Privacy policy

[borlabs-cookie type=”btn-cookie-preference” title=”Adjust settings” /]

I. Name and address of the controller

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is the:

Textilakademie NRW gGmbH
Rheydter Straße 329
41065 Mönchengladbach
E-mail: info(at)ds-quadrat.de
Website: www.ds-quadrat.de/
E-mail: info(at)textilakademie.de
Web: www.textilakademie.de

II Contact details of the data protection officer

Textile Academy NRW gGmbH
– Data Protection Officer –
Rheydter Street 329
41065 Mönchengladbach
E-mail: datenschutz@textilakademie.de

III General information on data processing

  1. Scope of the processing of personal data
    We, Textilakademie NRW gGmbH (hereinafter: Textilakademie), process the personal data of our users only to the extent necessary to provide a functional website and our content and services. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.
  2. Legal basis for the processing of personal data
    Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
    Art. 6 para. 1 lit. b GDPR serves as the legal basis for the processing of personal data necessary for the performance of a contract to which the data subject is a party. This also applies to processing operations that are necessary to carry out pre-contractual measures.
    Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
    If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.
  3. Data erasure and storage duration
    The personal data of the data subject will be erased or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or erased if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

IV. Provision of the website and creation of log files

  1. Description and scope of data processing
    Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
    The following data is collected:
    – IP address of the requesting computer,
    – date and time of access,
    – name and URL of the retrieved file,
    – website from which the access is made (referrer URL),
    – browser used and, if applicable, the operating system of your computer as well as the name of your access provider. This data is not stored together with other personal data of the user.
  2. Legal basis for data processing
    The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR. The provision of personal data is partly in our legitimate interest and partly required by law (see point 5, second paragraph). It is not possible not to provide the data.
  3. Purpose of data processing
    The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session and is stored in log files to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. The data is not analyzed for marketing purposes in this context, which also constitutes our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.
  4. Categories of recipients of personal data and data processing outside the European Union
    We do not pass on personal data to third parties unless we are obliged to do so by law or have obtained consent to do so, with the exception of the involvement of service providers, e.g. for hosting the website, which we select carefully, particularly with regard to data protection and data security, and for which we have taken all measures required by data protection law for permissible data processing. Data processing outside the European Union does not take place.
  5. Duration of storage
    The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. If the data is stored in log files, it is anonymized by the provider after seven days. After the seven days, the stored IP address for service providers is shortened by the last three digits, so that user identification is no longer possible for the Textilakademie. Only the provider as a telecommunications provider is obliged to do this in accordance with § 113 b TKG,

    1. The Internet protocol address assigned to the subscriber for Internet use,
    2. a unique identifier for the connection used to access the Internet and an assigned user ID,
    3. Date and time of the start and end of Internet use at the assigned Internet Protocol address, stating the underlying time zone

for a period of ten weeks.

Additional storage may be possible in the prosecution of misdemeanors or criminal offenses.

  1. Objection and removal options
    The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, the user has no option to object.

V. Use of cookies

  1. Description and scope of data processing
    Our website uses cookies. Cookies are small data packets that are stored on your computer’s hard disk when you visit websites. When a user accesses a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.
  2. Legal basis for data processing
    The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR. The provision of personal data is not required by law or contract and does not serve to conclude a contract. If you do not give your consent, you will not be able to use the website in English.
  3. Purpose of data processing
    The purpose of using technically necessary cookies is to improve the use of the website for users. For this purpose, it is necessary for the browser to be recognized even after a page change. We require cookies for the following applications:
    – Language settings
    – Saving the value of whether cookies are accepted. The user data collected by the technically necessary cookies are not used to create user profiles.
  4. Categories of recipients of personal data and data processing outside the European Union
    We do not pass on personal data to third parties unless we are required to do so by law or have your consent to do so. An exception to this is the integration of the service provider that enables the hosting of the website. Data processing outside the European Union does not take place.
  5. Duration of storage, objection and removal options
    Cookies are stored on the user’s computer and transmitted by it to our website. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically, for example always after closing the browser. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

VI Applications

  1. Description and scope of data processing
    We post job vacancies on our website for which the user can apply. The user has various options for applying for the vacancies:
    – by post
    – by e-mail. The data that the user sends us to process their application is at their discretion. We ask the user not to mention any special categories of personal data within the meaning of Art. 9 GDPR in the application, unless they are relevant to the application (e.g. limited ability to work).
  2. Legal basis for data processing
    The legal basis for the processing of data is Section 26 (1) BDSG, as the processing is necessary for the decision on the establishment of an employment relationship. The same applies analogously to postal mailings. The provision of personal data in the application process is necessary for the handling of an orderly application process with the aim of concluding an employment relationship with one of the applicants. Without this provision, we will not be able to consider you in the selection process for open positions with us.
  3. Purpose of data processing
    The purpose of processing the data is to decide whether to establish an employment relationship with us. The data will be processed exclusively for this purpose and will not be passed on to third parties under any circumstances. In addition, they are treated confidentially and specially protected by technical and organizational measures.
  4. Categories of recipients of personal data and data processing outside the European Union
    We do not pass on personal data to third parties unless we are required to do so by law or have your consent to do so.
    This does not apply to the integration of the service provider that enables the hosting of the website. Data processing outside the European Union does not take place.
  5. Duration of storage
    The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.
    In the event of a rejection, the data will be deleted no later than six months after the rejection is sent in order to grant the user the rights under the General Equal Treatment Act (AGG).
    In the event of recruitment, the application data will be transferred to the personnel file and archived there in accordance with the retention periods.
  6. Right of objection and removal
    The user has the right to assert the rights listed in point VIII “Rights of the data subject” against Textilakademie gGmbH at any time, provided that the rights of other data subjects or statutory retention periods do not conflict with these claims.

VII. Newsletter

  1. Description and scope of data processing
    In order to inform seminar participants who have already attended a Textilakademie seminar about new seminar offers, we send the relevant information by e-mail at irregular intervals. We have received the contact details directly from the seminar participants.
  2. Legal basis for data processing
    The legal basis for the processing of data is Art. 6 para. 1 lit. f GDPR. The processing of personal data is in our legitimate interest, which is the promotion of the economic activity of the Textile Academy. The provision of personal data is not required and the recipients can object to receiving it at any time.
  3. Purpose of data processing
    The purpose of data processing is to send seminar offers from the Textile Academy. The data is processed exclusively for this purpose. In addition, they are treated confidentially and specially protected by technical and organizational measures.
  4. Categories of recipients of personal data and data processing outside the European Union
    We generally do not pass on personal data to third parties unless we are required to do so by law or have your consent to do so. Exceptions to this are the integration of the service provider that enables the hosting of the website (Strato AG) and our service provider Brevo (formerly Sendinbliue), which is responsible for mailing. Data processing outside the European Union does not take place.
  5. Service provider Brevo (formerly Sendinblue)
    We work with the service provider Brevo (https://www.brevo.com/de/) to send out our newsletter. The e-mail addresses of the recipients are stored in our account for the purpose of sending the newsletter. We have concluded a corresponding data processing agreement with Brevo for the transfer of data.
  6. Duration of storage
    The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected or the recipients have objected to the processing.
  7. Right of objection and removal
    The user has the right to assert the rights listed in point VIII “Rights of the data subject” against Textilakademie gGmbH at any time, provided that the rights of other data subjects or statutory retention periods do not conflict with these claims.

 

VIII Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

  1. Right to information
    You can request information from the controller at any time as to whether and how your personal data is processed by us, taking into account the requirements of Art. 15 GDPR.
  2. Right to rectification
    Subject to the requirements of Art. 16 GDPR, you have a right to rectification and/or completion vis-à-vis the controller if the processed personal data concerning you is incorrect or incomplete. The controller must carry out the rectification without undue delay.
  3. Right to restriction of processing
    You have the right to obtain from the controller restriction of processing in accordance with the requirements of Art. 18 GDPR.
  4. Right to erasure
    You have the right to obtain from the controller the erasure of personal data in accordance with the requirements of Art. 17 GDPR.
  5. Right to information
    If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.you have the right to be informed of these recipients by the controller in accordance with Art. 19 GDPR.
  6. Right to data portability
    Subject to the requirements of Art. 20 GDPR, you have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used and machine-readable format.
  7. Right to object
    Subject to the requirements of Art. 21 GDPR, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Art. 6(1) GDPR, including profiling based on those provisions.
  8. Right to withdraw your declaration of consent under data protection law
    You have the right to withdraw your declaration of consent under data protection law at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
  9. Right to lodge a complaint with a supervisory authority
    Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Art. 78 GDPR.State Commissioner for Data Protection and Freedom of Information
    Nordrhein-Westfalen
    Postfach 20 04 44
    40102 Düsseldorf
    Tel.: 0211/38424-0
    Fax: 0211/38424-10
    E-Mail: poststelle@ldi.nrw.de

IX. Up-to-dateness and amendment of this privacy policy

This privacy policy is currently valid and was last updated in March 2020.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.