Processing of (personal) data by the entity in charge of the online application process
Privacy Policy
This Privacy Policy aims to inform you about the data processing in connection with our website and related services. The processing of personal data takes place exclusively within the framework of the respective valid legal data protection regulations, in particular the General Data Protection Regulation (hereinafter referred to as "GDPR").General information
Personal data
In accordance with Art. 4 (1) GDPR, “personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”); a natural person is considered as being identifiable, directly or indirectly, in particular by means of an identifier such as a name, an identification number, location data, an online identifier or one or more special characteristics expressing the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person.
Controller
The controller within the meaning of Art. 4 (7) GDPR is
Pioneering GmbH
Carl-Miele-Straße 29
Tel.: +49 5241 89-4011
E-Mail: hello@pioneeringgmbh.com
Collection and processing related to our website
Automatically processed data when visiting
Each time you access our website, your browser automatically transmits data that are stored in the log files of the server. This includes the following data (hereinafter referred to as the "Log file data"):
Information about browser type and browser version;
operating system of the user;
Internet service provider and IP address of the user; and
date and time of the access.
The Log file data is evaluated anonymously in order continuously to improve the website, to adapt the website to the interests of our users and to be able to remedy errors quickly. For these purposes, our legitimate interest in the processing of data is pursuant to Art. 6 (1)(f) GDPR.
In a non-anonymised form, Log file data are used solely to detect malfunctions and to ensure system security, including detection and tracking of improper access attempts and fraud and abuse attempts. The data are stored for 7 to 10 days and then deleted. Log file data, the further storage of which is required for evidence purposes, is not deleted until final clarification of the respective incident has been obtained and may in individual cases be forwarded to the investigating authorities. For these purposes, our legitimate interest in the processing of data is pursuant to Art. 6 (1)(f) GDPR.
Commercial communication
If and insofar as you have given us your consent for marketing and advertising purposes, e.g. you have signed up to the e-mail newsletter etc., or we are otherwise allowed to process your data for the aforementioned purposes on the legal basis of our legitimate interest, the data processing required in the context of establishing contact takes place on the legal basis of your consent, Art. 6 (1)(a) GDPR or our legitimate interest, Art. 6 (1)(f). It might be possible that commercial communication will be provided through our external service providers. These service providers act as instruction-bound processors for us. You may object the processing of your data for these purposes or revoke your consent to us at any time with effect for the future (e.g. by using the unsubscribe link included in the e-mail or write us an e-mail or letter).
Basic
If and to the extent that you have given us your consent, we will process the contact data you have provided (e.g. your e-mail address, name and phone number, if applicable) for the purpose of sending the basic commercial communication through various channels like email or SMS.
As part of the basic commercial communication, we will inform you about news in the Pioneering GmbH, events organized by Pioneering GmbH and customer surveys in which you can take part.
Furthermore, we will process your interests that you may have submitted in the context of the registration for the commercial communication.
The legal basis for this processing is your consent, Art. 6 (1)(a) GDPR. We store the contact data and your consent for the stated purposes for five years after each use.
You can revoke your consent at any time with effect for the future. You can declare your revocation at any later time in writing (Carl-Miele-Str. 29, 33332 Gütersloh) or by email (hello@pioneeringgmbh.com) without giving reasons. In addition, every e-mail sent to you contains an unsubscribe link which use also declares your revocation.
Contact and customer service
Contacting us
Our website lists different ways that you can contact us. Furthermore, you can contact us through our social media presences (e.g. on Facebook or Instagram). If you use these and contact us e.g. by e-mail, we will process the data you provided to us in order to answer your request.
We have a legitimate interest in answering your enquiries. The legal basis for the data processing is Art. 6 (1)(f) GDPR. If the purpose of your request is to conclude a contract, the legal basis is Art. 6 (1)(b) GDPR.
When contacting us, data transmitted to us will be deleted after completion of your request, provided and insofar as we are not obliged to store it for reasons based on commercial and tax law.
User generated content on Social Media
When you tagged us in your content on social media, it might be possible that we ask for your permission to repost your content on our social media channel/s (e.g. on Linkedin and others). We will only use your content after we received your explicit permission. In order to do so, we process your content, your username / accountname on social media, your E-mail address and further information you share with us, e.g. your name. The legal basis is for the processing of your data is your consent, Art. 6 (1) lit. (a) GDPR. The data are stored by us only as long as it is necessary for the fulfilment of the respective purpose, unless otherwise provided for by the applicable legislation. You may revoke your consent at any time with effect for the future.
Job application
If you apply via the PioneeringGmbH application portal or form or otherwise for a position with us and send us application documents, we will process the personal data you provide in this context only for the purpose of the application process.
Insofar as you have applied for an advertised position, the documents will be automatically deleted 180 days after completion of the advertising procedure, provided deletion does not conflict with any legitimate interests. At any time you have the option of requesting the deletion of your application prior to expiry of the scheduled retention periods. In the case of a successful application, the transmitted data will be stored for the purpose of the employment relationship in compliance with the legal requirements.
If you have applied for employment with another Miele Group company, we will forward your application to the respective company for the purpose of deciding on the employment relationship.
The data transmitted as part of your application will be processed by Personio GmbH, which offers personnel administration and applicant management software (https://www.personio.de/impressum/). In this respect, Personio acts for us as a processor bound by instructions in accordance with Art. 28 DS-GVO. The basis for the processing is a contract for order processing between us as the controller and Personio.
As far as we process your data for the decision on the establishment of an employment relationship, the legal basis is Art. 26 (1)(1) of the German Federal Data Protection Act.
In all other cases, the legal basis for storing your application data is your consent in accordance with. Art. 6(1) lit. (a) GDPR.
Transfer of personal data
Within the context of the data processing described in this privacy notice, it might be possible that we transfer personal data to the following categories of recipients (in addition to the recipients expressly stated in this privacy notice):
authorized agents and other consultants (e.g. attorneys, tax accountants, auditors);
service providers (e.g. marketing agencies, IT service providers);
companies of the Miele Group (https://www.miele.com/en/com/subsidiaries-2156.htm);
insurance companies; und
state agencies and governmental bodies.
We only transfer personal data to third parties insofar it is required to fulfil our contractual obligations, in case we have or the respective third party has a legitimate interest in processing the personal data or if you have given consent to the transfer. Furthermore, we only transfer personal data to third parties if and insofar we are obligated to do so according to applicable law, regulatory action or court order.
Location of data processing
Unless otherwise expressly stated in this privacy policy, all personal data collected from you in connection with your use of Pioneering GmbH services are generally stored and processed on servers within the territory of the European Union. However, it might be possible that your data will be transferred and processed outside the territory of the European Union. In such event, your data will be secured by appropriate safeguards as set forth in Art. 46 (2) GDPR, in particular, but without limitation to, by the use of the Standard Contractual Clauses for the transfer of data between EU and non-EU countries (which can be found here) and further additional safeguards.
Data subject rights
Data subjects have various rights under GDPR. These include in particular:
Right to information: According to Art. 15 GDPR, you can request a confirmation as to whether personal data concerning you is being processed by us. If such processing is available, you may also request further information about the processing from us.
Right to rectification: In accordance with Art. 16 GDPR, you are entitled to rectification and/or completion if the processed personal data concerning you is incorrect or incomplete.
Right to restriction of processing: You may request, pursuant to Art. 18 GDPR, that the processing of your personal data be restricted, as far as one of the following conditions is given:
the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;
the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims;
the data subject has objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
Right to erasure: According to Art. 17 GDPR, you also have the right under certain circumstances to demand the deletion of your personal data stored about you, as far as one of the following conditions is given:
the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
the data subject withdraws consent on which the processing is based according to point (a) of Article 6(1), or point (a) of Article 9(2), and where there is no other legal ground for the processing;
the data subject objects to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2);
the personal data have been unlawfully processed;
the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
the personal data have been collected in relation to the offer of information society services referred to in Article 8(1).
Right to data portability: In accordance with Art. 20 GDPR, you are also entitled to receive the personal data that you have provided in a structured, common and machine-readable format and to transmit it without any obstruction from us to another controller.
To assert the aforementioned rights, please contact us stating your concern, your name and, if applicable, your customer number. Please address your request to the contact details given in sections 1.2 and 1.3.
Right of appeal
You have the right to complain about the handling of your personal data by a data protection authority.
The for Pioneering GmbH responsible data protection authority is the Landesbeauftragte für den Datenschutz und Informationssicherheit in Nordrhein-Westfalen, Postfach 20 04 44 in 40102 Düsseldorf.
Please find further information here: https://www.ldi.nrw.de
Right of objection
If your personal data on the basis of legitimate interests are processed pursuant to Art. 6(1)(f) GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided there are reasons for this arising from your particular situation, Pioneering GmbH cannot demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or if your objection is based on being targeted to personal advertising. In the latter case, you have a general right of objection, which is implemented by us without any particular situation being specified.
Please address your request to the contact details given in sections 1.2 and 1.3.