Your cookie settings
Change cookie settingsYour cookie selection history
Datum | Version | Einwilligungen |
---|
Privacy policy for the use of our website
Thank you for visiting our website. The protection of your personal data (“Data”) is very important to us. This Privacy Policy is designed to give you an overview of which Data we process when you visit our website or contact us and which data protection rights you have in this context.
I. Responsibility and data protection contact
We,
TRE GmbH
Nachtweide 35
67433 Neustadt a.d. Weinstrasse
are responsible under data protection law for the processing of Data described in this Privacy Policy.
If you have any questions regarding data protection you can contact our Data Protection Officer by post at:
IAV GmbH Ingenieurgesellschaft Auto und Verkehr
Data Protection Officer
Carnotstraße 1
10587 Berlin
As well as by e-mail at: Datenschutzbeauftragter@iav.de.
II. Data processing in connection with your visit to our website
Insofar as the German Telecommunication-Digital-Services-Data-Protection-Act (Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz “TDDDG“) applies to the technologies and cookies used on our website, we will obtain your consent (Sec. 25 para. 1 TDDDG), unless the data processing is necessary to comply with legal requirements or for the technical operation of the website, the functionality and security of the website and our IT systems (Sec. 25 para. 2 TDDDG). You can access the cookie settings via our Privacy Policy at any time.
A. Log files
Data processing:
When you visit our website your browser automatically transmits the following Data:
- information about the browser type and the version used
- the user’s operating system
- websites from which the user’s system accesses our website (referrer URL)
- host name of the accessing device
- date and time of access
- IP address of the user.
Purposes:
The temporary storage of the IP address by the system is necessary in order to enable the user’s electronic device to receive the requested Data. Other Data is stored in log files to ensure the functionality of the website, to help us prevent malfunctions and misuse of our systems as well as to optimize the content of our website.
Legal basis:
We store this Data temporarily on the basis of legitimate interests (Art. 6 sec. 1 f General Data Protection Regulation “GDPR”), i.e. ensuring that our website is technically error-free and optimized.
Storage period:
The IP address is stored for the duration of the session. At the end of a month, the log files of the previous month before are deleted.
B. Cookies and Plug-ins
When you visit our website, we set so-called cookies. These are small text files that are stored on your device. Cookies typically contain a distinctive string of characters, the so-called cookieID, which identify your browser when revisiting the website.
Borlabs cookie banner
Data processing:
We use „Borlabs Cookie“ – a consent-cookie-technology provided by Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg, Germany („Borlabs“). With the help of the Borlabs cookie (CookieConsent), we document whether you have consented to the setting of certain cookies or have withdrawn consents or objected to data processing. The following Data is stored: cookie lifetime, cookie version, domain and path, consent state, randomly generated user ID.
Further information on the Borlabs Cookie you can find here.
Purposes:
Borlabs Cookie is used to comply with data protection requirements on the setting and documentation of cookies.
Legal basis:
We use the Borlabs-consent-technology to be able to prove compliance with legal obligations under the GDPR and the TDDDG, Art. 6 (1) c GDPR.
Storage period:
The cookie expires after 365 days. In addition, the collected Data will be deleted if you ask us to do so or delete the Borlabs cookie yourself or if the purpose for storing the Data no longer applies. Mandatory legal retention periods remain unaffected.
MTCaptcha
Data processing:
On our website we use „MTCaptcha“, a service provided by MTCaptcha, 1400 Four Embarcadero Center, San Francisco, CA 94111. MTCaptcha is used to recognize bots. For this purpose, visitor behaviour data (e.g. anonymised IP address, length of stay of the website visitor, mouse movements) is recorded and evaluated in order to distinguish humans from bots. We have no access to the data processed by MTCaptcha.
You can find more information here.
Purposes:
By using MTCaptcha we can distinguish human website visitors from bots and thus protect us from abusive automated spying and SPAM. The use of MTCaptcha is necessary to ensure the security of our website.
Legal basis:
We use MTCaptcha on the basis of legitimate interests (Art. 6 sec. 1 f GDPR), i.e. preventing abuses as well as SPAM.
Storage period:
You can prevent MTCaptcha from collecting and processing the Data by deleting the cookie in your browser, completely deactivating the storage of cookies, selectively accepting certain cookies and, if necessary, setting your browser to notify you, if a cookie should be set. Please use the help functions of your browser to find out how to change these settings. This may limit the functionality of our website.
Matomo(formerly PIWIK)
Data processing:
On our website we use the free web analysis software “Matomo”. Matomo´s analysis is based mainly on the following information: Visitor numbers, number of returning visitors, visited sites, visitors’ actions on the site (e.g. filling out the contact form), visitors’ time spent on the site, first and last visit to the site, keywords used by visitors to find the site, visitors’ behaviour on the site, visitors’ location, devices used when visiting our site, including device settings (screen resolution, operating system, browser used), visitors’ interests. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by a server. The IP address is anonymized before storage.
Purposes:
We use the statistics provided by Matomo to analyze the activities on our websites. This allows us to improve the quality of our websites and content and adjust them to the needs of our users.
Legal basis:
We use Matomo on the basis of your consent given via our cookie banner (Sec. 25 para. 1 sentence 1 TDDDG, Art. 6 Sec. 1 lit. a GDPR).
Storage period:
The cookies are automatically deleted after 13 months. You can also make or change your decision at any time via the cookie settings by unchecking the “statistics” category and thus revoke your consent. You can access the cookie settings via our Privacy Policy.
Youtube
Data processing:
On this website we have embedded Youtube videos. Provider of the Youtube platform is Google Ireland Limited (“Google“), Gordon House, Barrow Street, Dublin 4, Ireland. The embedding of the videos is done via iFrame. Your IP address and other technically related device information such as screen resolution, browser used and operating system used are processed. Youtube (Google) also receives this Data. From this Data, Youtube (Google) cannot yet draw any conclusions about your person, but can analyse, for example, your location (geographical positioning) at the moment of watching the video. Youtube (Google) shares this Data with other Google Group companies and third parties and transfers Data to third countries outside the European Union, such as the United States. For more information about the processing of your data by Youtube (Google), please have a look here.
Purposes:
We have embedded the videos to make our website visually appealing and user-friendly.
Legal basis:
The data processing is based on your consent given via our cookie banner (Sec. 25 para. 1 sentence 1 TDDDG, Art. 6 Sec. 1 lit. a GDPR)
Storage period:
You can prevent the data processing accompanying the embedding of Youtube videos at any time via the cookie settings – either by disabling the entire “External Media” category or explicitly disabling “Youtube”. You can access the cookie settings via our Privacy Policy.
C. Social Media (XING, LinkedIn, Facebook / Instagram)
You can visit us on Social Media as well. On our website you will find icons that link to our social media presences. These icons are provided as external links. Your Data is only transferred when you click on an icon. You can find further information on data processing on the social media platforms, purposes and legal bases for the data processing as well as your rights vis-á-vis the social media platforms under the following links:
Platform | Platform provier / address | Privacy Policy |
Facebook / Instagram | Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland | here |
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland | here | |
New Work SE, Am Strandkai 1, 20457 Hamburg, Germany | here |
Facebook / Instagram
Data processing by Meta and us:
We have an Facebook/Instagram page. As described in this section, we and Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (“Meta“) are partly joint responsible in part for the processing of your Data on Facebook / Instagram and have entered into a corresponding Agreement concluded. We use the following Facebook/Instagram features.
Insights
With the “Insights” function, we receive anonymized statistical analyses provided by Meta about the interaction of Facebook/Instagram users with our Facebook/Instagram page. We can filter these according to certain parameters and time periods. The statistical analyses contain, for example, the following information:
- Activities and interactions (e.g., clicks, page views, commenting, sharing), “likes”, reach of the page, of promotional activities, posts and events,
- Number and usage times of our subscribers and visitors, statistical information on age, gender and location,
- Video statistics,
- Received and sent messages.
To create the insights, Meta collects, among others, the following information: Viewing of a page / post / video, subscribing / unsubscribing to a page, tagging a page or post with “like” or “no longer like,” recommending a page in a post or comment, commenting on, sharing, or responding to a page post (including the type of response), hiding a page post, or reporting it as spam, click on a link from another page on Facebook/Instagram or from a website outside of Facebook/Instagram that leads to the page, hover over the name or profile picture of a page to preview page content, click on the webpage, phone number, “plan route” button or other button on a page, the information whether logged in via a computer or mobile device.
Facebook/Instagram notifications
When you interact with our Facebook/Instagram page, any of our posts or events (e.g., share, “like,” comment), subscribe to our Facebook/Instagram page, or follow us, we receive a notification from Meta with your name, profile photo, and interaction.
Contact / messages
When you exchange messages with us directly via Facebook/Instagram, we receive from Meta and process the information you provide, such as your username, profile photo, request and contact information.
Purposes:
Through Insights, we learn how our Facebook/Instagram page is used and can tailor the activities, design, and content of our page, posts, and events to the interests of Facebook/Instagram users. We use the information contained in Facebook/Instagram notifications to see how you interact with our page and to respond to your interactions (e.g., comments, “likes”). If you exchange messages with us directly via Facebook/Instagram, we process your data to handle your request.
Legal basis:
The data processing is based on legitimate interests (Art. 6 para. 1 f GDPR), i.e. achieving the purposes described above.
Storage period:
We cannot delete Facebook/Instagram notifications, your contacts, your posts or other interactions from the Meta servers.
Data processing by Meta:
When you visit our Facebook/Instagram page, Meta processes the Data described above and other Data collected by cookies and other tracking technologies or provided by you and third parties, e.g., to provide evaluations and analyses for advertisers, for market research and for the personalization of features and content. Meta shares this Data with other Meta Group companies and third parties and transfers Data to third countries outside the European Union, such as the United States. Further information on this and how to contact Meta you can find in Meta’s Privacy Policy and Cookie Policy, see Privacy Center of Meta.
Data processing by LinkedIn and us:
We have a company profile on LinkedIn. As described in this section, we and LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn“) are partially joint responsible for the processing of your Data on LinkedIn and have entered into an Agreement to that effect. We use the following LinkedIn features:
Page statistics
We receive information from LinkedIn about LinkedIn users and updates to our LinkedIn page. This data is provided to us without personal reference as page statistics. For this purpose, LinkedIn evaluates the following information in particular: Information about how you interact with a profile; Data you provide in your profile, e.g., your field of activity, your country, your industry, your seniority, your company size and your employment status.
Notifications
When you interact (e.g., “Like”, comment) with our LinkedIn profile, any of our posts or events, or follow us, we receive a notification from LinkedIn with your name, profile photo, and interaction.
Contact / messages
When you exchange messages with us directly via LinkedIn, we receive from LinkedIn and process the information you provide, such as your username, profile photo, request, and contact information.
Purposes:
Through the analytics function, we learn who is viewing our LinkedIn profile or following us. This allows us to better understand trends and demographic backgrounds of people interacting with our page and to tailor the design of our LinkedIn page, posts and events to the interests of LinkedIn users. We use the information in LinkedIn notifications to see how you interact in relation to our LinkedIn page and to respond to your interactions (e.g., comments, “likes”). When you exchange messages with us directly via LinkedIn, we process your Data to handle your request.
Legal basis:
The data processing is based on legitimate interests (Art. 6 para. 1 f GDPR), i.e. achieving the purposes described above.
Storage period:
We may not delete LinkedIn notifications, your contacts, your posts, or other interactions from the LinkedIn servers.
Data processing by LinkedIn:
When you visit our LinkedIn page, LinkedIn processes various Data collected through cookies and other tracking technologies or provided by you and third parties, e.g., to improve LinkedIn services, measure and optimize advertising, create statistics. LinkedIn shares this Data with other companies and third parties and transfers Data to third countries outside the European Union, e.g., to the USA. For more information on the scope and purpose as well as the legal basis of LinkedIn’s data processing and your rights, please refer to the Privacy Policy of LinkedIn.
Data processing:
We have a Xing profile. As described in this section we and New Work SE, Am Strandkai 1, 20457 Hamburg, Germany (“Xing”) process your Data. We use the following Xing functions:
Profile analysis
Via the “profile analysis” function, we receive overviews provided by Xing as well as anonymized statistics on the visitors and followers of our Xing profile over the last 30 days. The anonymous statistics contain various information, e.g. company belonging, industry branch, career levels, age groups.
Notifications
Xing notifies us about the reactions to our Xing profile, i.e. our posts. The notification includes the name, the profile photo and the reaction of the person.
Contact / messages
When you exchange messages with us directly via Xing, we will receive the information provided by Xing that include your user name, your profile photo, your query as well as your contact data and will process these.
Purposes:
With the help of profile analysis we learn who or which groups of people use our Xing profile. This enables us to adapt the design of our Xing profile, posts and events to the interests of our visitors and followers. We use the information in Xing notifications to see how the Xing users interact in relation to our Xing profile. When you exchange messages with us directly via Xing, we process your Data to handle your request.
Legal basis:
The data processing is based on legitimate interests (Art. 6 para. 1 f GDPR), i.e. achieving the purposes described above.
Storage period:
We may not delete Xing notifications, your contacts, your posts, or other interactions from the Xing servers.
Data processing by Xing:
When you visit our Xing profile, Xing processes various Data collected through cookies and other tracking technologies or provided by you and third parties, e.g., to provide the Xing services, measure and optimize advertising, create statistics. Xing shares this Data with other companies and third parties and transfers Data to third countries outside the European Union, e.g., to the USA. For more information on the scope and purpose as well as the legal basis of Xing’s data processing and your rights, please refer to the Privacy Policy of Xing.
III. Which data is processed when you contact us via contact form or email?
Data processing:
We collect and process the Data provided by you, such as contact data, your name and your query, when you contact us via our contact form or by email. All mandatory fields are marked with an asterisk in the contact form. All Data that you provide to us is transferred between your browser and our servers in encrypted form.
Purposes:
We process your Data exclusively to handle your query.
Legal basis:
If your query is intended to conclude a contract, we process your Data in order to perform precontractual and contractual measures (Art. 6 sec. 1 b GDPR). In all other cases, the processing is based on our legitimate interest in the effective handling of the queries addressed to us (Art. 6 sec. 1 f GDPR).
Storage period:
We store your Data for as long as we need it for the specific processing purpose. In addition, we store certain Data for the duration of the statutory limitation periods (usually three years, in individual cases up to 30 years) and for as long as is prescribed by statutory retention periods (e.g. as defined in the Commercial Code (HGB), the Fiscal Code [AO]) (usually ten years).
IV. Which data is processed when you apply for a job with us?
Data processing:
To participate in our application process we require, depending on the type of application, your contact details, your email address, information on your professional qualifications in the form of education and graduation certificates and/or employer references as well as your CV. If you give us additional Data voluntarily, we use this exclusively for the purpose of processing your application and conducting the application process. You can apply to us by email or by post.
When you apply for a job, your Data is not shared with others. Only those persons have access to your Data who are responsible for filling the position. As soon as you are hired by us, the employment contract will be handled by IAV GmbH Ingenieurgesellschaft Auto und Verkehr, Carnotstr. 1, 10587 Berlin, (“IAV GmbH“), so that your Data is shared with IAV GmbH.
Purposes / requirement to provide the Data:
The purpose of processing the Data provided by you is to select an applicant for employment. Applicants are required to provide the Data. Without providing the Data, participation in the application process is not possible.
Legal basis:
The data processing is carried out to establish an employment relationship (Sec. 26 Federal Data Protection Act = Bundesdatenschutzgesetz “BDSG” in conjunction with Art. 6 sec. 1 b GDPR). We process voluntary information on the basis of legitimate interests, i.e. considering of all information provided (Sec. 26 para. 1 BDSG in conjunction with Art. 6 sec. 1 f GDPR).
Storage period:
If we decline your application, we will store your application documents for a maximum of twelve months from the time of notification of the unsuccessful application. Excluded from the deletion is Data that we need for the execution of contracts and for the assertion, exercise and defense of legal claims, as well as Data for which there are legal, regulatory or contractual retention obligations.
V. Who receives your data?
Within TRE GmbH / IAV GmbH
Within TRE GmbH as well as within IAV GmbH only those persons / departments have access to the Data who require this for the purposes described.
Service providers supporting us
We transmit your Data to our service providers, e.g. in the fields of
- IT services,
- Post and telecommunication services,
- Advice, legal advice,
- Compliance and data protection,
- Distribution and advertising,
- Operation and maintenance of our website (including hosting),
- as well as communication, e.g. via our contact form.
These service providers are contractually obliged to maintain confidentiality and fulfill the requirements under data protection law. Service providers that are processors have signed a contract, which guarantees that Data will be processed strictly according to our instructions.
VI. What rights do you have and how can you exercise these?
A. Withdrawal of consent
You can withdraw any consent you have granted to the processing of your Data at any time and with effect for the future. Please note that the withdrawal will have no impact on the legality of the previous data processing and that it does not extend to such data processing for which statutory authorisation exists and which can therefore be performed without your consent.
B. Other rights of data subjects
According to Art. 15 to 21 and 77 of the GDPR and if the conditions are met, you are furthermore entitled to the following rights.
Access:
You can at any time demand provision of information on the Data of yours that we process and demand a copy of the Data stored on you, Art. 15 GDPR. Please note that further copies of the Data stored on you may be subject to a charge.
Correction:
You can demand the correction of incorrect Data as well as the completion of incomplete Data according to Art. 16 GDPR.
Erasure:
You can demand the erasure of your Data. Please note that the erasure does not include Data required for the execution and processing of contracts and to assert, exercise and defend against legal claims as well as Data for which statutory, supervisory or contractual retention obligations exist, Art. 17 GDPR.
Restriction of processing:
You can under certain circumstances demand the restriction of the processing, e.g. if you believe that your Data is incorrect, if the processing is illegal or you have raised a complaint about the data processing. This will mean that without your consent your Data may only be processed in a very restricted way, e.g. to assert, exercise or defend against legal claims or to protect the rights of other natural or legal entities, Art. 18 GDPR.
Objection to data processing:
You have the option to object to the data processing for direct advertising purposes at any time. In addition, you can object at any time to data processing performed on the basis of a legitimate interest if there is particular reason for doing so, Article 21 GDPR.
Data portability:
You have the right to receive the Data provided by you, which was processed based on your consent or in order to fulfill a contract, in a structured, commonly used and machine-readable format and the right to demand a direct transfer of this Data to third parties within the realms of what is technically possible, Article 20 GDPR.
C. Contact details
You can assert your rights by means of the contact details mentioned in Section I.
D. Right to appeal to the competent data protection supervisory authority
If you, for example, consider that the processing of your Data is illegal or that your rights described above are not granted to you to the required extent, you have the right to file a complaint to the competent data protection supervisory authority.
Last Update: August 2024