Privacy Policy

Privacy Policy

The protection of your personal data is of great importance to proetzl unternehmensberatung | executive search. We take the legal requirements for data protection and data security very seriously. The information below mainly offers an overview of the personal data we collect from you, for what purpose the data is collected and how it is used. Furthermore, information is provided concerning your rights in relation to your personal data.

Responsibility for processing of your personal data lies with:

proetzl unternehmensberatung | executive search
Maximilianstr. 35a
80539 Munich, Germany
office(at)proetzl.com

All details of the company and its legal representation are included in the Legal Notice. If you have any questions concerning data protection, please contact h.proetzl(at)proetzl.com. Please be aware that email communications are never 100% secure. If you wish to send us confidential information, please do so by post.

1. What is personal data?

Personal data is information that relates to an identified or identifiable person. This includes your contact details (first name, last name, telephone number, address or email address), for example.

2. How do we collect your data?

In principle, you can visit our website without registering and without providing any information about yourself. Only the log data is saved at each visit. Further information on log data can be found in section 3.

If you contact us by email, fax, telephone, post, contact form or through other communication channels, or contact us personally (e.g. at trade fairs, events or seminars), we process the personal data (title, name, company, address, email address, telephone number) that you share with us. Data is processed for the purpose of handling, documenting, and following up on your inquiry in accordance with Art. 6 (1) (b) or (f) of the EU General Data Protection Regulation (GDPR). If you use our contact form, we take a record of your name and email address (mandatory fields). We need this information to answer your inquiry. As soon as you send us your message, you will receive an automatic confirmation of receipt with a summary of the data transmitted to us.

If you hand us your business card, we will enter the details from your business card into our system so that we can then contact you. On first contact, we fulfill our duty to inform in accordance with Art. 13 and Art. 14 GDPR by informing you about the data processing.

If we receive personal data from third parties, we or our contractual partners fulfill the obligation to inform in accordance with Art. 13 and Art. 14 GDPR by informing you about the data processing.

3. How long do we store your data?

When storing your personal data, we observe the erasure periods specified by the GDPR as well as the legal retention and deletion periods. If a contractual relationship ends, we will erase your data after a storage period of no more than three years if the purpose for data processing no longer applies or there is no further communication based on a legitimate interest as defined by Art. 6 (1) (f) GDPR.

Longer storage is only possible if you actively consent or if we are obliged to store data for longer due to legal retention obligations.

4. Is your data shared with third parties?

In principle, we do not share your data with third parties other than those described in this data privacy policy. Your data may only be shared if this is necessary for the purpose of fulfilling an order in accordance with Art. 6 (1) (b) or (f) GDPR or if you have given us your express consent beforehand. In selecting our processors, we place particular emphasis on GDPR compliance and conclude contracts with all processors in accordance with Art. 28 GDPR. If data is transferred to a third country in the absence of an adequacy decision, we ensure that there is a valid legal basis and that appropriate guarantees are in place.

Our employees are obliged to maintain confidentiality and data secrecy. They also receive regular data protection training. Any appointed external parties and freelancers are also obliged to maintain confidentiality and receive appropriate training. Appropriate contracts (order processing contract, non-disclosure agreement) are concluded.

5. Log data and hosting

To ensure the delivery and functionality of this website, to optimize the applications, and to guarantee website security, log data is processed on the basis of Art. 6 (1) (f) GDPR. This data is neither linked to you individually nor used for marketing purposes. The log data includes:

  • IP address of the user
  • Date and time of access
  • Pages/files accessed
  • Protocol and status of access
  • Volume of data transferred
  • Referring URL
  • Information on the client/browser used

The log data and your content are retained for seven days and then deleted.

Within the scope of processing on our behalf, Strato AG, Otto-Ostrowski-Str. 7, 10247 Berlin (www.strato.de) provides us with the solutions necessary for hosting and delivering our website. All data collected when using this website, as described in this data privacy policy, is processed on the servers of Strato AG. The servers of Strato AG are located at data centers in Germany. An order processing contract in accordance with Art. 28 GDPR has been concluded.

You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.

6. Links to other websites and social media platforms

Our website includes links to other websites and social media platforms. The switch to another website is recognizable from a change in the URL, for example. We are not responsible for the privacy policy or the content of these other websites.

We are represented on the social media platforms Xing and LinkedIn. Information on data protection at Xing can be found here: https://privacy.xing.com/en/privacy-policy. Information on data protection at LinkedIn can be found here: https://www.linkedin.com/legal/privacy-policy.

7. Cookies

Only technically necessary cookies are used on this website. Cookies are small text files containing information that helps recognize returning visitors. Cookies are stored on your device in accordance with your browser settings and do not cause any harm. A cookie contains a characteristic string of characters that enables unique identification of the browser when the website is visited again. After leaving the website, these “session cookies” are deleted again. Permanent cookies remain on your device until they are deleted from the hard disk by the browser software. This can be done automatically or manually with the appropriate settings. However, you can also prevent the installation of cookies in advance by configuring your browser software accordingly.

The use of all corporate websites requires consent for those cookies that are technically necessary for operation, e.g. to maintain the functionality of the website. These cookies are set on the basis of our legitimate interest pursuant to Art. 6 (1) (f) GDPR.

8. Third Party Providers

We use the web analysis service Matomo (InnoCraft Ltd, 7 Waterloo Quay PO625, 6140 Wellington, New Zealand) to analyze and regularly improve the use of our website. We can use the statistics obtained to improve our offer and make it more interesting for you as a user in the future. The legal basis for using Matomo is our legitimate interest. We have made data protection-friendly default settings so that Matomo does not collect any personal data. This website uses Matomo without setting cookies and with the extension “AnonymizeIP”. As a result, IP addresses are further processed in abbreviated form, so that direct personal reference can be ruled out. The IP address transmitted by your browser using Matomo will not be merged with other data collected by us.

The Matomo software and the data collected using Matomo are operated, stored and processed exclusively on our own servers. The Matomo program is an open source project. Information from the third-party provider on data protection is available at https://matomo.org/privacy/.

9. What are your rights?

To exercise your rights as a data subject, please use the contact details provided in this privacy policy. For your own protection, we require confirmation of your identity for every request in order to rule out any unauthorized access to your personal data. We will notify you if legal regulations or documentation obligations prevent us from carrying out your request.

You have the following rights:

  • Pursuant to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;
  • pursuant to Art. 16 GDPR, the right to demand correction of inaccurate or incomplete personal data stored by us without delay;
  • pursuant to Art. 17 GDPR, the right to request erasure of your personal data stored by us, unless further processing is necessary
    – for exercising the right to freedom of expression and information
    – for compliance with a legal obligation
    – for reasons of public interest, or
    – for establishing, exercising or defending legal claims;
  • pursuant to Art. 18 GDPR, the right to request restriction of processing of your personal data if
    – you contest the accuracy of the data
    – the processing is unlawful but you are opposed to its erasure
    – we no longer need the data but you require the data for the purpose of establishing, exercising or defending legal claims; or
  • pursuant to Art. 20 GDPR, the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format, and the right to request transmission of this data to another controller;
  • pursuant to Art. 21 GDPR, the right to object to the processing if the processing is based on our legitimate interest (e.g. direct marketing). In this case, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of establishing, exercising or defending legal claims;
  • pursuant to Art. 7 (3) GDPR, to withdraw the consent you have given us at any time with effect for the future. The processing prior to the time of withdrawal remains unaffected by this;
  • pursuant to Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. To do so, you can contact the supervisory authority local to your habitual residence, workplace, or our company headquarters.

10. Data security

To ensure that the transfer of data is secure, it is transmitted via a secure SSL connection. Your data therefore cannot be read by unauthorized third parties during transmission. SSL-protected pages can be recognized in that the address begins with https:// rather than http://. In addition, a small, closed padlock appears in most browsers (e.g., in the address bar, or in the status bar at the bottom of the screen).

Last updated: January 2023

© proetzl unternehmensberatung | executive search