vacancies. In that case, your online application will be forwarded directly to our HR department over an encrypted connection, where it will be handled confidentially. Further information about our application procedure through our service provider is available at: https://axxum.softgarden.io/de/data-security

8. Integration of services and content of third parties

We use a range of services for the purposes of analysis and optimisation of our websites; these are outlined below. The legal basis in this case is Art. 6(1)(1)(a) of the GDPR, your consent or our specified legitimate interest (Art. 6(1)(1)(f) of the GDPR).

a. Fathom Analytics
We use Fathom Analytics, a website analysis services from Conva Ventures Inc., BOX 37058 Millstream PO, Victoria, British Columbia, V9B 0E8, Canada, on our website.
When you visit our website, essential technical information, including your IP address, will be transferred to the provider’s server. This information will only ever be transmitted to servers operated by Conva Ventures Inc. within Europe or within the European Economic Area. Fathom Analytics does not use cookies or fingerprints. Your personal data will not be transferred outside the EU/EEA.
The following data are collected:

  • Your IP address
  • The URL of the referring website
  • User agent (text string of information about the browser you are using, your device type and operating system)

Your IP address will be anonymised immediately so that we are unable to identify you as a user. Your data will be deleted after no more than 48 hours. The information collected about your use of this website will not be transferred to a third party. We use the data collected for statistical analysis of user behaviour to allow us to optimise the functionality and stability of the website and to ensure that the website is secured against misuse. The legal basis for the use of Fathom Analytics is Art. 6(1)(1)(f) of the GDPR. Our interest in and purpose for data processing are the optimisation of our website, adaptation of its content and improvement of our presence. The interests of users are properly safeguarded through anonymisation. If you do not consent to the storage and evaluation of your usage data from your visit to our website, you can also prevent the collection of your data by Fathom Analytics as follows: https://usefathom.com/docs/script/exclude-visits
The legal requirements also grant you the right to object to the processing of your data (Art. 21 of the GDPR).

Further information about your data can be found at:
https://usefathom.com/data
https://usefathom.com/compliance

b. Social bookmarks
Social bookmarks from the following providers are used on our website:

  • LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)
  • YouTube (YouTube, LLC, 901 Cherry Ave., 94066 San Bruno, CA, USA, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)

Social bookmarks are internet bookmarks that allow the user of the service to collect links and news reports. These are integrated into our website solely as a link to the corresponding services. After clicking on the integrated graphic, you will be redirected to the respective provider’s page, i.e. user information will only then be transferred to the respective provider. Information on the handling of your personal data when you use these websites can be found in the respective provider’s privacy policy.

c. Google Maps
This website uses Google Maps. Google Maps is a mapping service provided by Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The responsible party for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Information, including the IP address and the address entered as part of the directions feature, may be transferred to the provider’s server when the functions of Google Maps are used. This information is usually transferred to a Google server in the US and stored there. When you visit a website into which Google Maps is integrated, your browser establishes a direct connection to Google’s servers, allowing map content to be sent to your browser and to be integrated by it. The provider of that website has no influence over the transfer of data. We are currently aware of the following data being transferred:

  • Date and time of the visit to the respective website
  • Internet address or URL of the website retrieved
  • IP address, (starting) address entered as part of the directions feature

The use of Google Maps is based on our interest in attractive presentation of our online presence and in ensuring ease of access to the locations indicated on our website. If you do not wish for your data to be processed by Google when using this service, you can deactivate JavaScript in your browser settings. Please note that if you opt to do this, the interactive functions of Google Maps will no longer work. Where data are processed outside the EU/EEA at a location that does not maintain a level of data protection that is equivalent to the European standard, Google will use standard contractual clauses in accordance with its own terms. Further information on the use of user data can be found in Google’s privacy policy: https://www.google.de/intl/de/policies/privacy/. Data collection and storage are carried out with express consent in accordance with Art. 6(1)(1)(a) of the GDPR. Future consent can be revoked at any time.

9. Your rights

We would be happy to provide you with information as to whether and which personal data we hold about you and the purpose for which those data are processed (Art. 15 of the GDPR). In addition, the respective legal requirements also grant you the right to have your data corrected (Art. 16 of the GDPR), the right to have the processing of your data restricted (Art. 18 of the GDPR), the right to have your data deleted (Art. 17 of the GDPR) and the right to port your data (Art. 20 of the GDPR). The legal requirements also grant you the right to object to the processing of your data (Art. 21 of the GDPR).

To exercise any of these rights, please send an e-mail to datenschutz@axxum.eu or write to the company’s postal address. The exercise of your rights is free of charge. Notwithstanding these rights and the option to assert another administrative or legal remedy, you have the option at any time to exercise your right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of your personal data violates the respective data protection regulations (Art. 77 of the GDPR).