Imprint and data protection
- Data protection on our website
Data protection and data security when using our website are a matter of course for us. We would therefore like to inform you at this point which of your personal data we collect when you visit our website and for what purposes it is used.
This data protection declaration applies to the Internet offer of KI group GmbH, which is available on the websites available under the domain "www.ki-group.com" (hereinafter referred to as "our website").
As a data subject, you also have the legal right to information about your processed personal data (Art. 15 Para. 1 and 2 GDPR) as well as the rights to deletion (Art. 17 GDPR) and correction (Art. 16 sentence 1 GDPR), for example incorrect data and blocking (Art. 18 GDPR). For details, please refer to the following section " Data subject rights " within this data protection declaration. It may not be possible to continue using our services if your data is deleted or blocked.
- Responsible body
The person responsible according to applicable data protection law, in particular the EU General Data Protection Regulation (GDPR) for the processing of personal data on this website is
KI group GmbH
E-Mail: contact (at) kigroup.de
Entry in the commercial register Register number: HR B 60695
Register court: Cologne District Court
- Personal data
Personal data is information about the personal or factual circumstances of a specific or identifiable natural person. This includes information such as your name, address, telephone number and date of birth, but also data about your specific career path etc., which can be assigned to a specific person with reasonable effort. However, information that is not (directly) linked to your real identity is not personal data.
We will only collect, process and use the personal data you provide online for the purposes communicated to you.
Some data that we may collect from you is necessary so that we can provide you with the services you require, fulfill our contracts with you, comply with legal provisions or if we have a legitimate interest in using your data.
If we collect data directly from you, we may ask you for your consent and we clearly mark mandatory information (e.g. with an asterisk (*)). You voluntarily provide us with all other, unmarked information.
For the rest, we use your personal data exclusively to be able to offer you a comprehensive and interesting offer via our web services and to continuously improve it.
- Legal basis
The legal basis for processing your data can be the following:
- Your consent to the use of data in accordance with Art. 6 Para. 1 Letter a) GDPR;
- The fulfillment of our performance obligations from contracts concluded with you in order to be able to provide you with the desired services, in accordance with Art. 6 para. 1 letter b) GDPR;
- Our legitimate interest in accordance with Art. 6 Para. 1 Letter f) GDPR, e.g. B. our business interests in improving our services so that we can better understand your needs and expectations and therefore improve our services for you;
- To prevent fraud and to ensure that the use of our web services is complete and without fraudulent behavior;
- To ensure the security of our services and to ensure that our offerings are technically safe and work properly;
- To secure and enforce our contractual claims and claims;
- Legal reasons in accordance with Art. 6 Para. 1 lit;
- What personal data do we collect and process?
In principle, you can use our website without providing us with personal data (e.g. name, address, telephone number or email address), unless you voluntarily provide it to us (e.g. at Registrations for events, inquiries or surveys) or the corresponding legislation on the protection of your data allow this.
Your personal data are used as follows:
- Processing of personal data for applications and in the application process
If you apply to us electronically, i.e. by e-mail or via our web form, we will collect and process your personal data for the purpose of processing the application process and carrying out pre-contractual measures.
General inquiries and contact requests can be directed to us at any time using our contact form at www.kigroup.com/kontakt or by email contact (at) kigroup.de. In this case, we use your personal data only to answer your inquiries to your satisfaction. It is generally up to you to decide which data you provide us with. Without certain information required in individual cases, we may not be able to fulfill your contact request.
The legal basis for this data processing is that of Art. 6 Para. 1 lit. b GDPR (which allows the processing of data to fulfill a contract or pre-contractual measures), Art. 6 para. 1 lit. f GDPR (which allows the processing of data to protect the legitimate interests of the data controller) and Art. 6 para. 1 lit. a GDPR (which allows data processing based on your consent).
We do not create personal user profiles. In connection with the retrieval of the information requested by you, our servers only store data in anonymized form for the provision of our various services or for evaluation purposes. Here, general information is logged, such as when which content is accessed from our offer or which pages are visited most frequently. For these purposes we use so-called “cookies” (small text files with configuration information). The cookies used serve in particular to determine the frequency of use and the number of users of our websites. This tells us which area of our website and which other websites our users have visited.
However, this usage data does not allow any conclusions to be drawn about the user. All of this anonymized usage data will not be merged with your personal data and will be deleted immediately after the end of the statistical analysis.
In addition, our websites do not save cookies that do not have any purely technically necessary functions and serve the proper functioning of our web services if you have not previously accepted this. To do this, you must agree to the storage of cookies by selecting the types of cookies you want or accepted on the banner that contains the information about the storage of cookies and clicking "Accept". You can find further information on the types of cookies we use and how you can set the use of individual types of cookies and how you can consent to and object to their use in our cookie settings.
The legal basis for this data processing is that of Art. 6 Para. 1 lit. f GDPR (which allows the processing of data to protect the legitimate interests of the data controller) and Art. 6 para. 1 lit. a GDPR (which allows data processing based on your consent).
Most browsers are preset to automatically accept cookies. However, you can deactivate the storage of cookies or set your browser so that it notifies you before cookies are saved. Users who do not accept cookies may not be able to access certain areas of our website.
- Matomo (formerly Piwik)
This website uses the open source web analysis service Matomo.Matomo uses so-called "cookies".These are text files that are saved on your device.If you have consented to the storage of corresponding cookies on your end device, these cookies enable an analysis of your use of our website.For this purpose, the information generated by the cookie about the use of this website is stored on our server.The IP address is anonymized before being saved.
Matomo cookies remain on your end device until you delete them.
Matomo cookies are stored on the basis of Art. 6 Para. 1 lit.f GDPR.The website operator has a legitimate interest in the anonymized analysis of user behavior in order to optimize both its website and its advertising.
The information generated by the cookie about the use of this website will not be passed on to third parties.You can prevent the storage of cookies by setting your browser software accordingly;however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
If you no longer agree to the storage and use of your data, you can deactivate the storage and use by clicking on the link below.In this case, an opt-out cookie is stored in your browser, which prevents Matomo from storing usage data.If you delete your cookies, the Matomo opt-out cookie will also be deleted.The opt-out must be reactivated when you visit our website again.
- Google Analytics
If you have consented to the use of such cookies, our websites may use Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA ("Google").Google Analytics uses so-called “cookies”, text files that are stored on your computer and that enable an analysis of your use of the website.The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
We would like to point out that Google Analytics has been expanded to include the code “gat._anonymizeIp ();” on our website in order to guarantee anonymous collection of IP addresses (so-called IP masking).Before transmission, your IP address will therefore be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.The full IP address is only transferred to a Google server in the USA and abbreviated there in exceptional cases.The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
On our behalf, Google will use this information to evaluate your use of our website, to compile reports on website activity and to provide the website operator with other services related to website activity and internet usage.Google may also transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google.
The legal basis for this data processing is that of Art. 6 Para. 1 lit.f GDPR, which allows the processing of data to protect the legitimate interests of the data controller.
You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de
As an alternative to this browser plug-in or within browsers on mobile devices, you can prevent Google Analytics from collecting data by deactivating the Functionality item in the cookie settings.
An opt-out cookie is then set, which prevents the future collection of your data when you visit this website.
- Data protection compliant sharing via social media plugins (2-click solution / Shariff solution)
Our websites have plug-ins from the social networks mentioned in detail below.These plugins are identified on our website by the respective button belonging to the service.With the help of the plugins, users can share or post links to the corresponding websites in social networks such as Facebook, Twitter, Google+ and Instagram or recommend the content there.Through your active interaction with these plugins, e.g. by clicking the respective button or leaving a comment, this corresponding information is transmitted directly to the respective service and stored there.
When you visit one of our websites that contains such an activated plugin, your browser connects to the servers of the respective service, which in turn transmits the content of the plugin to your browser and integrates it into the page shown.The information about the visit to our website is thus forwarded to the respective service.We do not collect personal data ourselves using the social plugins or their use and have no influence on which data an activated plugin collects and how it is used by the provider.It must be assumed that at least the IP address and device-related information are recorded and used.There is also a possibility that the service providers will try toStore cookies on the computer used.If you are logged in to the respective service at the same time while visiting our website (e.g. via another browser session), the service provider can assign the visit to our website to your account.
The usual social media plugins transmit the above-mentioned user data to the respective operator of the social network each time the page is accessed.You do not have to be logged in or be a member of the network.In order to prevent the unconscious and unwanted collection and transmission of personal data to the respective service provider, we use a so-called "2-click solution" on our website: To activate a desired plug-in, it must first be clicked on the corresponding switch to be activated.Only by activating the plug-in is the collection of information and its transmission to the service provider triggered.Without activating the plugins, which only happens at your own request
The usual social media plugins transmit the above-mentioned user data to the respective operator of the social network each time the page is accessed.You do not have to be logged in or be a member of the network.In order to prevent such an unconscious and unwanted collection and transmission of personal data to the respective service provider, we use the so-called "Shariff solution" on our websites to protect your personal data: The respective social plug-in is only clicked activated on the corresponding switch and the acquisition of information and its transmission to the service provider only triggered by clicking on the button.We take the data protection interests of our visitors into account as far as is possible according to the current state of technology.So users can post our content on social networks without receiving complete information about your surfing behavior.The "Shariff project" is an initiative of the computer magazine c't (www.ct.de).Further information and technical details on the "c't Shariff project" can be found under the following link: https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
The legal basis for this data processing is that of Art. 6 Para. 1 lit.a GDPR (which allows data processing based on your consent).
- Facebook plugins
Our websites may contain plugins from the social network Facebook.Its provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA ("Facebook").You can find an overview of the Facebook plugins under the following link: developers.facebook.com/docs/plugins/.
If you activate the plugin, a connection is established between your browser and the Facebook server.Facebook receives the information that you have visited our site with your IP address and can thus assign your visit to our website to your Facebook user account, especially if you are logged in with your Facebook user account at the same time.
We do not collect personal data ourselves via the plugins or their use and have no influence on which data an activated plugin collects and how it is used by Facebook.Which personal data are processed in addition to the above information may depend on the settings you have selected within your Facebook profile.Please inform yourself about this in Facebook's data protection regulations: https://de-de.facebook.com/about/privacy/and https://www.facebook.com/legal/terms/.
- Twitter plugins
Our websites may contain plugins from the Twitter service.Its provider is Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“Twitter”).
If you activate the plugin, a connection is established between your browser and the Twitter server.Twitter thereby receives the information that you have visited our site with your IP address and can thus assign your visit to our website to your Twitter user account, especially if you are logged in with your Twitter user account at the same time.
By using the implemented functions of Twitter, your browser connects to the Twitter server and the websites you visit are linked to your Twitter account and made known to other users.Personal data is also transmitted to Twitter.We do not collect personal data ourselves via the plugins or their use and have no influence on which data an activated plugin collects and how it is used by Twitter.Which personal data are processed in addition to the above information may depend on the settings you have selected within your Twitter profile.Please inform yourself about this in the data protection regulations of Twitter: https://twitter.com/privacy.
- Google+ plugins
Our websites may contain plugins from the Google+ service.Its provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").
If you activate the plugin, a connection is established between your browser and the Google server.As a result, Google receives the information that you have visited our site with your IP address and can thus associate your visit to our website with your Google+ user account, especially if you are logged in with your Google+ user account at the same time.
You can use the Google+ button to share information from our websites within your network in Google+.In these processes, Google stores the information that you have given +1 for content, as well as information about the page on which you clicked.These interactions may be visible to other users together with further information from your Google+ profile, such as your profile name and your photo in Google services, e.g. in search results or in your Google profile, or in other places on websites and advertisements on the Internet become.
Google stores information about your +1 interactions in order to improve Google services for you and others.Your Google profile may be shown to other users who know your email address or have other identifying information about you.Google may continue to compile and publish statistics about the +1 interactions of users or pass them on to users and partners, such as publishers, advertisers or connected websites.
We do not ourselves collect personal data using the plugins or their use and have no influence on which data an activated plugin collects and how it is used by Google.Which personal data are processed in addition to the above information may depend on the settings you have selected within your Google+ profile.Please inform yourself about this in Google's data protection regulations: data protection link.
- Use of the XING share button
The "XING Share Button" is used on this website.
If you activate the plugin, a connection is established between your browser and the XING server, via which the "XING Share Button" functions (in particular the calculation / display of the counter value) are performed.
However, we would like to point out that this information is based on information from XING.We cannot check whether these apply.The official data protection information for the "XING Share Button" and additional information can be found on this website: https://www.xing.com/app/share?op=data_protection.
- Use of the LinkedIn Recommend button
This website contains plugins from the LinkedIn social network of the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA (hereinafter "LinkedIn").integrated.You can recognize the LinkedIn plugins by the LinkedIn logo or the “Share” button on this website.
If you activate the plugin, a direct connection is established between your browser and the LinkedIn server.LinkedIn receives the information that you have visited this website with your IP address.If you click the LinkedIn “Share” button while you are logged into your LinkedIn account, you can link the content of this website to your LinkedIn profile.This enables LinkedIn to associate your visit to this website with your user account.We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or their use by LinkedIn.
Details on data collection (purpose, scope, further processing, use) as well as your rights and setting options can be found in LinkedIn's official data protection information.You can find this information at https://www.linkedin.com/static?key=privacypolicy&trk=hbft_priv.
We may use plugins from the Vdieoportal YouTube on our website.The website is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
If you visit one of our pages equipped with a YouTube plug-in, a connection to the YouTube servers will be established.The YouTube server is informed which of our pages you have visited.
If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile.You can prevent this by logging out of your YouTube account.
YouTube is used in the interest of an attractive presentation of our online offers.This represents a legitimate interest within the meaning of Art. 6 para. 1 lit.f GDPR. Further information on the handling of user data can be found in YouTube's data protection declaration at: Youtube Protection Declaration.*
- Google Maps
On our website we may use the map service Google Maps via an API.The provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to save your IP address.This information is usually transferred to a Google server in the USA and stored there.The provider of this page has no influence on this data transmission.
The use of Google Maps is in the interest of an attractive presentation of our online offers and to make it easier to find the places we have indicated on the website.This represents a legitimate interest within the meaning of Art. 6 para. 1 lit.f GDPR.
You can find more information on handling user data in Google's data protection declaration: Google Data Privacy Declaration.
- Server log data
Your stay on our website is automatically logged by our web server.
In connection with the retrieval of the information you require from our web services, data for the provision of our various services or for evaluation and security purposes is recorded and, if necessary, saved in anonymous form (without personal reference).The web servers we use automatically save data about the access to our web services in so-called server log files.This is the following data:
- IP address
- Referrer URL (the page from which you are visiting us)
- Time of the server request
- Host name of the accessing device (the name of your Internet service provider)
- Browser type and version
- Operating system used and its settings
The processing of the above data is done for security purposes, for general fraud prevention and as a precaution against attacks on our web services.There is no automated merging of this data with data from other data sources.
If your IP address is also recorded automatically, it will be automatically deleted after 7 days at the latest.
In addition, only general information is recorded, e.g. when which content is accessed from our offer or which pages are visited most frequently, the names of the requested files and their date and time of access.These data are evaluated to improve our offer and do not allow any conclusions to be drawn about you personally.
We will not use this information for any other purpose.
The legal basis for data processing is Art. 6 Para. 1 lit.f GDPR, which allows the processing of data to protect the legitimate interests of the data controller.
- Data storage
We store personal data that you transmit to us only as long as it is required to fulfill the purposes for which this data was transmitted or as long as this is required by law:
- If you conclude contracts with us, we store and process your personal data for the duration of the contractual relationship and beyond for the fulfillment of post-contractual obligations and matters as well as for the duration of the legal retention periods (maximum 10 years);
- If you apply for vacancies with us through us, we will delete your application data no later than 180 days after the application process has ended, unless you have given us your consent to store your data permanently for future job vacancies;
- If you send us an inquiry, we process your personal data for the duration of the processing of your inquiry.
If we no longer need your personal data, we will delete it from our systems and records or anonymize it so that you can no longer be identified.
We may retain certain personal data in order to comply with our legal and regulatory obligations and to enable us to manage our rights (e.g. the assertion of our claims in court) or for statistical purposes (in anonymous form).
- Data Security
We use so-called SSL encryption for the secure transmission of your personal data. According to the current state of knowledge, this form of transmission is recognized as a secure form of data transmission. We endeavor to take technical and organizational security measures to protect your personal data against unintentional or unlawful deletion, modification or loss and against unauthorized disclosure or unauthorized access. Our employees are accordingly committed to confidentiality and data protection.
In order to avoid loss or misuse of the data stored by us, we take extensive technical and organizational security measures that are regularly checked and adapted to technological progress. As far as it is within our sphere of influence, we particularly use modern encryption techniques and a variety of other measures to prevent unauthorized access by third parties. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line. If there is SSL or TLS encryption, the data that you exchange with us cannot be read by third parties.
However, we would like to point out that, due to the structure of the Internet, it is possible that the rules of data protection and the above-mentioned security measures will not be observed by other persons or institutions that are not our responsibility. In particular, unencrypted data can be read by third parties, even if this is done by email. We have no technical influence on this. In these cases, it is the responsibility of the user to protect the data provided by him against misuse by encryption or in any other way.
- Disclosure of data
If these cases are not listed in this data protection declaration, we will neither sell or market your personal data to third parties nor pass them on for any other reason.
Your personal data will only be passed on without your express prior consent in addition to the other cases mentioned in this data protection declaration in the following cases:
- If it is necessary to investigate an illegal or abusive website or for legal prosecution, personal data will be passed on to the law enforcement authorities and, if necessary, to damaged third parties. However, this only happens if there is concrete evidence of illegal or abusive behavior. We are also legally obliged to provide information to certain public bodies on request. These are law enforcement agencies, authorities that prosecute administrative offenses and financial authorities.
- A disclosure to third parties committed to professional secrecy can take place if this is necessary for the enforcement of the contractual terms or other agreements as well as our claims from contracts that you have concluded with us.
As our business evolves, the structure of our company may change by changing the legal form, establishing, buying or selling subsidiaries, parts of companies or components. In such transactions, customer information is shared with your part of the company to be transferred with your consent. Each time personal data is passed on to third parties to the extent described above, we ensure that further use is carried out in accordance with this data protection declaration and the relevant data protection laws and ask for your consent.
However, your personal data can also be processed on our behalf by our reliable, external service providers ("contract processors").
We rely on reliable external service providers who conduct a number of business operations on our behalf and only provide them with the information they need to provide the services and we do not require them to share your personal information with anyone else Use purposes. We always make every effort to ensure that all processors we work with protect your personal information. For example, we can commission the following companies with services that require the processing of your personal data:
- The data transmitted as part of your application will be transmitted via TLS encryption and saved in a database.This database is operated by Personio GmbH, which offers personnel management and applicant management software (more details here). In this context, Personio is our processor according to Art. 28 GDPR.The basis for processing is a contract for order processing between us as the responsible body and Personio.
- Third parties who support and help us to provide digital and e-commerce services, including CRM, web analytics and search engine and tools for maintaining user content;
- Advertising, marketing, digital and social media agencies to assist us in advertising, marketing and campaigns, to analyze their effectiveness and to manage your contact requests and questions;
- Third parties who assist and assist us in providing IT services, including platform providers, hosting services, maintenance and support for our databases, as well as our software and applications that contain information about you (such services in some cases simply include access to Your data to accomplish the desired task);
The legal basis for data transmission is Art. 6 Para. 1 lit.b GDPR, which regulates the processing of data to fulfill a contract or pre-contractual measures as well as Art. 6 Para. 1 lit.f GDPR, which allow the processing of data to protect the legitimate interests of the data controller.
We have concluded an order processing contract with all of our processors in accordance with Art. 28 GDPR and fully implement the strict requirements of the German data protection authorities when using these services.
- Data subject rights
If we as the responsible body process personal data, you, as the data subject, have certain rights, depending on the legal basis and purpose of the processing, from Chapter III of the EU General Data Protection Regulation (GDPR), in particular, if necessary, the right to information (Article 15 DS GDPR), right to rectification (Article 16 GDPR), right to erasure (Article 17 GDPR), right to restriction of processing (Article 18 GDPR), right to data portability (Article 20 DS -GVO), right to object (Art. 21 GDPR). If the processing of personal data is based on your consent, you have the right to revoke this data protection consent in accordance with Art. 7 III GDPR.
If you would like to exercise your rights mentioned above, please contact us using the contact details given in the section “Responsible Body”.
Please note that we can request proof of identity and comprehensive information about your request before we can process your request.
- Right to lodge a complaint with the competent supervisory authority
In the event of violations of data protection law on our part, you have the right to lodge a complaint with the responsible supervisory authority.The supervisory authority responsible for the activities of KI group GmbH in data protection issues is the State Commissioner for Data Protection and Freedom of Information in North Rhine-Westphalia (LDI NRW), whose contact details can be found under the following link: https://www.ldi.nrw.de/ metanavi_Kontakt / index.php.
- Operational data protection officer of KI group GmbH
As required by law, we have appointed a data protection officer for our company:
Mr. Stephan Krämer, LL.M.
KINAST Rechtsanwaltsgesellschaft mbH
You can contact our data protection officer via his website at https://www.kinast-partner.de.
- Hyperlinks to other websites
Our website contains so-called hyperlinks to websites of other providers. If these hyperlinks are activated, they will be redirected from our website directly to the website of the other providers. With these links to external companies and other third parties, KI group GmbH is not responsible for the data protection requirements or the content of these websites.
- Final provisions
This data protection declaration can be called up, saved and printed out at any time under the URL. As changes in the law or changes in our internal processes may require an adjustment to this data protection declaration, we ask you to read this data protection declaration regularly.
We reserve the right to adapt this data protection declaration at any time so that it always corresponds to the current legal requirements or to reflect changes in the application process or the like. If you visit the recruiting page again or apply again, the new data protection declaration will apply.
As of May 2018