Privacy Policy

Information on data protection for JOST-Werke

(Status 25.05.2018)

Information on data protection of JOST-Werke regarding our processing under Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR)

We take data protection very seriously and inform you herein how we process your data and what claims and rights you are entitled to under data protection regulations. Applicable from 25 May 2018.

1. Office responsible for data processing and contact data:
JOST-Werke Deutschland GmbH
Siemensstr.2
D-63263 Neu-Isenburg
+49 (0)6102 295 0
jost-info@jost-world.com

Contact data of our data-protection officer:
JOST-Werke Deutschland GmbH
Datenschutzbeauftragter
Siemensstr.2
D-63263 Neu-Isenburg
datenschutz@jost-world.com

2. Purposes and legal foundations upon which we process your data

We process personal data in accordance with the stipulations of the General Data-Protection Regulation (GDPR), the German Federal Data-Protection Act (Bundesdatenschutzgesetz – BDSG) and other applicable data-protection provisions (details are provided in the following). The details of which data are processed and how they are used depends largely on the services requested or agreed in each case. Further details or additions for the purposes of data processing can be found in the respective contract documents, forms, a declaration of consent and/or other information provided to you (e. g. in the context of the use of our website or our terms and conditions). In addition, this data protection information may be updated from time to time, as you may find out from our website www.jost-world.com.

2.1 Purposes pursuant to fulfilment of an agreement or pre-contractual measures (Art. 6, section 1 b of the GDPR)

The processing of personal data is carried out in order to carry out our contracts with you and the execution of your orders as well as to carry out measures and activities within the framework of pre-contractual relations. This essentially includes contract-related communication with you, the verifiability of transactions, orders and other agreements as well as quality control by means of appropriate documentation, goodwill procedures, measures to control and optimize business processes as well as the fulfilment of general duties of care, control and supervision by affiliated companies (e. g. Parent company); statistical evaluations for corporate management, cost recording and controlling, reporting, internal and external communication, emergency management, accounting and tax assessment of operational services, risk management, assertion of legal claims and defence in the event of legal disputes; ensuring IT security ((inter alia system and plausibility tests) and general security, including building and plant security, securing and exercising domestic authority (e. g. by means of access controls); guaranteeing the integrity, authenticity and availability of data, preventing and investigating criminal offences; control by supervisory bodies or supervisory authorities (e. g. auditing).

 

 

2.2 Purposes within the framework of a legitimate interest on our part or of third parties (Art. 6, section 1 f of the GDPR)

Above and beyond the actual fulfilment of the (pre-) agreement, we process your data whenever this is necessary to protect legitimate interests of our own or of third parties, in particular for the following purposes:

  • advertising or market and opinion research, as far as you have not objected to the use of your data;
  • obtaining information and exchanging data with credit agencies where this goes beyond our economic risk;
  • the examination and optimization of processes for needs analysis;
  • the further development of services and products as well as existing systems and processes;
  • the disclosure of personal data within the framework of due diligence in the course of company sale negotiations;
  • for comparison with European and international anti-terrorist lists, insofar as this goes beyond the legal obligations;
  • the enrichment of our data, e. g. by using or researching publicly accessible data;
  • statistical evaluations or market analysis;
  • of benchmarking;
  • the assertion of legal claims and defence in legal disputes which are not directly attributable to the contractual relationship;
  • the restricted processing of data, if a deletion is not possible or only possible with disproportionately high effort due to the special type of storage;
  • the development of scoring systems or automated decision-making processes;
  • the prevention and investigation of criminal offences, if not exclusively for the fulfilment of legal requirements;
  • building and plant security (e. g. by means of access control and video surveillance), insofar as this goes beyond the general duties of care;
  • internal and external investigations, safety reviews;
  • any monitoring or recording of telephone conversations for quality control and training purposes;
  • Preservation and maintenance of certifications of a private-law or official government nature;
  • the seizure and exercise of domestic authority by means of appropriate measures as well as video surveillance for the protection of our customers and employees as well as for securing evidence in the event of criminal offences and their prevention.

 

2.3 Purposes within the framework of your consent (Art. 6, section 1 a of the GDPR)

Your personal data can also be processed for certain purposes (e.g. use of company communication systems for private purposes; photographs/videos of you for publication in the Intranet/Internet) including as a result of your consent. As a rule, you can revoke this consent at any time. This also applies to the revoking of declarations of consent that were issued to us before the GDPR went into effect, i.e. prior to 25 May 2018. You shall be separately informed about the consequences of revocation or refusal to provide consent in the respective text of the consent.

Generally speaking, revocation of consent only applies to the future. Processing that takes place prior to consent being issued is not affected by such and remains lawful

 

2.4 Purposes relating to adherence to statutory requirements (Art. 6, section 1 c of the GDPR) or in the public interest (Art. 6, section 1 e of the GDPR)

Just like any actor which takes part in business life, we are also subject to a large number of legal obligations. These are primarily statutory requirements (e.g. commercial and tax laws), but also if applicable supervisory law or other requirements set out by government authorities. The purposes of processing may also include identity and age checks, prevention of fraud and money laundering (e.g. comparisons with European and international anti-terror lists),  compliance with control and notification obligations under tax law as well as the archiving of data for the purposes of data protection and data security as well as for purposes of audits by tax advisors/auditors, fiscal and other government authorities. In addition, it may be necessary to disclose personal data within the framework of official government/court measures for the purposes of collecting evidence, law enforcement and criminal prosecution or the satisfaction of civil law claims.

3. The categories of data that we process as long as we do not receive data directly from you, and its origin

If necessary for the contractual relationship with you and the activities performed by you, we may process data which we lawfully receive from other offices or other third parties (e.g. quality assessment or complaints by customers/suppliers/consumers). In addition, we process personal data that we have lawfully collected, received or acquired from publicly accessible sources (such as, for example, commercial registers and association registers, civil registers, the press, Internet and other media) if such is necessary and we are allowed to process this data in accordance with statutory provisions.

 

Relevant personal data categories may in particular be:

  • personal data (name, date of birth, place of birth, nationality, marital status, occupation/trade and comparable data)
  • contact data (address, e-mail address, telephone number and similar data)
  • address data (population register data and comparable data)
  • payment confirmation/confirmation of cover for bank and credit cards
  • information about your financial situation (creditworthiness data including scoring, i. e. data for assessing the economic risk)
  • customer history
  • data about your use of the telemedia offered by us (e. g. time of access to our websites, apps or newsletter, clicked pages/links of us or entries and comparable data)
  • video data

4. Recipients or categories of recipients of your data

At our company, your data is received by those internal offices or organisational units that need such to fulfil our contractual and statutory obligations or that require such data within the framework of processing and implementing our legitimate interests.

Your data is disclosed/passed on to external offices and persons solely

  • in connection with the execution of the contract;
  • for purposes where we are obligated or entitled to give information, notification or forward data (e.g. employer’s liability insurance association, health insurance schemes, fiscal authorities) in order to meet statutory requirements or where the forwarding of data is in the public interest (see number 2.4);
  • to the extent that external service-provider companies commissioned by us process data as contract processors or parties that assume certain functions (e.g. external data centres, support and maintenance of IT applications, archiving, document processing, call centre services, compliance services, controlling, data screening for anti-money laundering purposes, data validation and data protection. plausibility check, data destruction, purchasing/procurement, customer administration, lettershops, marketing, media technology, research, risk controlling, billing, telephony, website management, auditing services, credit institutions, printing plants or companies for data disposal, courier services, logistics);
  • as a result of our legitimate interest or the legitimate interest of the third party within the framework of the purposes cited under number 2.2 (e.g. to government authorities, credit agencies, collection agencies, attorneys, courts of law, appraisers, companies belonging to company groups and bodies and control instances) ;
  • if you have given us consent to transmit data to third parties.

We shall moreover refrain from transmitting your data to third parties if we have not informed you of such separately. If we commission service providers within the framework of processing an order, your data will be subject there to the security standards stipulated by us in order to adequately protect your data. In all other cases, recipients may only use the data for purposes for which the data has been sent to them.

5. Length of time your data is stored

We process and store your data for the duration of our business relationship. This also includes the initiation of a contract (pre-contractual legal relationship) and the execution of a contract.

Above and beyond this, we are subject to various retention and documentation obligations that emanate inter alia from the German Commercial Code (HGB) and the German Tax Code (AO). The periods and deadlines for retention and/or documentation stipulated therein are up to ten years beyond the end of the contractual relationship or the pre-contractual legal relationship.

Furthermore, special statutory provisions may require longer retention such as for example the preservation of evidence in connection with statutory time-barring provisions (statute of limitations). Under §§ 195 ff. of the German Civil Code (BGB), the regular time-barred period is three years, but time-barred periods of up to 30 years may also be applicable.

Your application documents will be returned to you in the original after six months at the latest if you are not hired. Electronic data will be deleted accordingly after six months. If you have agreed to be included in our talent pool, we will also store your data in order to consider your application data for other vacancies in our company. For this purpose, we store your data for 12 months and then delete it. The legal basis is your consent, Art. 6 para. 1 a GDPR.

If the data is no longer required to meet contractual or statutory obligations and rights, it is regularly deleted unless its further processing – for a limited period – is necessary to fulfil the purposes listed under number 2.2 due to an overriding legitimate interest. Such an overriding legitimate interest is deemed to be the case, for example, if it is not possible to delete the data as a result of the special type of storage or such is only possible at an unreasonably great expense and processing for other purposes is excluded by appropriate technical and organisational measures.

6. Processing of your data in a third country or by an international organization

Data is transmitted to offices in countries outside the European Economic Area EU/EEA (so-called third states) whenever such is necessary to meet a contractual obligation towards you (e.g. if you are despatched to another country), such is required by law (e.g. notification obligations under tax law), such is in the legitimate interest of us or a third party or you have issued us your consent to such.

At the same time, your data may be processed in a third country including in connection with the involvement of service providers within the framework of the processing of the order. If no decision has been issued by the EU Commission regarding the presence of a reasonable level of data protection for the respective country, we warrant that your rights and freedoms will be reasonably protected and guarantied in accordance with EU data-protection requirements through contractual agreements to this effect. We will provide you with detailed information on request.

You can request information on the suitable or reasonable guarantees and the possibility, how and where to receive a copy of these from the company data-protection officer or the human resources department in charge of you.

7. Your data-protection rights

If certain conditions are met, you can assert your data-protection rights against us.

  • Thus, you have the right to receive information from us on the data stored on you in accordance with the rules of Art. 15 of the GDPR (if applicable with restrictions in accordance with § 34 of the German Federal Data-Protection Act (BDSG))
  • If you so request, we shall correct data stored on you in accordance with Art. 16 of the GDPR if such data is incorrect or flawed.
  • If you so desire, we shall delete your data in accordance with the principles of Art. 17 of the GDPR if such is not prevented by other statutory provisions (e.g. statutory retention obligations or the restrictions laid down in § 35 of the German Federal Data-Protection Act (BDSG)) or an overriding interest on our part (for example, to defend our rights and claims)
  • Taking into account the preconditions laid down in Art. 18 of the GDPR, you can demand that we restrict the processing of your data .
  • Furthermore, you can file an objection to the processing of your data in accordance with Art. 21 of the GDPR, as a result of which we have to stop processing your data. This right of objection only applies, however, if very special circumstances characterise your personal situation, whereby the rights of our company may run counter to your right of objection.
  • You also have the right to receive your data in accordance with the arrangements laid down in Art. 20 of the GDPR in a structured, commonplace and machine-readable format or transmit such data to a third party.
  • You furthermore have the right to revoke consent that has been issued to us to process personal data at any time effective into the future (see number 2.3).
  • You are in addition entitled to file a complaint with a data-protection supervisory authority (Art. 77 of the GDPR). We recommend, however, to first always send a complaint to our data-protection officer.

Whenever possible, your applications for the exercise of your rights should be sent in writing to the address stated above or addressed directly to our data-protection officer.

8. Scope of your obligations to provide us your data

You only need to provide data that is necessary for the commencement and performance of the business relationship or for a pre-contractual relationship with us or the collection of which we are required by law. Without this data, we are generally not able to conclude the agreement or continue to perform such. This may also relate to data that is required later within the framework of the contractual relationship. If we request data from you above and beyond this, you shall be informed about the voluntary nature of the information separately.

9. Presence of an automated decision made in individual cases (including profiling)

We do not use any purely automated decision-making procedure as set out in Article 22 of the GDPR. If we do institute such a procedure in individual cases in the future, we shall inform you pursuant hereto separately if this is required by law.

Under certain circumstances, we may process your data in part with the aim of evaluating certain personal aspects (profiling).

In order to provide you with targeted information and advice on products, we may use evaluation tools. These enable a needs-oriented product design, communication and advertising including market and opinion research.

Such procedures can also be used to assess your solvency and creditworthiness as well as to combat money laundering and fraud. “Score values” can be used to assess your creditworthiness and creditworthiness. In the case of scoring, the probability is calculated using mathematical methods with which a customer will meet his payment obligations in accordance with the contract. Such score values thus support us, for example, in assessing our creditworthiness, decision-making in the context of product deals and are incorporated into our risk management. The calculation is based on mathematically and statistically recognised and proven methods and is based on your data, in particular income, expenditure, existing liabilities, profession, employer, length of service, experience from the previous business relationship, repayment of previous loans in accordance with the contract and information from credit agencies.

Information on nationality and special categories of personal data according to Art. 9 GDPR are not processed.

Information on your right of objection under Art. 21 of the GDPR

1. You have the right to file an objection at any time against processing of your data which is performed on the basis of Art. 6, section 1 f of the GDPR (data-processing on the basis of a weighing out of interests) or Art. 6, section 1 e of the GDPR (data-processing in the public interest). The precondition for this, however, is that there are grounds for your objection emanating from your special personal situation. This also applies to profiling that is based on this purpose in the meaning of Art. 4, no. 4 of the GDPR.

If you file an objection, we shall no longer process your personal data unless we can demonstrate compelling reasons warranting protection for the processing that outweigh your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

2. We will also use your personal data in order to perform direct advertising. If you do not want to receive any advertising, you have the right to file an objection to such at any time. This also applies to the profiling to the extent that it is connected with such direct advertising. We shall respect this objection with effect into the future.

We shall no longer process your data for the purpose of direct advertising if you object to processing for this purpose.

The objection can be filed without adhering to any form requirements and should if possible be sent to

JOST-Werke Deutschland GmbH
Datenschutzbeauftragter

Siemensstr. 2
63263 Neu-Isenburg
E-Mail: datenschutz@jost-world.com

Our privacy policy and the information on data protection about our data processing according to article 13, 14 and 21 GDPR may change from time to time. All changes will be published on this page. Older versions can be viewed in an archive

Supplementary privacy policy for the use of the website

1. General information
Protecting your personal data is very important to us. We therefore adhere strictly to the rules of the Data Protection and Telemedia Act. When dealing with your personal data, our staff are obligated to comply with all relevant data protection regulations.

This privacy statement serves to inform you about the type, scope and purpose of the collection, processing and use of personal data, and about your rights. The term “personal data” is defined in the EU’s General Data Protection Regulation (EU-GDPR) as all information relating to an identified or identifiable natural person. This includes, for example, a person’s name, address, telephone number and email address.

2. Collection, processing and use of personal data
JOST only collects, processes and uses personal data to the extent permitted or required by the EU-GDPR or another legal provision or as authorised by the person concerned. It is generally possible to use our website without entering any personal data. Where personal data (for example name, address or email address) is collected on our website, this is always on a voluntary basis.

Please note that unencrypted data transmission on the Internet (e.g. when communicating via email) may entail security risks. It is not possible to protect data completely against third-party access.

3. Cookies
Our website uses cookies. A cookie is a text file that is sent and stored on your hard drive when you visit a website. If you, the website user, access our website’s server again, the browser on your computer sends the cookie it received back to the server. The server can analyse the information it receives through this process in different ways. For example, cookies can be used to manage the advertisements displayed to you and help simplify the navigation on a website. If you, as the user of the website, would like to block cookies, you can do this by changing the local settings in your browser, i.e. the program on your device you use to open and display websites (e.g. Internet Explorer, Mozilla Firefox, Opera or Safari).

4. Registration on our website
(online recruiting, job newsletter, supplier portal)

The following personal data is collected when you register on our website: your name/company, address, telephone number and email address. Once registered, you can log in to our website at any time using your user name and password. Registering on our website enables you to modify or delete your personal data. The data you enter is used solely for the purposes you originally defined.

5. Transmission of data to third parties
Your data is not passed on to third parties without your explicit consent.

6. Storage of data
We only store data for as long as legally required or as needed to process your enquiry. Once this purpose has been fulfilled or the period has expired, the relevant data is blocked or deleted.

7. Information, correction and objection
You have the right to request information about the personal data we have saved and to have us correct or delete it. You can also retract your permission for the future use of your data at any time, or request that your data is transmitted to another service provider. All it takes is an email to the following address: datenschutz@jost-world.com. You also have the right to file a complaint with the data protection supervisory authority.

8. Advertising
The website operators hereby expressly object to third parties using the contact data disclosed in the legal notice for the purpose of distributing unsolicited advertising and information material. The website operators expressly retain the right to take legal steps where unsolicited advertising information is sent (e.g. spam emails).

9. Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland (“Google”).

Google Analytics uses cookies, which are text files saved on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) is transmitted to and stored by Google on servers in the United States.

However, activating IP anonymisation on this website means that Google will first shorten your IP address within member states of the European Union or other states party to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address is transmitted to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to analyse your use of the website, compile reports on website activity and provide the website operator with further services in connection with use of the website and the Internet in general. Google will not link the IP address transmitted by your browser as part of Google Analytics with any other data.

You can block the use of cookies by selecting the corresponding settings on your browser. However, please note that if you do this, you may not be able to use the full functionality of this website. You can also prevent the data generated by the cookie and related to your use of the website (incl. your IP address) from being recorded and/or processed by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.

As an alternative to the browser plug-in or in browsers on mobile devices, please click on the link below to place an opt-out cookie, which will prevent recording by Google Analytics on this website in future. (This opt-out cookie only works in this browser and for this domain. If you delete your cookies in this browser, you will need to click the link again.): Deactivate Google Analytics See also https://developers.google.com/analytics/devguides/collection/gajs/?hl=de#disable

You can find more information on this at https://tools.google.com/dlpage/gaoptout?hl=en-GB and https://support.google.com/analytics/answer/6004245?hl=en (general information on Google Analytics and data protection). Please note that, on this website, the code “gat._anonymizeIp();” has been added to Google Analytics in order to guarantee anonymised recording of IP addresses (known as IP masking).

10. Changes to our privacy statement
JOST retains the right to make adjustments and amendments to the privacy statement in order to ad-here to current legal requirements. The latest version of our privacy statement is available on our website at all times.

11. Responsible body
JOST-Werke Deutschland GmbH
Siemensstr. 2
63263 Neu-Isenburg

12. Data protection officer at JOST Werke
Data protection officer
JOST-Werke Deutschland GmbH
Siemensstr. 2
63263 Neu-Isenburg
E-Mail: datenschutz@jost-world.com

Data protection information for applicants

1. Body responsible for data processing and contact details

Responsible body in terms of data protection law:

JOST-Werke Deutschland GmbH
Siemensstr.2
D-63263 Neu-Isenburg
+49 (0)6102 295 0

jost-info@jost-world.com

Contact details of our data protection officer:

JOST-Werke Deutschland GmbH
Data Protection Officer
Siemensstr.2
D-63263 Neu-Isenburg
datenschutz@jost-world.com

 

2. Purposes and legal basis on which we process your data

We process personal data in accordance with the provisions of the General Data Protection Regulation (DSGVO), the Federal Data Protection Act (BDSG) and other applicable data protection regulations. Details in the following. Further details or additions to the purposes of data processing can be found in the respective contractual documents, forms, a declaration of consent and other information provided to you.

 

2.1 Purposes for the fulfilment of a contract or pre-contractual measures (Art. 6 para. 1 b DSGVO)

Your personal data is processed for the purpose of processing your application in response to a specific job advertisement or as a speculative application, and in this context in particular for the following purposes: examination and assessment of your suitability for the vacant position, performance and conduct evaluation to the extent permitted by law, if applicable for registration and authentication for the application via our website, if applicable. for the preparation of the employment contract, verifiability of transactions, orders and other agreements as well as for quality control through appropriate documentation, measures for the fulfilment of general duties of care, statistical evaluations for corporate management, travel and event management, travel booking and travel expense accounting, authorisation and badge management, cost recording and controlling, reporting, internal and external communication, accounting and tax assessment of company services (e.g. canteen meals), accounting and tax assessment of company services (e.g. canteen meals).(e.g. canteen meals), billing via company credit card, occupational health and safety, contract-related communication (including making appointments) with you, assertion of legal claims and defence in legal disputes; ensuring IT security (including system and plausibility tests) and general security, e.g. Building and facility security, safeguarding and exercising domiciliary rights by means of appropriate measures and, if necessary, video surveillance for the protection of third parties and our employees as well as for the prevention and securing of evidence in the event of criminal offences; guaranteeing the integrity, prevention and clarification of criminal offences; authenticity and availability of data, control by supervisory bodies or control authorities (e.g. audit).

2.2 Purposes in the context of a legitimate interest of us or third parties (Art. 6 para. 1 f DSGVO)

Beyond the actual performance of the (preliminary) contract, we may process your data if it is necessary to protect the legitimate interests of us or third parties. Your data will only be processed if and insofar as there are no overriding interests on your part that speak against such processing, such as in particular for the following purposes: measures for the further development of existing systems, processes and services; comparisons with European and international anti-terrorism lists as well as further fraud or abuse prevention measures, insofar as these go beyond the legal obligations; enrichment of our data, including through the use of or research into publicly accessible data, insofar as this is necessary; benchmarking.This includes the use of or research into publicly available data where necessary; benchmarking; the development of scoring systems or automated decision-making processes; building and facility security (e.g. through access controls and video surveillance), where this goes beyond general due diligence requirements; internal and external investigations, security audits;

2.3 Purposes within the scope of your consent (Art. 6 para. 1 a DSGVO)

Your personal data may also be processed for certain purposes (e.g. obtaining references from previous employers or using your data for subsequent vacancies) on the basis of your consent. As a rule, you can revoke this consent at any time. You will be informed separately about the purposes and consequences of revoking or refusing consent in the relevant text of the consent.

As a general rule, the revocation of consent only takes effect for the future. Processing that took place before the revocation is not affected and remains lawful.

2.4 Purposes for the fulfilment of legal requirements (Art. 6 para. 1 c DSGVO) or in the public interest (Art. 6 para. 1 e DSGVO)

Like everyone involved in business, we are subject to a variety of legal obligations. Primarily, these are legal requirements (e.g. Works Constitution Act, Social Code, commercial and tax laws), but also, where applicable, regulatory or other official requirements (e.g. employers’ liability insurance association). The purposes of processing may include identity and age verification, fraud and money laundering prevention (e.g. matching with European and international anti-terror lists), company health management, ensuring occupational safety, fulfilling control and reporting obligations under tax law, as well as archiving data for data protection and data security purposes and for the purposes of audits by tax advisors/auditors, tax and other authorities. In addition, the disclosure of personal data may become necessary in the context of official/court measures for the purposes of gathering evidence, criminal prosecution or the enforcement of civil law claims.

3. The categories of data we process, where we do not receive data directly from you, and their origin

Insofar as this is necessary for the contractual relationship with you and the application you have made, we may process data permissibly obtained from other bodies or other third parties. In addition, we process personal data that we have permissibly obtained, received or acquired from publicly accessible sources (such as commercial and association registers, civil registers, the press, the Internet and other media), insofar as this is necessary and we are permitted to process this data in accordance with the statutory provisions.

Relevant categories of personal data may include, in particular, where applicable:

Address and contact data (registration and comparable data, e.g. e-mail address and telephone number)

Information about you on the internet or social networks

Video data

4. Recipients or categories of recipients of your data

Within our company, your data is passed on to those internal departments or organisational units that need it to fulfil our contractual and legal obligations (such as managers and specialist managers who are looking for a new employee or are involved in the decision on filling a position, accounting, company doctor, occupational health and safety, employee representatives, etc.) or in the context of processing and implementing our legitimate interests. Your data will only be passed on to external bodies if

for purposes where we are obliged (e.g. tax authorities) or entitled to disclose, report or pass on data in order to comply with legal requirements or where the disclosure of data is in the public interest (cf. section 2.4);

insofar as external service companies process data on our behalf as order processors or function transferees (e.g. credit institutions, external computer centres, travel agency/travel management, printers or companies for data disposal, courier services, post, logistics);

on the basis of our legitimate interest or the legitimate interest of the third party for the purposes stated in section 2.2 (e.g. to authorities, credit agencies, lawyers, courts, experts, companies belonging to the group and committees and supervisory bodies);

if you have given us consent to transfer the data to third parties.

We will not pass on your data to third parties unless we inform you of this separately. Insofar as we commission service providers within the scope of order processing, your data is subject to the security standards specified by us there in order to protect your data appropriately. In other cases, the recipients may only use the data for the purposes for which it was transmitted to them n.

 

5. Duration of the storage of your data

In principle, we process and store your data for the duration of your application. This also includes the initiation of a contract (pre-contractual legal relationship).

In addition, we are subject to various storage and documentation obligations, which result, among other things, from the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods specified there are up to ten years beyond the end of the contractual relationship or the pre-contractual legal relationship. Your application documents will be returned to you in the original after six months if you are not hired. Electronic data will be deleted accordingly after six months. If we wish to store your data for longer for subsequent vacancies or if you have placed your data in an applicant pool, the data will be deleted at later dates; you will be informed of the details in connection with the respective process.

If the data is no longer required for the fulfilment of contractual or legal obligations and rights, it is regularly deleted, unless its – temporary – further processing is necessary for the fulfilment of the purposes listed under section 2.2 due to an overriding legitimate interest of our company. Such an overriding legitimate interest exists, for example, if deletion is not possible or only possible with disproportionate effort due to the special nature of the storage. In these cases, we may also store your data after the end of our contractual relationship for a period agreed with the purposes and, if necessary, use it to a limited extent. In principle, a restriction of processing takes the place of deletion in these cases. In other words, the data is blocked against the otherwise usual use by appropriate measures.

6. Processing of your data in a third country or by an international organisation

Data is transferred to bodies in countries outside the European Economic Area EU/EEA (so-called third countries) if it is necessary to fulfil a contractual obligation to you (e.g. application for a job abroad), or if it is in the legitimate interest of us or a third party, or if you have given us your consent.

The processing of your data in a third country may also take place in connection with the involvement of service providers within the framework of commissioned processing. If there is no EU Commission decision on an adequate level of data protection for the country in question, there is a risk of access by the authorities without adequate legal remedies. In this context, appropriate contracts (such as EU standard contracts) and additional measures may be used as a basis for the transfer. Information on the appropriate or adequate safeguards and on the possibility of obtaining a copy from you can be obtained from the company data protection officer upon request.

 

7. Your data protection rights

Under certain conditions you can assert your data protection rights against us

Every data subject has the right to information under Article 15 of the GDPR, the right to rectification under Article 16 of the GDPR, the right to erasure under Article 17 of the GDPR, the right to restriction of processing under Article 18 of the GDPR and the right to data portability under Article 20 of the GDPR. With regard to the right to information and the right to erasure, the restrictions according to §§ 34 and 35 BDSG apply. In addition, there is a right of appeal to a data protection supervisory authority (Art. 77 DS-GVO in conjunction with § 19 BDSG).

Wherever possible, your requests to exercise your rights should be addressed in writing to the address above or directly to our Data Protection Officer.

 

8. Scope of your obligations to provide us with your data

You only need to provide the data that is necessary for processing your application or for a pre-contractual relationship with us or that we are legally obliged to collect. Without this data, we will generally not be able to continue the application and selection process. If we request additional data from you, you will be informed separately about the voluntary nature of the information.

 

9. Existence of automated decision-making in individual cases (including profiling)

We do not use any purely automated decision-making processes pursuant to Article 22 of the GDPR. If we do use such a procedure in individual cases in the future, we will inform you separately if this is required by law.  

 

Information about your right to object Art. 21 DSGVO

1.     You have the right to object at any time to the processing of your data that is carried out on the basis of Art. 6 (1) f DSGVO (data processing on the basis of a balance of interests) or Art. 6 (1) e DSGVO (data processing in the public interest). However, the prerequisite for your objection is that there are reasons arising from your particular personal situation. This also applies to profiling based on this provision within the meaning of Art. 4 No. 4 DSGVO.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Of course, you can withdraw your application at any time.

2.     We do not plan to use your personal data for direct marketing purposes. Nevertheless, we must inform you that you have the right to object to advertising at any time; this also applies to profiling insofar as it is connected with such direct advertising. We will observe this objection for the future.

The objection can be made without formalities and should preferably be addressed to

JOST-Werke Deutschland GmbH
Siemensstr.2
D-63263 Neu-Isenburg
+49 (0)6102 295 0
jost-info@jost-world.com

 

 Our privacy information about our data processing pursuant to Articles (Art.) 13, 14 and 21 of the GDPR may change from time to time. We will publish any changes on this page.

Privacy Policy E-Recruiting

Please read this privacy policy carefully before you submit your application data!

1. General Instructions
In order to apply for a specific position or to send a speculative application, it is not necessary to register in our eRecruiting system.

This Privacy Policy eRecruiting applies as of 4 September 2024.

The privacy policy eRecruiting applies to the JOST-Werke (incl. subsidiaries and production sites) at the locations within the Federal Republic of Germany, hereinafter referred to as “JOST”.

 

2. Privacy Policy for eRecruiting

JOST ensures the protection of the personal data of the applicant, which is made available to them. Below, we will make known to the applicant, how JOST will use his data. The personal data are stored, processed and used as part of the application in accordance with the following provisions and in compliance with the General Data Protection Regulation (GDPR). The applicant should therefore read this Privacy Policy eRecruiting carefully and then agree by placing the hook at “Privacy Policy eRecruiting read and accepted” after the applicant has understood the provisions of the eRecruiting.

 

3. Scope of this Privacy Policy

The data protection regulations apply to all personal data in the application that is sent by the applicant to JOST, as well as any other information that can be obtained by JOST from third parties as part of the application process, for example, information from previous employers, references, information from security companies, etc. JOST processes these personal data exclusively earmarked as part of the application and makes it available only with the same earmarking to external companies who are involved as a service provider in the application process.

 

4. How the application system functions

The applicant may apply through the online application system on the German-based job market JOST. Applications may relate to specific job postings, trainee vacancies, internships, thesis work or a position through the open applicant pool (unsolicited application). The application data is stored in the central database.

 

5. Data Use

The personal application data will be used by JOST to test the application to obtain references to confirm the details and to collect security and other background information, and ultimately be able to get in touch with the applicant. If the applicant is employed, the data of the applicant may also be transferred to the HR systems of JOST for personnel administration purposes.

 

6. Restriction of access to the applicant data

JOST informs the applicant that personal data from his native country can be transmitted around the world to other companies of JOST during the application process, as far as this is required in the context of the application (e.g. for application to international subsidiaries or under a unsolicited application). Some of these companies are located outside the European Union or outside the countries that ensure an adequate level of data protection by rating of the European Commission. Only the personnel staff of JOST and the supervisor and their confidante in the department have access to the data of the applicant. The personal data shall be used exclusively for JOST and not disclosed to third parties or sold. However, it is possible that the personal data of the applicant may also be given to the external service providers acting on our behalf that operate the eRecruiting system. JOST makes a written privacy policy agreement with the company in this case which ensures that the personal data is effectively protected and will not be used for unauthorized purposes. JOST monitors compliance with the agreements and shall at all times be responsible for the security of the data.

 

7. Data Management

After the applicant has provided the personal data and the application to JOST, this data can be changed by the applicants themselves. Thus, the data is automatically updated within the system. If the applicant wishes to obtain an extract of his/her information or wants to remove personal data from the database, he/she may contact JOST at the given address or send an e-mail to career@jost-world.com.

 

8. Cookies

Cookies are used to facilitate navigation on the website and to simplify the registration process. Cookies are text files that are stored by a web server to the hard disk of the applicant. A web browser is a part of the computer of the applicant. These browsers are typically set so that cookies will be automatically accepted. The settings can be adjusted so that it will refuse cookies. If you have concerns about the use of cookies, you can change the settings of your Internet browser. JOST points out, however, that the applicants without cookies may not be able to use all functions of this website. If the applicant visits the JOST website to access, read or download information JOST collects and stores different “visitor information” from the applicant’s visit. This includes the name of the domain and host through which the applicant accessed the Internet, the Internet Protocol (IP) address of the computer used by the applicant and the date and time of his/her visit to the website of JOST. JOST uses this information to determine the number of visitors to the sites and to improve the usefulness of the website.

 

9. Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”).

Google Analytics uses cookies, which are text files saved on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) is transmitted to and stored by Google on servers in the United States.

However, activating IP anonymisation on this website means that Google will first shorten your IP ad-dress within member states of the European Union or other states party to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address is transmitted to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to analyse your use of the website, compile reports on website activity and provide the website operator with further services in connection with use of the website and the Internet in general. Google will not link the IP address transmitted by your browser as part of Google Analytics with any other data.

You can block the use of cookies by selecting the corresponding settings on your browser. However, please note that if you do this, you may not be able to use the full functionality of this website. You can also prevent the data generated by the cookie and related to your use of the website (incl. your IP address) from being recorded and/or processed by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.

As an alternative to the browser plug-in or in browsers on mobile devices, please click on the link below to place an opt-out cookie, which will prevent recording by Google Analytics on this website in future. (This opt-out cookie only works in this browser and for this domain. If you delete your cookies in this browser, you will need to click the link again.): Deactivate Google Analytics

See also https://developers.google.com/analytics/devguides/collection/gajs/?hl=de#disable

You can find more information on this at https://tools.google.com/dlpage/gaoptout?hl=en-GB and https://support.google.com/analytics/answer/6004245?hl=en (general information on Google Analytics and data protection). Please note that, on this website, the code “gat._anonymizeIp();” has been added to Google Analytics in order to guarantee anonymised recording of IP addresses (known as IP masking).

 

10. Storage duration

The personal data of each applicant is generally stored in an applicant pool for 6 months. After this period, your data will be deleted from the applicant pool. If you agree to be included in our talent pool, we will also store your data in order to consider your application data for other vacancies in our company. For this purpose, we store your data for 12 months and then delete it. The legal basis is your consent, Art. 6 para. 1 a GDPR.

 

11. Changes

The Privacy Policy may be temporarily adjusted. JOST reserves the right to change this Privacy Policy at any time or to supplement it. The effective date of this privacy statement eRecruiting will appear at the top of this message. The applicant is advised to review this Privacy Policy periodically, and especially before entering personal information.

 

12. Contact

JOST controls and is responsible for the personal information of the applicant. If the applicant has questions about the eRecruiting tool or the Privacy Policy, and would like to obtain a copy of his/her personal data or wants to delete his personal data, he/she can always contact our colleague Alina Fink.

Alina Fink

Telephone: +49 (0) 6102 295 680

E-mail: alina.fink@jost-world.com

 

13. Data Protection Officer

Data Protection Officer

JOST-Werke Deutschland GmbH

Siemensstr. 2

63263 Neu-Isenburg

E-Mail: datenschutz@jost-world.com