Data protection information

Status October 2024

The protection and security of your personal data is a high priority for us. It is important to us to inform you about what personal data is collected, how it is used and what options you have when you visit our website.

1. controller and data protection officer

Circle2 GmbH
Sumpfweg 6, 72070 Tübingen
Geschäftsführer: Dr. Tobias Heisig, Dr. Alexander Wittwer
Telefon: +49 89 20984810
E-Mail: info@circle2.de
We have appointed a data protection officer for our company:
walliser consulting gmbh
Altenwaldstr. 8, 72768 Reutlingen
E-Mail: datenschutzbeauftragter@walliser-datenschutz.de

You can download the order processing contract in accordance with the GDPR and the associated annexes here:
Download order processing contract
Download Appendix 1: Personnel development
Download Appendix 2: Subcontractor
Download Appendix 3: TOM’s

2. handling of personal data

Personal data is only collected, used and processed if this is permitted by law or if users consent to the collection of data. We primarily process personal data that the data subjects themselves provide to us in the context of contractual and business relationships. or which we receive from the respective contractual and business partners. Relevant personal data includes in particular personal details (e.g. surname, first name, address, bank details, invoice address, tax number/USt ID) and other contact details such as telephone number and e-mail address.

3. accessing our website

When you visit our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security. The legal basis for the processing of the data is Art. 6 para. 1 lit. f) GDPR and § 25 para. 2 TDDDG due to our legitimate interest in enabling website access and functionality. Each time our website is accessed, access data is stored in a log file, the server log. The stored data record contains the following information in particular:

  • IP address of the requesting computer
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/ HTTP status code
  • Information about the browser and operating system used
  • Request information such as language
  • Amount of data transferred

We only evaluate these log files in the event of misuse of our website. We reserve the right to subsequently check the log files of those users for whom there is a concrete suspicion that they are using our website in violation of the law and/or the contract. In general, we cannot assign this data to a specific person. If no evaluation is carried out in individual cases, this data is not permanently stored or analyzed. The data is deleted after 30 days.

4. possibility to contact us

Bei Ihrer Kontaktaufnahme mit uns per E-Mail werden die von Ihnen mitgeteilten Daten (etwas Ihre E-Mail-Adresse, Ihr Name und Ihre Telefonnummer) von uns gespeichert, um Ihre Anfrage zu beantworten. Die in diesem Zusammenhang anfallenden Daten löschen wir, nachdem die Speicherung nicht mehr erforderlich ist, oder schränken die Verarbeitung ein, falls gesetzliche Aufbewahrungspflichten bestehen. Rechtsgrundlage für die Verarbeitung der Daten, die im Zuge einer E-Mail übermittelt werden, ist Art. 6 Abs. 1 lit. f) DSGVO. Zielt der E-Mail-Kontakt auf den Abschluss eines Vertrages ab, so ist zusätzliche Rechtsgrundlage für die Verarbeitung der Daten Art. 6 Abs. 1 lit. b) DSGVO.

5. cookies

We use cookies on our website. These are small text files that are stored on your computer. Some of the cookies we use are deleted from your hard disk at the end of the browser session (session cookies). Other cookies remain on your computer and enable us to recognize your computer on your next visit (long-term cookies).


We use optional cookies for marketing and analysis purposes. Processing only takes place if you have given your consent for data processing in accordance with Art. 6 para. 1 lit. a) GDPR and for data transfer to third countries in accordance with Art. 49 para. 1 sentence 1 lit. a) GDPR via the consent banner. The storage and access to information in the end device is based on the ePrivacy Directive of the EU member states, in Germany according to § 25 para. 1 TDDDG.

 

You can completely prevent the storage of cookies by setting your browser accordingly. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.

6. application

You can apply for vacancies via our website. The purpose of data collection is the selection of applicants for the possible establishment of an employment relationship. The data you provide (first and last name, email address, application documents such as certificates and CV, mobile phone number if applicable, application photo, salary expectations, Xing or LinkedIn profile) will be processed by us for the selection process.
As part of the application process, the applications received are reviewed, any queries are made using the above information, invitations to interviews are sent and further personal data is collected in interviews as part of the selection process in order to make a decision.


The legal basis for the processing of applicant data is Art. 88 para. 1 GDPR in conjunction with § 26 BDSG or Art. 6 para. 1 lit. b) GDPR.
The purpose of collecting and processing your data is to handle the application process.


If no employment relationship is established following the application procedure, the application documents will be deleted no later than six months after notification of the rejection decision, unless you consent to us storing your applicant data for longer than six months.
If your application is followed by the conclusion of an employment contract, your data will be stored and used in compliance with the relevant legal provisions pursuant to Art. 6 para. 1 lit. b) GDPR.


We assure you that your data will be collected, processed and used in accordance with the principles of the GDPR and all other legal provisions and that your data will be treated in strict confidence.

7. recipients of personal data

In case of doubt, your personal data will be passed on if we are legally obliged to do so or if you have given your consent to the passing on of the data.

8. duration of processing

Your data will be deleted by us as soon as the purpose for processing no longer applies and there are no legal retention periods to the contrary.

9. rights of data subjects

With regard to the processing of your personal data, you have the following rights vis-à-vis us:

 

Right to information (Art. 15 GDPR): You can request information at any time as to whether and which personal data concerning you is being used by us, the purposes of the processing, the origin of the data, the recipients to whom the data may be transmitted and how long such data is stored by us.

 

Right to rectification (Art. 16 GDPR): If you discover that personal data concerning you is incorrect, you can request the rectification of such data at any time. If you believe that data is incomplete, you can also request that it be completed.

 

Right to erasure (Art. 17 GDPR): If you are of the opinion that the use of your personal data is no longer necessary or takes place without a sufficient legal basis or is unlawful for other reasons, you can request the deletion of this data.

 

Right to restriction of the use of data (Art. 18 GDPR): Instead of the erasure of data, you can also request the restriction of the use of data if data is being used unlawfully. In particular, you can also request such a restriction on the use of data if you dispute the accuracy of data or have objected to the use of data.

 

Right to data portability (Art. 20 GDPR): With regard to personal data that you have provided yourself and that is used on the basis of a contract or consent, you can request that this data be made available to you in a structured, commonly used and machine-readable format. You can also request that this data be transmitted directly to another controller.

 

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR): If you believe that your rights in relation to the personal data concerning you have been infringed, you have the right to lodge a complaint with a supervisory authority. The local authority responsible for us is:

 

The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg, Lautenschlagerstr. 20, 70173 Stuttgart.

 

We draw your attention separately to your right to object (Art. 21 GDPR). If there are reasons arising from your particular situation that make the use of your personal data, which we use on the basis of a balancing of interests (Art. 6 para. 1 lit. f) GDPR), inadmissible, you have the right to object to such data use. If your personal data is used for direct advertising, you have the right to object. Furthermore, you have the right to revoke your consent granted under data protection law at any time in accordance with Art. 7 para. 3 GDPR.

 

Please send this to:


Circle2 GmbH
Sumpfweg 6
72070 Tübingen
info@circle2.de

circle2_logo_footer.svg

Munich · Tübingen · Heilbronn · Waiblingen

Office Munich:
Offenbachstraße 47
D-81245 München

Tel. +49 89 – 209 848 10
Email: info@circle2.de
Contact Imprint Data protection