top of page

DATA PROTECTION

1. Data Protection at a Glance

 

General Information
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. Detailed information on data protection can be found in our privacy policy listed below.

Data Collection on This Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find the operator’s contact details in the section "Notice on the Responsible Party" in this privacy policy.

How do we collect your data?
Your data is collected firstly when you provide it to us. This may include data you enter into a contact form. Other data is collected automatically or after your consent during your visit to the website by our IT systems. This data includes mainly technical information (e.g., the internet browser, operating system, or time of page access). This data is collected automatically as soon as you access this website.

What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?
You have the right to obtain information about the origin, recipients, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. In addition, you have the right to request the restriction of the processing of your personal data under certain circumstances.

Furthermore, you have the right to lodge a complaint with the relevant supervisory authority. For further questions about data protection, you can contact us at any time.

Analysis Tools and Third-Party Tools
When you visit this website, your browsing behavior may be statistically analyzed. This happens mainly with so-called analysis programs. Detailed information on these analysis programs can be found in the following privacy policy.

2. Hosting

We host the content of our website with the following providers:

WIX
The provider is Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel (hereinafter “WIX”). WIX is a tool for creating and hosting websites. When you visit our website, WIX analyzes user behavior, visitor sources, the region of the website visitors, and visitor numbers. WIX stores cookies in your browser that are necessary for displaying the website and ensuring security (necessary cookies).
The data collected by WIX may be stored on servers worldwide.

WIX servers are located, among others, in the USA.

For details, please refer to WIX’s privacy policy:
https://de.wix.com/about/privacy.

Data transmission to the USA and other third countries is based on WIX’s Standard Contractual Clauses or comparable guarantees under Article 46 GDPR. Details can be found here:
https://de.wix.com/about/privacy-dpa-users.

The use of WIX is based on Article 6(1)(f) GDPR. We have a legitimate interest in ensuring a reliable display of our website. If consent is requested, processing is carried out exclusively based on Article 6(1)(a) GDPR and § 25(1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the TTDSG. Consent can be revoked at any time.

Contract Processing
We have entered into a data processing agreement (DPA) to use the above service. This is a legally required agreement that ensures WIX processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

External Hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the host(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access, and other data generated through a website.

External hosting is carried out for the purpose of fulfilling contracts with our potential and existing customers (Article 6(1)(b) GDPR) and in the interest of ensuring a secure, fast, and efficient provision of our online offering by a professional provider (Article 6(1)(f) GDPR).

If consent has been requested, processing is carried out exclusively based on Article 6(1)(a) GDPR and § 25(1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the TTDSG. Consent can be revoked at any time.

Our host(s) will only process your data to the extent necessary to fulfill their performance obligations and follow our instructions concerning this data.

We use the following host(s):

checkdomain GmbH
a dogado group company
Große Burgstraße 27/29
23552 Lübeck

Contract Processing
We have entered into a data processing agreement (DPA) to use the above service. This is a legally required agreement that ensures that the personal data of our website visitors is processed only in accordance with our instructions and in compliance with the GDPR.

3. General Information and Mandatory Notices

Data Protection
The operators of this site take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

When you use this website, various personal data is collected. Personal data is data by which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the internet (e.g., when communicating via email) may have security vulnerabilities. Complete protection of data from third-party access is not possible.

Notice on the Responsible Party
The responsible party for data processing on this website is:

Hundert24 GmbH
Blumenberger Straße 143-145
41061 Mönchengladbach
Managing Director: Marco Kamischke
Phone: 02161 - 8307926
Email: info@megamarsch.de

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration
Unless a more specific storage period is mentioned in this privacy policy, your personal data will remain with us until the purpose for the data processing no longer applies. If you make a legitimate request for deletion or revoke your consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, the data will be deleted after these reasons no longer apply.

General Information on the Legal Bases for Data Processing on This Website
If you have consented to data processing, we process your personal data based on Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, if special categories of data are processed under Article 9(1) GDPR. In the case of express consent to the transfer of personal data to third countries, data processing is also carried out based on Article 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), the data processing is additionally based on § 25(1) TTDSG. Consent can be revoked at any time. If your data is required for contract fulfillment or pre-contractual measures, we process your data based on Article 6(1)(b) GDPR. We also process your data if it is necessary to fulfill a legal obligation under Article 6(1)(c) GDPR.

Data processing may also be carried out based on our legitimate interest under Article 6(1)(f) GDPR. The specific legal bases for each individual case will be provided in the following paragraphs of this privacy policy.

Data Protection Officer
We have appointed a data protection officer.

e

GmbH
Mr. Reichert
Heideweg 25
92318 Neumarkt
Phone: 09181/522940
Email: datenschutz@elos-net.de

 

Notice on Data Transfer to the USA and Other Third Countries
We use tools from companies based in the USA or other countries that may not provide adequate data protection. When these tools are active, your personal data may be transferred to and processed in these third countries. We would like to point out that no comparable level of data protection with the EU can be guaranteed in these countries.

For example, U.S. companies are required to disclose personal data to security authorities without you being able to take legal action against this. Therefore, it cannot be ruled out that U.S. authorities (e.g., intelligence services) may process, analyze, and store your data on U.S. servers for surveillance purposes. We have no influence on these processing activities.

4. Your Rights and How to Exercise Them

Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)
If data processing is based on Article 6(1)(e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis for processing can be found in this privacy policy. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or if the processing is for the assertion, exercise, or defense of legal claims (objection under Article 21(1) GDPR).

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing; this also applies to profiling to the extent that it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Article 21(2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority
In the event of breaches of the GDPR, the data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or place of the alleged infringement. The right to lodge a complaint exists without prejudice to other administrative or judicial remedies.

Right to Data Portability
You have the right to receive data that we process automatically based on your consent or in fulfillment of a contract in a commonly used, machine-readable format, or to request the transfer of this data to a third party. If you request the direct transfer of data to another controller, this will only be done to the extent technically feasible.

Right to Information, Correction, and Deletion
Within the framework of the applicable legal provisions, you have the right to free information at any time about your stored personal data, its origin and recipients, and the purpose of data processing, as well as a right to correction or deletion of this data, if necessary. You can contact us at any time regarding this or any other questions on the topic of personal data.

Right to Restrict Processing
You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time. The right to restrict processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we generally need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.

  • If the processing of your personal data was/is unlawful, you may request the restriction of data processing instead of deletion.

  • If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.

  • If you have objected under Article 21(1) GDPR, a balance must be struck between your interests and ours. As long as it has not been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, such data may – apart from being stored – only be processed with your consent or for the assertion, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.

5. Data Collection on This Website

Cookies
Our internet pages use so-called "cookies." Cookies are small data packets that do not harm your device. They are either temporarily stored for the duration of a session (session cookies) or permanently stored on your device (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them or they are automatically deleted by your web browser.

Cookies can be set by us (first-party cookies) or by third-party companies (third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g., cookies for processing payment services).

Cookies have different functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or displaying videos). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies necessary for electronic communication, providing certain functions you desire (e.g., for the shopping cart function), or optimizing the website (e.g., cookies for measuring the web audience) are stored based on Article 6(1)(f) GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent has been requested for the storage of cookies and comparable recognition technologies, processing is carried out exclusively based on this consent (Article 6(1)(a) GDPR and § 25(1) TTDSG); consent can be revoked at any time.

You can configure your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

For more information on which cookies and services are used on this website, please refer to this privacy policy.

6. Social Media

Facebook
This website includes elements from the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the collected data is also transmitted to the USA and other third countries.

An overview of Facebook's social media elements can be found here:
https://developers.facebook.com/docs/plugins/?locale=de_DE.

If the social media element is active, a direct connection between your device and the Facebook server is established. Facebook receives the information that you have visited this website with your IP address. If you click on the Facebook "Like" button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to assign your visit to this website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook. For more information, please refer to Facebook's privacy policy:
https://de-de.facebook.com/privacy/explanation.

If consent has been requested, the service is used based on Article 6(1)(a) GDPR and § 25 TTDSG. Consent can be revoked at any time. If no consent was requested, the service is used based on our legitimate interest in ensuring the widest possible visibility in social media.

Insofar as personal data is collected on our website using the tool described and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Article 26 GDPR). The joint responsibility is limited to the collection of the data and its forwarding to Facebook. The subsequent processing of the data by Facebook is not part of the joint responsibility. The obligations incumbent upon us jointly have been set out in a joint processing agreement. The text of the agreement can be found here:
https://www.facebook.com/legal/controller_addendum.

According to this agreement, we are responsible for providing the privacy information when using the Facebook tool and for implementing the tool on our website in a way that is data protection compliant. Facebook is responsible for data security for the Facebook products. Data subject rights (e.g., requests for information) regarding the data processed by Facebook can be asserted directly with Facebook. If you assert your data subject rights with us, we are obliged to forward these requests to Facebook.

Data transmission to the USA is based on the Standard Contractual Clauses of the European Commission. Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum and
https://de-de.facebook.com/help/566994660333381.

For more information, see Facebook's privacy policy:
https://de-de.facebook.com/about/privacy/.

You can also disable the remarketing feature "Custom Audiences" in the ad settings section under
https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you need to be logged in to Facebook.

If you do not have a Facebook account, you can opt out of user-based advertising from Facebook on the European Interactive Digital Advertising Alliance website:
http://www.youronlinechoices.com/de/praferenzmanagement/.

7. Newsletter

Newsletter Data
If you would like to receive the newsletter offered on the website, we need an email address from you as well as information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. No further data is collected unless provided on a voluntary basis. We use the following newsletter service provider to handle the dispatch of newsletters:

Rapidmail
This website uses Rapidmail for sending newsletters. The provider is Rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg i.Br., Germany. Rapidmail is a service that allows for the organization and analysis of newsletters. The data you provide to subscribe to the newsletter will be stored on Rapidmail's servers in Germany.

Data Analysis by Rapidmail
The emails sent by Rapidmail contain a “tracking pixel,” which connects to Rapidmail’s servers when the email is opened. This allows us to determine whether the email was opened. Furthermore, Rapidmail enables us to track whether and which links in the newsletter were clicked. All links in the email are tracking links, which can track your clicks. If you do not wish to be tracked by Rapidmail, you must unsubscribe from the newsletter. We provide a corresponding link for unsubscribing in every newsletter message.

For more details on Rapidmail’s analytics features, visit:
https://de.rapidmail.wiki/kategorien/statistiken.

Legal Basis
The processing of your data is based on your consent (Article 6(1)(a) GDPR). You can revoke this consent at any time. The legality of the already completed data processing operations remains unaffected by the revocation.

Storage Duration
The data you provide to subscribe to the newsletter will be stored until you unsubscribe from the newsletter, after which the data will be deleted from the newsletter distribution list. Data that we have stored for other purposes (e.g., email addresses for member accounts) will remain unaffected.

After unsubscribing from the newsletter list, your email address may be stored in a blacklist to prevent future mailings. The data from the blacklist is only used for this purpose and will not be merged with other data. This serves both your interests and our interest in compliance with the legal requirements for sending newsletters (legitimate interest under Article 6(1)(f) GDPR). Blacklist storage is indefinite. You can object to the storage if your interests outweigh our legitimate interests.

For more information on Rapidmail’s data security practices, visit:
https://www.rapidmail.de/datensicherheit.

Contract Processing
We have entered into a contract processing agreement (DPA) with Rapidmail to ensure that they process personal data of our website visitors only following our instructions and in compliance with the GDPR.

8. eCommerce and Payment Providers

Data Transfer Upon Conclusion of Contracts for Online Shops, Retailers, and Shipment of Goods
If you order goods from us, we will transmit your personal data to the transportation company responsible for the delivery, and to the payment service provider tasked with processing the payment. Only the data required for the respective service provider to fulfill its task will be disclosed. The legal basis for this is Article 6(1)(b) GDPR, which allows the processing of data to fulfill a contract or for pre-contractual measures. If you have given your consent under Article 6(1)(a) GDPR, we will pass on your email address to the shipping company so that it can inform you about the shipping status of your order by email. You can revoke this consent at any time.

Data Transfer Upon Conclusion of Contracts for Services and Digital Content
We transfer personal data to third parties only if this is necessary in the context of contract processing, such as to the financial institution responsible for processing payments. No further data is transferred unless you have explicitly consented to the transfer. Your data will not be passed on to third parties without explicit consent, for example, for advertising purposes.

The legal basis for this data processing is Article 6(1)(b) GDPR, which allows the processing of data to fulfill a contract or for pre-contractual measures.

Payment Providers
We integrate payment services from third-party companies on our website. When you make a purchase from us, your payment data (e.g., name, payment amount, account details, credit card number) will be processed by the payment service provider to facilitate the transaction. For these transactions, the respective contracts and privacy policies of the respective providers apply.

The use of these payment service providers is based on Article 6(1)(b) GDPR (contract fulfillment) and in the interest of ensuring a smooth, convenient, and secure payment process (Article 6(1)(f) GDPR). If consent has been requested, processing is based solely on Article 6(1)(a) GDPR; consent can be revoked at any time.

We use the following payment service providers on this website:

PayPal
The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”). Data transmission to the USA is based on the Standard Contractual Clauses of the European Commission. Details can be found here:
https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.

For more information, see PayPal’s privacy policy:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

9. Our Own Services

Handling Applicant Data
We offer you the opportunity to apply to us (e.g., via email, post, or online application form). Below, we inform you about the scope, purpose, and use of your personal data collected during the application process. We assure you that the collection, processing, and use of your data will be in accordance with applicable data protection law and all other statutory provisions and that your data will be treated strictly confidentially.

Scope and Purpose of Data Collection
When you submit an application to us, we process your related personal data (e.g., contact and communication details, application documents, notes from interviews, etc.) to the extent necessary to make a decision about establishing an employment relationship. The legal basis for this is § 26 BDSG (Federal Data Protection Act) under German law (initiation of an employment relationship), Article 6(1)(b) GDPR (general contract initiation), and – if you have given your consent – Article 6(1)(a) GDPR. Consent can be revoked at any time. Your personal data will be shared within our company only with persons involved in processing your application.

If the application is successful, the data you submitted will be stored based on § 26 BDSG and Article 6(1)(b) GDPR for the purpose of the employment relationship in our data processing systems.

Data Retention Period
If we are unable to make you a job offer, if you reject a job offer, or if you withdraw your application, we reserve the right to retain the data you have submitted based on our legitimate interests (Article 6(1)(f) GDPR) for up to 6 months from the end of the application process (rejection or withdrawal of the application). After that, the data will be deleted, and the physical application documents will be destroyed. The retention serves, in particular, as evidence in the event of a legal dispute. If it becomes evident that the data will be required after the 6-month period (e.g., due to a pending or imminent legal dispute), the data will not be deleted until the purpose for further retention no longer applies.

A longer retention period may also occur if you have given your explicit consent (Article 6(1)(a) GDPR) or if statutory retention requirements prevent deletion.

Inclusion in the Applicant Pool
If we do not make you a job offer, there may be the possibility of including you in our applicant pool. If you are accepted, all documents and details from the application will be transferred to the applicant pool to contact you in case of future suitable job openings.

Inclusion in the applicant pool is based solely on your express consent (Article 6(1)(a) GDPR). The submission of consent is voluntary and has no relation to the current application process. The data subject can revoke their consent at any time. In this case, the data will be irrevocably deleted from the applicant pool unless there are legal retention reasons.

The data from the applicant pool will be irrevocably deleted no later than two years after consent has been granted.

10. Liquiditeams

Participants have the option to use the Megamarsch App. This is voluntary and not a requirement for participating in the Megamarsch event. The app is provided by Liquiditeams. To use the app, a user account must be created, and a usage contract is established between the participant and Liquiditeams (you can view their privacy policy here:
https://www.liquidi.team/de/datenschutzerklaerung). We have access to an overview of registered users. This overview contains:

  • The username

  • The device type

  • The country

  • The email address and phone number associated with the user account

  • The time when the account was created/activated/updated and last used

  • The digital awards (stamps) received

  • The forums in which the user is a member

  • Optional information provided by the participant in their profile, such as gender and date of birth

11. WhatsApp

Participants have the option to follow the Megamarsch channel on WhatsApp. The channel is a kind of newsletter on WhatsApp. Like a newsletter, participants can read the messages sent by Megamarsch as an admin and click on links for more information. Participants cannot send messages or respond to messages from Megamarsch within the channel.

Subscribers cannot see who else is subscribed or interacting with the channel. Megamarsch, as the admin, also cannot see the participants’ full phone numbers unless they are saved as a contact. Depending on the participant’s privacy settings, the admin may be able to see the profile picture.

More information can be found here:
https://faq.whatsapp.com/1318001139066835?locale=de_DE
https://www.whatsapp.com/legal/channels-privacy-policy-eea?lang=de.

bottom of page