Protecting your personal data is of great importance to us. We have implemented technical and organizational measures to ensure that data protection regulations are observed both by us and by our external service providers (processors).
Below you will find our privacy policy, which sets out our information obligations in accordance with Art. 12, 13 et seq. GDPR.
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.
Data processing on this website is carried out by the website operator. You can find their contact details in the section 'Information on the controller' in this privacy policy.
Firstly, your data is collected when you provide it to us. This may, for example, be data that you enter in a contact form.
Other data is collected automatically or with your consent when you visit the website by our IT systems. This is primarily technical data (e.g. Internet browser, operating system or time you accessed the page). This data is collected automatically as soon as you enter our website.
Some of the data is collected to ensure that the website is displayed correctly. Other data may be used to analyse your user behaviour. If contracts can be concluded or initiated via the website, the data transmitted will also be processed for contract offers, orders or other order enquiries.
You have the right to receive information about the origin, recipient and purpose of the personal data stored about you free of charge at any time. You also have the right to request the correction or erasure of this data. If you have given your consent to data processing, you can withdraw this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority.
You can contact us at any time if you have any further questions on the subject of data protection.
When you visit our website, your surfing behaviour can be analysed statistically. This is mainly done using what is known as analytical software.
Detailed information on analytical software can be found in the privacy policy below.
We host the content of our website with the following provider:
This website is hosted externally. The personal data collected on this website is stored on the servers of the host(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated by a website.
External hosting is carried out for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 ()1 (b) GDPR) and in the interest of secure, fast and efficient provision of our online services by a professional provider (Art. 6 (1) (f) GDPR). If relevant consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and Section 25 (1) of the German Telemedia Act (TDDDG), insofar as the consent covers the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Our host(s) will only process your data to the extent necessary to fulfil their service obligations and will follow our instructions with regard to this data.
We use the following host(s):
maxcluster GmbH
Technologiepark 8
33100 Paderborn
Hosting is provided by subcontractor 23M GmbH, Johann-Krane-Weg 18, 48149 Münster.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
We use the 'Cloudflare' service. The provider is Cloudflare Inc, 101 Townsend St., San Francisco, CA 94107, USA (hereinafter referred to as 'Cloudflare').
Cloudflare offers a globally distributed content delivery network with DNS. Technically, the transfer of information between your browser and our website is routed via the Cloudflare network. This enables Cloudflare to analyse the traffic between your browser and our website and to act as a filter between our servers and potentially malicious traffic from the Internet. Cloudflare may also use cookies or other technologies to recognise Internet users, but these are used solely for the purpose described here.
The use of Cloudflare is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 (1) (f) GDPR).
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details and further information on security and data protection at Cloudflare can be found here: https://www.cloudflare.com/privacypolicy/.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5666.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
We use the 'Fastly' service. The provider is Fastly Inc, 475 Brannan Street, San Francisco, CA 94107, USA (hereinafter referred to as 'Fastly').
Fastly offers a globally distributed content delivery network with DNS. Technically, the transfer of information between your browser and our website is routed via the Fastly network. This enables Fastly to analyse the traffic between your browser and our website and to act as a filter between our servers and potentially malicious traffic from the Internet. Fastly may also use cookies or other technologies to recognise Internet users, but these are used solely for the purpose described here.
The use of Fastly is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 (1) (f) GDPR).
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details and further information on security and data protection can be found here: https://www.fastly.com/privacy.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5414.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
Various personal data is collected when you use our website. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would stress that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Data cannot be fully protected against access by third parties.
The controller responsible for data processing on this website is
Bauwerk Capital GmbH & Co. KG
Managing Partners Mr Christoph Lemp and Mr Jürgen Schorn
Prinzregentenstraße 22
80538 Munich
Germany
Phone: +49 (89) 415595 98-0
E-mail: info@bauwerk.de
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
Your personal data will remain with us until the purpose for data processing no longer applies unless a more specific storage period has been specified in this privacy policy. If you assert a justified request for erasure or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, deletion will take place after these reasons no longer apply.
If you have consented to data processing, we will process your personal data on the basis of Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, insofar as special categories of data are processed in accordance with Art. 9 (1) GDPR. Data processing will also be carried out on the basis of Art. 49 (1) (a) GDPR if explicit consent has been given to the transfer of personal data to third countries. If you have consented to the storage of cookies or access to information on your end device (e.g. via device fingerprinting), data processing will also be carried out on the basis of Section 25 (1) TDDDG. Consent can be withdrawn at any time. We will process your data on the basis of Art. 6 (1) (b) GDPR if your data is required for the fulfilment of a contract or for the implementation of pre-contractual measures. Furthermore, we will process your data if this is necessary to fulfil a legal obligation on the basis of Art. 6 (1) (c) GDPR. Data processing may also be carried out on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Information on the relevant legal basis in each individual case is provided in the following sections of this privacy policy.
We have appointed a data protection officer.
External Data Protection Officer
Munker Privacy Consulting GmbH
Zugspitzstr. 3a
82399 Raisting
Germany
E-mail: dsb@munker.info
We have appointed a data protection coordinator in our companies for the purpose of data protection coordination. Their task is to ensure consistent data protection across the companies and to act as a personal point of contact for you:
Julius Haußmann
Phone: +49 (89) 415595-0
E-mail: datenschutz@bauwerk.de
We work together with various external organisations in the course of our business activities. In some cases, it is also necessary to transfer personal data to these external bodies. We only pass on personal data to external bodies if this is necessary for the fulfilment of a contract, if we are legally obliged to do so (e.g. passing on data to tax authorities), if we have a legitimate interest in passing on data in accordance with Art. 6 (1) (f) GDPR or if another legal basis permits the transfer of data. When using contract processors, we only disclose our customers' personal data on the basis of a valid agreement for contract processing. A joint processing agreement is concluded in the case of joint processing.
IF THE DATA PROCESSING IS BASED ON ART. 6 (1) (E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RELEVANT LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PARTICULAR PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS OR THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) GDPR).
IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING, WHICH INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ART. 21 (2) GDPR).
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the alleged violation. The right of appeal exists without prejudice to other administrative or judicial remedies.
You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible.
In accordance with applicable legal provisions, you have the right at any time to obtain information free of charge about your stored personal data, its origin and recipient and the purpose of data processing and, if applicable, a right to correction or erasure of this data. You can contact us at any time if you have further questions on the subject of personal data.
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restriction of processing exists in the following cases:
If you have restricted the processing of your personal data, this data – apart from its storage – may only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from 'http://' to 'https://' and by the padlock symbol in your browser line.
The data you transmit to us cannot be read by third parties if SSL or TLS encryption is activated.
We hereby object to any use of contact details published in accordance with our legal notice obligations for the purpose of sending unsolicited advertising and information material. The operators of this website explicitly reserve the right to take legal action in the event of unsolicited promotional information being sent, for example via spam emails.
Our Internet pages use so-called cookies. Cookies are small data packets and do not cause any damage to your end device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or they are automatically deleted by your web browser.
Cookies may originate from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g. cookies for processing payment services).
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping basket function or the display of videos). Other cookies can be used to analyse user behaviour or for advertising purposes.
Cookies that are required to carry out the electronic communication process, to provide certain functions that you have requested (e.g. for the shopping basket function) or to optimise the website (e.g. cookies to measure the web audience) (necessary cookies) are stored on the basis of Art. 6(1) (f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies to ensure the technically correct and optimised provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, processing will be carried out exclusively on the basis of this consent (Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG); consent can be withdrawn at any time.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when you close your browser. The functionality of this website may be restricted if cookies are deactivated.
You can find out which cookies and services are used on this website in this privacy policy.
Our website uses the consent technology of CookieHub, Hafnargata 51-55, 230 Reykjanesbær, Iceland, to obtain your consent to the storage of certain cookies in your browser or to the use of certain technologies and to document these in accordance with data protection regulations.
When you visit our website, a cookie is stored in your browser which records the consents you have given or the withdrawal of these consents. This data is not disclosed to the provider of the technology.
The data collected will be stored until you ask us to delete it or delete the cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on CookieHub's data processing can be found at https://www.cookiehub.com/privacy-policy.
The technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 (1) (c) GDPR.
If you send us enquiries via the contact form, the information you provide on the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and for any follow-up questions. We do not pass on this data without your consent.
This data is processed on the basis of Art. 6 (1) (b) GDPR if your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in dealing with enquiries addressed to us in an effective manner (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if this has been requested; consent can be withdrawn at any time.
We will retain the data you provide on the contact form until you request its erasure, withdraw your consent to its storage, or the purpose for its storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular retention periods – remain unaffected.
If you contact us by e-mail, telephone or fax, your enquiry, including all personal data (name, enquiry), will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.
This data is processed on the basis of Art. 6 (1) (b) GDPR if your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in dealing with enquiries addressed to us in an effective manner (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR) if this has been requested; consent can be withdrawn at any time.
The data you send us via contact requests will remain with us until you ask us to delete it, withdraw your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.
We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that we can use to integrate tracking or statistics tools and other technologies into our website. Google Tag Manager itself does not create any user profiles, does not store any cookies and does not carry out any independent analyses. It is only used to manage and display the tools integrated via it. However, Google Tag Manager records your IP address, which may also be transmitted to Google's parent company in the United States.
The use of Google Tag Manager is based on Art. 6 (1) (f) GDPR.
We use Google Tag Manager in a cookie-free version.
We manage our website tags with Google Tag Manager. Google Tag Manager merely triggers other tags, which in turn may collect data. Google Tag Manager cannot access this data. If you have deactivated disabled tracking at domain or cookie level, this deactivation will remain in place for all tracking tags that have been implemented via Google Tag Manager.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ('Google'), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables website operators to analyse the behaviour of website visitors. A website operator receives various usage data, such as page views, length of visit, operating systems used and origin of the user. This data is assigned to the user's particular end device. No assignment is made to a user ID.
We can also use Google Analytics to record, for example, your mouse and scroll movements and clicks. Google Analytics also uses various modelling approaches to supplement the collected data records and uses machine learning technologies for data analysis.
Google Analytics uses technologies that enable user recognition for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there.
The use of this service is based on your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG. Consent can be withdrawn at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.
Google Analytics IP anonymisation is activated. As a result, your IP address will be truncated by Google within Member States of the European Union or in other signatory states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information on behalf of the website operator to analyse your use of the website, to compile reports on website activity and to provide other services relating to website activity and Internet usage to the website operator. The IP address transmitted by your browser under Google Analytics will not be merged with other Google data.
You can prevent the collection and processing of your data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
You can find more information on how Google Analytics handles user data in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.
We use Google Signals. When you visit our website, Google Analytics records your location, search history, YouTube history and demographic data (visitor data). This data can be used for personalised advertising with the help of Google Signal. If you have a Google account, visitor data from Google Signal will be linked to your Google account and used for personalised advertising messages. The data is also used to compile anonymised statistics on the behaviour of our users.
We have concluded a contract processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
This website uses Hotjar. The provider is Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (Website: https://www.hotjar.com).
Hotjar is a tool for analysing your user behaviour on this website. Hotjar allows us to record, for example, your mouse and scroll movements. Hotjar can also determine how long you have been hovering over a certain position with cursor. Hotjar uses this information to create heat maps, which can be used to determine which website areas are most popular with website visitors.
We can also determine how long you stayed on a page and when you left it. We can also determine at which point you stopped entering information into a contact form (so-called conversion funnels).
Hotjar can also be used to obtain direct feedback from website visitors. This function serves to improve the website operator's web offering.
Hotjar uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting).
Where consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 (1) (a) GDPR and Section 25 TDDDG. Consent can be withdrawn at any time. If no consent has been obtained, this service is used on the basis of Art. 6 (1) (f) GDPR; the website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising.
If you wish to deactivate data collection by Hotjar, click on the following link and follow the instructions there: https://www.hotjar.com/policies/do-not-track/
Please note that Hotjar must be deactivated separately for each browser or end device.
For more information about Hotjar and the data collected, please refer to Hotjar's privacy policy at the following link: https://www.hotjar.com/privacy
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
The website operator uses Google Ads. Google Ads is an online advertising programme from Google Ireland Limited ('Google'), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads enables us to display adverts in the Google search engine or on third-party websites when the user enters certain search terms in Google (keyword targeting). Furthermore, targeted adverts can be displayed based on user data available to Google (e.g. location data and interests) (target group targeting). As website operators, we can evaluate this data quantitatively by analysing, for example, which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks.
The use of this service is based on your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG. Consent can be withdrawn at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More details can be found here: https://policies.google.com/privacy/frameworks and https://business.safety.google/controllerterms/.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.
This website uses the visitor action pixel from Meta to measure conversions. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Meta, the data collected is also transferred to the USA and other third countries.
It enables the behaviour of site visitors to be tracked after they have been redirected to the provider's website by clicking on a meta ad. This allows the effectiveness of the meta advertisements to be evaluated for statistical and market research purposes and future advertising measures to be optimised.
The data collected is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of users. However, the data is stored and processed by Meta, enabling a connection to the particular user profile on Facebook or Instagram and allowing Meta to use the data for its own advertising purposes in accordance with the Meta Privacy Policy (https://facebook.com/about/privacy/). This enables Meta to place adverts on Facebook or Instagram pages and other advertising channels. This use of the data cannot be influenced by us as the website operator.
The use of this service is based on your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG. Consent can be withdrawn at any time.
Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Meta, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). The joint responsibility is limited exclusively to the collection of data and its transfer to Meta. The processing carried out by Meta after forwarding is not part of the joint responsibility. The obligations incumbent on us jointly were set out in an agreement on joint processing. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing data protection information when using the Meta tool and for the secure implementation of the tool on our website in accordance with data protection law. Meta is responsible for the data security of Meta products. You can assert your rights as a data subject (e.g. requests for information) regarding the data processed by Facebook or Instagram directly with Meta. If you assert your rights as a data subject with us, we are obliged to forward them to Meta.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://facebook.com/help/566994660333381.
You can find further information on the protection of your privacy in Meta's privacy policy: https://facebook.com/about/privacy/.
You can also deactivate the 'Custom Audiences' remarketing function in the settings for adverts at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen . You must be logged in to Facebook to do this.
If you do not have a Facebook or Instagram account, you can deactivate usage-based advertising from Meta on the website of the European Interactive Digital Advertising Alliance: https://www.youronlinechoices.com/uk/your-ad-choices/.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/4452.
This website uses the Insight tag from LinkedIn. The provider of this service is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
The LinkedIn Insight Tag provides us with information about visitors to our website. If a website visitor is registered with LinkedIn, we can, for example, analyse key professional data (e.g. career level, company size, country, location, industry and job title) of our website visitors, allowing us to better tailor our site to the relevant target groups. We can also use LinkedIn Insight Tags to measure whether visitors to our websites make a purchase or take another action (conversion measurement). Conversion measurement can also be carried out across devices (e.g. from PC to tablet). LinkedIn Insight Tag also offers a retargeting function that we can use to display targeted advertising to visitors to our website outside the website, whereby, according to LinkedIn, no identification of the advertising addressee takes place.
LinkedIn itself also records log files (URL, referrer URL, IP address, device and browser properties and time of access). IP addresses are truncated or (if they are used to reach LinkedIn members across devices) hashed (pseudonymised). Direct identifiers of LinkedIn members are deleted by LinkedIn after seven days. The remaining pseudonymised data will then be deleted within 180 days.
Data collected by LinkedIn cannot be assigned to specific individuals by us as the website operator. LinkedIn will store personal data collected from website visitors on its servers in the USA and use it for its own advertising purposes. Details can be found in LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy#choices-oblig.
Where consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 (1) (a) GDPR and Section 25 TDDDG. Consent can be withdrawn at any time. If no consent has been obtained, this service is used on the basis of Art. 6 (1) (f) GDPR; the website operator has a legitimate interest in effective advertising measures, including social media.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5448.
You can object to the analysis of user behaviour and targeted advertising by LinkedIn under the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Furthermore, LinkedIn members can control the use of their personal data for advertising purposes in their account settings. You must log out of your LinkedIn account before visiting our website if you wish to prevent LinkedIn from linking data collected on our website to your LinkedIn account.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
If you would like to subscribe to the newsletter offered on our website, we require your e-mail address as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or is only collected on a voluntary basis. We use newsletter service providers, which are described below, to process the newsletter.
This website uses Brevo to send newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
Brevo is a service that can be used, for example, to organise and analyse the dispatch of newsletters. The data you enter for the purpose of subscribing to the newsletter will be stored on the servers of Sendinblue GmbH in Germany.
Brevo enables us to analyse our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links, if any, have been clicked on. This allows us to determine which links have been clicked on particularly often.
We can also recognise whether certain previously defined actions were carried out after opening/clicking (conversion rate). For example, we can recognise whether you made a purchase after clicking on the newsletter.
Brevo also enables us to subdivide (cluster) newsletter recipients into various categories. Newsletter recipients can be categorised by age, gender or place of residence, for example. This allows the newsletters to be better customised to individual target groups.
You must unsubscribe from the newsletter if you do not wish to be analysed by Brevo. We provide a link for this purpose in every newsletter.
Detailed information on the functions of Brevo can be found at the following link: https://www.brevo.com/newsletter-software/.
Data processing is carried out on the basis of your consent (Art. 6 (1) (a) GDPR). You can withdraw this consent at any time. The legality of data processing operations carried out prior to withdrawal remains unaffected.
The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected by this.
After you unsubscribe from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 (1) (f) GDPR). There is no time limit for storage in the blacklist. You can object to storage if your interests outweigh our legitimate interest.
For more information, please refer to Brevo's privacy policy at: https://www.brevo.com/de/datenschutz-uebersicht/ and https://www.brevo.com/legal/privacypolicy/.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is an agreement prescribed by data protection law that ensures that the provider will only process the personal data of visitors to our website in accordance with our instructions and in compliance with the GDPR.
This website uses plug-ins from the video portal Vimeo. The provider is Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA.
Visiting one of our pages featuring a Vimeo video establishes a connection to Vimeo's servers, informing the Vimeo server which of our pages you have visited. Vimeo also obtains your IP address. However, we have configured Vimeo so that it will not track your user activities or set any cookies.
Vimeo is used in the interest of an appealing presentation of our online offering. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. If consent has been requested, processing will be carried out exclusively on the basis of Art. 6 (1) (a) GDPR; consent can be withdrawn at any time.
Data transfer to the USA is based on the EU Commission's standard contractual clauses and, according to Vimeo, on 'legitimate business interests'. More details can be found here: https://vimeo.com/privacy.
Further information on the handling of user data can be found in Vimeo's privacy policy at: https://vimeo.com/privacy.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5711.
This site uses the Google Maps map service. The provider is Google Ireland Limited ('Google'), Gordon House, Barrow Street, Dublin 4, Ireland. The service enables us to integrate map material on our website.
It is necessary to store your IP address in order to use the functions of Google Maps. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts for the purpose of uniform representation of fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly.
The use of Google Maps is in the interest of an appealing presentation of our online offering and to make it easy to find the places we indicate on the website. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. If relevant consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and Section 25 (1) of the German Telemedia Act (TDDDG), insofar as the consent covers the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be withdrawn at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
You can find more information on the handling of user data in Google's privacy policy: https://policies.google.com/privacy?hl=en.
The company is certified in accordance with the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.
We collect, process and use personal customer and contractual data to establish, organise the content of and amend our contractual relationships. We collect, process and use personal data about the use of this website (usage data) only to the extent necessary to enable the user to utilise the service, or to bill the user. The legal basis for this is Art. 6 (1) (b) GDPR.
The customer data collected will be deleted after completion of the order or termination of the business relationship and expiry of any existing statutory retention periods. Statutory retention periods remain unaffected.
to Bauwerk Capital GmbH & Co. KG
in accordance with Art. 13, 14, 21 of the General Data Protection Regulation (GDPR)
We are delighted that you are interested in our company and you have applied or are applying for a position with us. We would like to inform you below about how we process the personal data you provide in connection with your job application.
Bauwerk Capital GmbH & Co. KG
GF Christoph Lemp, Jürgen Schorn
Prinzregentenstraße 22
80538 München
Tel. +49 (89) 415595-15
E-mail: info@bauwerk.de
You can contact our data protection officer at the above address with the addition 'Attn: Data Protection Officer' or at dsb@bauwerk.de.
We process your personal data to the extent necessary to assess the establishment of a contract of employment. The legal basis for this is Art. 6 (1) (b) GDPR in conjunction with Section 26 of the Federal Data Protection Act (BDSG).
We only collect personal data (in particular first name, last name, address, e-mail, position applied for, information from the application) from you that is required for the application process. In order to fully assess your application, it is necessary that you also provide us with information on your previous professional career.
In the case of an online application, you enter this data yourself in the online form; for all other forms of application, we collect the relevant information from the application and scan the application documents if necessary.
When you apply for a job, we only use data that comes directly from you or a person authorised by you. Additional personal data may be collected from you personally as part of the application process. This may also include data that you make available online for professional purposes (e.g. on business networks).
We may involve personnel consultants to carry out assessment centres or potential analyses when filling certain positions, especially management positions.
The period during which data will be processed depends on the purpose for which you have given your consent to data processing for specific purposes, for example, to offer you other vacancies within our company.
We process your personal data for the purpose of carrying out measures and activities in connection with pre-contractual relationships, in particular for contract negotiations.
We process your personal data for the purpose of carrying out measures and activities in connection with pre-contractual relationships, in particular for contract negotiations.
We process your personal data insofar as this is legally required to comply with retention obligations under commercial and tax law or otherwise required by law (e.g. under to the Money Laundering Act).
We process your personal data insofar as this is necessary to defend against legal claims asserted against us arising from the application process. A legitimate interest is, for example, the burden of proof in proceedings brought under the General Equal Treatment Act (AGG).
We process the personal data that we receive from you as part of your application. This is the data that you make available to us as part of your application, in particular by submitting application documents and the information you provide in job interviews.
We may also receive data from recruitment agencies to whom you have submitted your application documents and who recommend you to us as a candidate for a position.
Your data will of course be treated confidentially and will only be made available to those persons in the company who are involved in the recruitment decision-making process (e.g. HR department, line manager).
Furthermore, processors, such as software providers, IT service providers, document disposal businesses etc. may also be recipients of the data. We have concluded a contract processing agreement with these providers to ensure that data processing is carried out in a lawful manner.
Data is not usually transferred to third countries (countries outside the European Economic Area – EEA). If data is transferred to third countries (e.g. through the use of processors) and this is necessary, we take measures to ensure the protection of your data, for example through contractual provisions. We will only transfer data to recipients who ensure the protection of your data in accordance with the provisions of the GDPR governing transfers to third countries (Art. 44 to 49 GDPR).
We store your personal data for as long as is necessary to fulfil the processing purposes and/or to comply with statutory retention obligations.
If you are not selected for the position for which you have applied, or if you withdraw your application, we will delete your data six months after you withdraw your application or after you are rejected. In the event that an employment contract is concluded between you and us, your application documents will be included in your personnel file and stored for at least the duration of your employment.
If you have given us your consent to store your application documents (unsolicited application or no vacant position), we will store your documents for 12 months..
We do not use purely automated decision-making processes in accordance with Article 22 GDPR. If we use these procedures in individual cases, we will inform you of this separately.
Applying to us is voluntary. It is necessary for you to provide personal data regarding your previous professional and/or educational background, your qualifications, your skills and personal details and how you can be contacted so that we determine whether you are a suitable candidate for the position to be filled and select the appropriate personnel. We cannot select personnel or carry out any application procedures without you, as an applicant, providing personal data.
Consequently, failure to provide personal data will simply mean that you cannot be considered as a candidate for the position.
Under certain conditions, you may use the above address
Please contact us or our data protection officer if you wish to assert any of these rights.
You have the right to object to the processing of personal data concerning you on the basis of Art. 6 (1) (f) GDPR (data processing to protect legitimate interests) or Art. 6 (1) (e) GDPR (data processing for tasks in the public interest).
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for such processing that override your interests, rights and freedoms, or processing serves to assert, exercise or defend legal claims.
Insofar as we process your personal data for specific purposes on the basis of your consent, you have the right to withdraw your consent at any time in accordance with Art. 7 (3) GDPR. After receiving your withdrawal, we will cease processing your data for the purposes for which you have given us your consent. The lawfulness of the processing prior to receipt of your withdrawal remains unaffected.
Please note that withdrawal is only effective for the future. Processing that took place prior to withdrawal is not affected by this.
Any objection or withdrawal can be made informally and should be addressed to: karriere@bauwerk.de
You have the right to lodge a complaint with the data protection supervisory authority if you believe that the processing of your data violates the GDPR (Art. 77 GDPR). The supervisory authority responsible for us is:
Bavarian State Office for Data Protection Supervision, Promenade 18, 91522 Ansbach, Phone: +49/ (0) 981 180093 -0, E-mail: poststelle@lda.bayern.de
Our website is based on the latest technologies to make it faster, safer and easier to use. Your browser does not support these technologies because it is out of date. Please download one of these free browsers:
We will also be happy to advise you on our range of products by telephone or e-mail.
