Data protection regulations
Your trust is hugely valuable to us, and protection of your data is a matter of trust. We respect your private details and privacy. Therefore, we comply with the statutory regulations when processing your personal data.
MPC Münchmeyer Petersen Capital AG
(hereinafter referred to as: the Provider)
for users of the website https://jobs.mpc-careers.de/. With the following declaration, we inform you of the nature, extent and purpose of collection, processing and use of your data in conjunction with visits to our website.
The Provider stores and processes your personal data in compliance with the relevant data protection regulations, in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
Personal data are individual pieces of information about personal or material circumstances of an identified or identifiable natural person. This includes directly personal details such as your forename and surname as well as data that can be combined with other details to identify you as a natural person, e.g. your telephone number.
Cookies are small text files that are stored on your computer. They always have a validity period that can be limited to the end of the user session (session cookies) or can also exist for a longer period (permanent cookies). These permanent cookies remain on your computer and enable the Provider or its partner companies (third-party cookies) to recognise your computer on your next visit. You can configure your browser in such a way that you are informed about the depositing of cookies and can decide on a case-by-case basis whether to accept them, reject them in specific instances or never accept them at all. Refusal to accept cookies may affect the functionality of the website.
Purposes of collection and use of your data
The Provider publishes job advertisements via the website (job portal). As a user of the website, you can apply to the Provider in response to a specific job advertisement.
Furthermore, you can register with the Provider and create an applicant profile. Via the "Subscribe to jobs" function, you can be informed via e-mail of current job advertisements that meet your set criteria. With the “Allow contact from the company” function, you enable the Provider to contact you regardless of your involvement in a specific application process.
The application materials and applicant information provided by you will be processed for the purpose of filling the position on the basis of sentence 1 of Section 26 (1) BDSG.
If you are not applying for a specific position (speculative application, e.g. via “job subscription”), we process your data based on your consent pursuant to sentence 1 of Article 6 (1a) GDPR.
Data stored when using the application form
The Provider collects and uses the following items of personal data if the user completes the application form via the “Apply now” function:
- Form of address (mandatory field)
- Forename and surname (mandatory field)
- E-mail address (mandatory field)
- Telephone/mobile no.
- Application documents (e.g. covering letter, CV, references, photo)
Data stored when using the registration form (job subscription)
The Provider collects and uses the following items of personal data if the user sets up a registration profile via the “Subscribe for jobs” function:
- E-mail address (mandatory field)
- Password (mandatory field)
- Form of address (mandatory field)
- Forename and surname (mandatory field)
- Desired field of activity
- Last degree
- Career stage (e.g. apprentice, high professional)
- Contract type (full/part time)
- Telephone no.
In the event of a rejection, the Provider stores your applicant information no longer than three months after you are notified of the decision to reject your application.
If your application is accepted, the application materials are added to your personnel file and retained for at least the duration of your employment relationship.
If you have provided us with your information as part of a speculative application or by means of a job subscription, we process your data until you have withdrawn your consent.
Data required to conclude an employment contract
We require the mandatory fields in our application portal to review your personal and professional suitability. An employment contract will not be concluded without this information.
Usage data for web analysis
When you access websites, your web browser automatically transmits data for technical reasons. The following items of data are stored separately from other data that you may send:
- Date and time of retrieval
- Access status/http status code
- Data volume transmitted in each case
- Website via which the enquiry is received
- Browser software and software version
- Operating system and version
- IP address (anonymised)
- Randomly generated code number of the cookie or session.
The Provider collects and stores your data under pseudonyms in the context of statistics to measure the reach of its website. When the website is called up, the Provider sends a permanent cookie for web analysis of its telemedia (web-analysis cookie). With the web analysis cookie, the Provider gathers the usage data of the user in pseudonym form, enabling it to identify, for example, how frequently the website is visited by the respective pseudonymised internet user from what regions, and what types of devices the user uses to access the website. Having collected this information, the Provider only stores it on its server in Germany. It is not possible for the Provider to identify the natural person here.
The Provider has implemented the “do not track” process. With this process, the provider of a website or web application can receive notification of the preference that the provider should not create a use profile of the visitor's activities. You can activate the “do not track” process in many modern browsers. Further information on the “do not track” process can be found on the "do not track” website (http://donottrack.us/).
You can prevent setting of a web-analysis cookie by clicking on the link below. A cookie that stops the Provider from collecting your data on future visits to this website is then set:
Use of Google Analytics
The IP address sent from the user's browser in the context of Google Analytics is not combined with other Google data. The user can prevent storage of cookies by configuring the browser software accordingly; however, Google informs you that in this case, it may not be possible to use all functions of this website to their full extent.
To prevent the data generated by the cookie and relating to use of the website (including the IP address) from being sent to Google and prevent Google from processing these data, the user can download and install the browser plugin available via the following link [http://tools.google.com/dlpage/gaoptout?hl=de].
The Provider points out that on the Google Analytics website, the code “gat._anonymizeIp();” has been added in order to ensure anonymised collection of IP addresses (IP masking).
You can prevent data from being sent to Google Analytics by clicking on the following link. A cookie that stops your data from being collected on future visits to this website is then set:
Use of social media plugins
Social plugins are used on the website. Currently, these are plugins of the services Facebook, Twitter, Google+, Xing and LinkedIn. Via these plugins, data including personal data can be sent to the respective service providers and may be used by them. In the case of Facebook, Twitter, Google+ and LinkedIn, data is sometimes sent to a location outside the EU or the EEA.
We do not use the aforementioned social plugins to collect any personal data or any data regarding use of the social plugins. To prevent data from being sent to the respective service providers without the user's knowledge, we use the Shariff solution. This solution ensures that no personal data is initially passed on to the service providers of the individual social plugins when you visit our website. Data can only be sent to the service providers and stored there once you click on one of the social plugins.
Further information on the Shariff solution can be found on the website of Heise Medien Gmbh & Co. KG: http://m.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.
Further information on the purpose and extent of data collection and processing of data by the plug-in provider can be found in the privacy policies of those providers referred to below. These policies also contain further information on your related rights and configuration options to protect your privacy.
Addresses of the respective providers and URL with their privacy information:
- Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo.
- Google Inc., 1600 Amphitheatre Parkway, Mountain View, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de.
- Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94193, USA; https://twitter.com/privacy
- Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy.
- LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy.
Use of encryption technologies
When data is transferred between your computer or mobile device and the Provider's server, the Provider uses the SSL security system (secure socket layer).
This technology is intended to protect your data from being read by unauthorised third parties, and provides a very high standard of security. An icon showing a closed lock in the bottom status bar of your browser indicates that your data is sent in encrypted format.
Your rights as the data subject
You have the right:
- pursuant to Article 15 GDPR to request information on your personal data that is processed by us. In particular, you may request information on the purposes of the processing, on the categories of personal data, on the categories of recipients to whom your personal data have been or will be disclosed, on the envisaged period stored, on the existence of the right to request rectification, erasure, restriction of processing or to object, on the existence of the right to lodge a complaint, on the source of your data if they are not collected by us and on the existence of automated decision-making, including profiling and any meaningful information about the particulars thereof;
- pursuant to Article 16 GDPR to request prompt rectification of inaccurate personal data or completion of your personal data that is stored by us;
- pursuant to Article 17 GDPR to request the erasure of your personal data that are stored by us, provided that processing is not required for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims;
- pursuant to Article 18 GDPR to request the restriction of processing of your personal data, if you contest the accuracy of the data, if the processing is unlawful but you oppose its erasure and we no longer need the data but you require them for the establishment, exercise or defence of legal claims or if you have objected to processing pursuant to Article 21 GDPR;
- pursuant to Article 20 GDPR to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller;
- pursuant to Article 7 (3) GDPR to withdraw the consent you have already granted us at any time. The result of this will be that we are no longer permitted to continue the data processing that was based on this consent in future and
- pursuant to Article 77 to lodge a complaint with a supervisory authority. To do so, you may generally contact the supervisory authority of your habitual residence or place of work or our office headquarters.
Right to object
Provided that your personal data are processed based on the legitimate interests under Article 6 (1f) GDPR, you have the right pursuant to Article 21 GDPR to object to the processing of your personal data to the extent that there are grounds for this relating to your particular situation or if the objection is to direct marketing. In the latter case, you have a general right to object that will be enforced by us without specifying a particular situation.
If you would like to assert your right to withdraw or object, it is sufficient to send an e-mail to firstname.lastname@example.org.