An Overview of Data Protection
Data Collection on our Website
Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator’s contact details can be found in the website’s required legal notice.
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyse how visitors use the site.
What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.
Additionally, you have the right to request the limitation of processing of personal data under certain circumstances. For details please see „Right of limiting the Processing of Data”.
2. General Information and mandatory Information
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
Notice concerning the Party responsible for this Website
The party responsible for processing data on this website is:
Thiele & Associates Beratung und Beteiligungen AG
Südliche Münchner Straße 55
Telephone: +49 89 9974 09380
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).
3. Data Collection on our Website
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.
We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
Inquiry per Email, Telephone or Telefax
If you contact us via email, telephone or telefax, your inquiry including all personal data (name, request) are stored and processed for the purpose of processing your request. We do not transmit these data to third persons and use these data not without your approval for other purposes than of the treatment of your inquiry.
Your data is processed based on article 6 (1) (b) DSGVO if your request relates to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases the processing of data is based on your voluntary agreement (article 6 (1) (a) DSGVO) and/or our justified interests (article 6 (1) (f) DSGVO), as we have a justified interest in the effective processing of requests submitted to us.
The data submitted by you will remain with us as long as you request the deletion, you revoke your consent to the storage or the purpose itself is no longer pursued (e.g. after finalization of processing of your request). Mandatory statutory regulations – in particular legal storage periods – remain unaffected.
Data Processing for Applications
You can send us applications for jobs in our advisory firm via our website and the contact details provided there. If you submit personal data to us in this manner or in any other way, we process your data to assess, process and reply to your application and, if necessary, to prepare your employment.
The legal basis for processing data is Article 6 para. 2 DSGVO, § 26 para. 1 BDSG (new) which permits the processing of data for the decision on the establishment, for the establishment and the implementation of employment relationships.
SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
Statutory retention periods are used as the criteria for how long our company archives personal information. After the expiration of the legal retention period, such data is routinely deleted if it is no longer required to fulfil an agreement or initiate a contract. If the purpose for which data was saved is eliminated, or if the archiving term specified by European regulators and issuing bodies expires, personal information is routinely blocked or deleted according to statutory regulations.
4. Plugins and Tools
Google Web Fonts
This page uses so-called Web Fonts for the uniform display of fonts. The Google Fonts are locally installed. A connection to servers of Google does not happen.
Links to Third-Party Websites
You will find links to third-party websites on our homepage. The respective site operator is responsible for data processing on these websites. Any data processing on those pages begins as soon as you click on the respective link or follow the URL stored there.
Our website contains links to our global network partner Pandion Partners. The provider is Pandion Partners, S.L., c/o CU4TROELE, Alda. Urquijo, 45 – 1º izda., 48011 Bilbao, Spain. The purpose and scope of data collection and the further processing and use of the data by Pandion Partners as well as the relevant rights can be found in Pandion Partner’s data protection information: https://www.pandionpartners.com/private-policy.
Our website contains links to Xing. The provider is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany. The purpose and scope of data collection and the further processing and use of the data by XING as well as the relevant rights can be found in XING’s data protection information: https://privacy.xing.com/en.
Our website contains links to LinkedIn. The provider is LinkedIn AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. The purpose and scope of data collection and the further processing and use of the data by LinkedIn as well as the relevant rights can be found in LinkedIn’s data protection information: https://www.linkedin.com/legal/privacy-policy.
5. Rights of the Persons affected
Every person affected, has the following rights (article 15-21 DSGVO). These rights include:
- Right of access, article 15 DSGVO
- Right of correction, article 16 DSGVO
- Right of deletion, article 17 DSGVO
- Right of limiting the processing of data, article 18 DSGVO
- Right of data portability, article 20 DSGVO
- Right od revocation, article 21 and 22 DSGVO
Apart from that, every person affected has the right to file complaints with regulatory authorities according to article 77 DSGVO.
Information, correction, blocking and deletion
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.
Right of limiting the Processing of Data
You have the right to request the limitation of processing your data. For this purpose, you can contact us at any time at the address given in the imprint. The right of limiting the processing of data shall exist in the following cases:
- If you deny the accuracy of your personal information stored with us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data is unlawful, you may request the restriction of data processing instead of deletion.
- If we no longer need your personal information but you need it for the purpose of exercising, defending or enforcing legal claims, you have the right to demand that your personal data be restricted instead of being deleted.
- If you have filed an objection pursuant to Art. 21 (1) DSGVO, a balance must be made between your interests and ours. As long as it is not clear whose interests prevail, you have the right to demand the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, these data may – besides the storage of the data – only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for important public interest of the European Union or a Member State.
Right to Data Portability
You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
Right to file Complaints with Regulatory Authorities
If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. An informal message by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and direct mailing (Article 21 DSGVO)
If your personal data is processed for the purpose of direct mailings, you have the right to object at any time to the processing of your personal data for the purpose of such marketing activities; this also applies to profiling insofar as it is associated with such direct mailings. If you object, your personal data will then no longer be used for the purpose of direct marketing (Objection according to Art. 21 (2) DSGVO).