Skip to main content

Privacy Policy

General

As the operator of this website and as a company, we come into contact with your personal data. This refers to all data that can be used to identify you. In this privacy policy, we would like to explain in what manner, for what purpose, and on what legal basis we process your data.

The party responsible for data processing on this website and within our company is:

KTC Körner Trading Consulting GmbH
Buschgrundstraße 23
45894 Gelsenkirchen

Phone: +49 209 730851-0
Email: datenschutz@firstchoice.de

General Information

SSL/TLS Encryption

When you enter data on websites, place online orders, or send emails over the internet, you must always be aware that unauthorised third parties may access your data. Complete protection against such access does not exist. However, we make every effort to protect your data as best as possible and to close security vulnerabilities to the extent we can.

An important protective mechanism is the SSL/TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognise the encryption by the lock icon in front of the URL in your browser and by the fact that our web address begins with https:// rather than http://.

How long do we store your data?

In some sections of this privacy policy, we inform you about how long we or the companies that process your data on our behalf store your data. If no such information is provided, we store your data until the purpose of data processing no longer applies, you object to the data processing, or you revoke your consent to data processing.

In the event of an objection or revocation, we may nevertheless continue to process your data if at least one of the following conditions is met:

We have compelling legitimate grounds for continuing the data processing that override your interests, rights, and freedoms (only applicable to objections against data processing; if the objection concerns direct marketing, we cannot invoke legitimate grounds).

The data processing is necessary for the establishment, exercise, or defence of legal claims (does not apply if your objection concerns direct marketing).

We are legally obligated to retain your data.

In this case, we will delete your data as soon as the condition(s) no longer apply.

Data transfer to the USA

We also use tools on our website from companies that transfer your data to the USA where it is stored and potentially further processed. This is particularly significant for you because your data does not enjoy the same level of protection in the USA as within the EU, where the General Data Protection Regulation (GDPR) applies. For example, US companies are obligated to hand over personal data to security authorities without you, as the affected person, being able to take legal action against this. It is therefore possible that US authorities (e.g. intelligence services) may process, evaluate, and permanently store your data on US servers for surveillance purposes. We have no influence over these processing activities.

Your Rights

Objection to data processing

IF YOU READ IN THIS PRIVACY POLICY THAT WE HAVE LEGITIMATE INTERESTS IN PROCESSING YOUR DATA AND THEREFORE BASE THIS ON ART. 6(1)(f) GDPR, YOU HAVE THE RIGHT TO OBJECT PURSUANT TO ART. 21 GDPR. THIS ALSO APPLIES TO PROFILING BASED ON THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE GROUNDS FOR THE OBJECTION ARISING FROM YOUR PARTICULAR SITUATION. NO JUSTIFICATION IS REQUIRED IF THE OBJECTION CONCERNS THE USE OF YOUR DATA FOR DIRECT MARKETING.

THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS DOES NOT APPLY ONLY IF ONE OF THE FOLLOWING CONDITIONS IS MET:

  • WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS.
  • THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE, OR DEFENCE OF LEGAL CLAIMS.

THE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION CONCERNS DIRECT MARKETING OR PROFILING RELATED THERETO.

 

Further Rights

Revocation of your consent to data processing

Many data processing operations are based on your consent. You give this consent, for example, by ticking the appropriate checkbox in online forms before submitting the form, or by allowing certain cookies when visiting our website. You may revoke your consent at any time without stating reasons (Art. 7(3) GDPR). From the time of revocation, we may no longer process your data. The only exception: we are legally obligated to retain the data for a certain period. Such retention periods exist in particular in tax and commercial law.

Right to lodge a complaint with the competent supervisory authority

If you believe that we are in breach of the General Data Protection Regulation (GDPR), you have the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR. You may contact a supervisory authority in the member state of your habitual residence, your place of work, or the place of the alleged infringement. The right to complain exists in addition to administrative or judicial remedies.

Right to data portability

Data that we process automatically on the basis of your consent or in fulfilment of a contract must be handed over to you or to a third party in a commonly used, machine-readable format if you so request. We can only transfer data to another controller insofar as this is technically feasible.

Right to information, deletion, and rectification

Pursuant to Art. 15 GDPR, you have the right to obtain free information about which personal data we have stored about you, where the data originates from, to whom we transmit the data, and for what purpose it is stored. Should the data be incorrect, you have a right to rectification (Art. 16 GDPR); under the conditions of Art. 17 GDPR, you may request that we delete the data.

Right to restriction of processing

In certain situations, you may require us to restrict the processing of your data pursuant to Art. 18 GDPR. Apart from storage, the data may then only be processed as follows:

  • with your consent
  • for the establishment, exercise, or defence of legal claims
  • for the protection of the rights of another natural or legal person
  • for reasons of important public interest of the European Union or a member state

The right to restriction of processing exists in the following situations:

  • You have contested the accuracy of your personal data stored by us and we need time to verify this. The right exists for the duration of the verification.
  • The processing of your personal data is or was unlawful. The right exists as an alternative to the deletion of the data.
  • We no longer need your personal data, but you need it for the exercise, defence, or establishment of legal claims. The right exists as an alternative to the deletion of the data.
  • You have lodged an objection pursuant to Art. 21(1) GDPR and your interests and ours must now be weighed against each other. The right exists as long as the outcome of the balancing has not yet been determined.

 

Hosting and Content Delivery Networks (CDN)

External hosting

Our website is hosted on a server provided by the following internet service provider (hoster):

profihost GmbH
Expo Plaza 1
30539 Hannover

Phone: +49 511 899555-10

Has a data processing agreement been concluded with the hoster?
Yes

How do we process your data?

The hoster stores all data of our website. This also includes all personal data that is collected automatically or through your input. This may include in particular: your IP address, pages visited, names, contact details and enquiries, as well as meta and communication data. In processing data, the web hosting company follows our instructions and only processes data to the extent necessary to fulfil its service obligation to us.

On what legal basis do we process your data?

Since we use our website to address potential customers and maintain contacts with existing customers, data processing by our hoster serves the initiation and fulfilment of contracts and is therefore based on Art. 6(1)(b) GDPR. Furthermore, it is our legitimate interest as a company to provide a professional online presence that meets the necessary requirements for security, speed, and efficiency. To that extent, we also process your data on the basis of Art. 6(1)(f) GDPR.

 

Data Collection on This Website

Use of Cookies

Our website places cookies on your device. These are small text files that serve various purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to perform certain actions or functions on the site (functional cookies). For example, without cookies it would not be possible to use the advantages of a shopping cart in an online store. Yet other cookies are used to analyse user behaviour or to optimise advertising measures. When we use third-party services on our website, e.g. for processing payments, these companies may also place cookies on your device when you visit the website (so-called third-party cookies).

How do we process your data?

Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they disappear automatically. Persistent cookies, on the other hand, remain on your device unless you delete them yourself. This may, for example, lead to your user behaviour being permanently analysed. You can influence how your browser handles cookies through your browser settings:

  • Do you want to be informed when cookies are set?
  • Do you want to block cookies in general or for specific cases?
  • Do you want cookies to be automatically deleted when you close the browser?

If you deactivate or disallow cookies, the functionality of the website may be limited.

If we use cookies from other companies or for analytical purposes, we will inform you about this within the scope of this privacy policy. We will also request your consent when you visit our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that visitors to our online services can use them without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device is therefore based on Art. 6(1)(f) GDPR. All other cookies are set on the basis of Art. 6(1)(a) GDPR, provided that you give us your consent. You may revoke this consent at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when consent was requested, the storage of these cookies is also based exclusively on your consent.

 

Server Log Files

Server log files record all requests and accesses to our website and log error messages. They also contain personal data, in particular your IP address. However, this is anonymised by the provider after a short time, so that we cannot associate the data with your person. The data is automatically transmitted from your browser to our provider.

How do we process your data?

Our provider stores the server log files in order to trace activity on our website and to identify errors. The files contain the following data:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address (anonymised where applicable)

We do not merge this data with other data but use it solely for statistical evaluation and to improve our website.

On what legal basis do we process your data?

We have a legitimate interest in ensuring that our website runs without errors. It is also our legitimate interest to obtain an anonymised overview of accesses to our website. Data processing is therefore lawful pursuant to Art. 6(1)(f) GDPR.

 

Contact Form

You can send us a message via the contact form on this website.

How do we process your data?

We store your message and the information from the form in order to process your enquiry, including any follow-up questions. This also includes the contact details provided. We will not share the data with other parties without your consent.

How long do we store your data?

We delete your data as soon as one of the following applies:

  • Your enquiry has been fully processed.
  • You request that we delete the data.
  • You revoke your consent to storage.

This does not apply if we are legally obligated to retain the data.

On what legal basis do we process your data?

If your enquiry is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. In all other cases, it is our legitimate interest to effectively process enquiries directed to us. The legal basis for data processing is therefore Art. 6(1)(f) GDPR. If you have consented to the storage of your data, Art. 6(1)(a) GDPR is the legal basis. In this case, you may revoke your consent at any time with effect for the future.

 

Enquiries by Email, Phone, or Fax

You can send us a message by email or fax, or call us.

How do we process your data?

We store your message and the contact details you have provided, or the transmitted phone number, in order to process your enquiry, including any follow-up questions. We will not share the data with other parties without your consent.

How long do we store your data?

We delete your data as soon as one of the following applies:

  • Your enquiry has been fully processed.
  • You request that we delete the data.
  • You revoke your consent to storage.

This does not apply if we are legally obligated to retain the data.

On what legal basis do we process your data?

If your enquiry is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. In all other cases, it is our legitimate interest to effectively process enquiries directed to us. The legal basis for data processing is therefore Art. 6(1)(f) GDPR. If you have consented to the storage of your data, Art. 6(1)(a) GDPR is the legal basis. In this case, you may revoke your consent at any time with effect for the future.

 

Plugins and Tools

Google Web Fonts (local hosting)

We use fonts from the US company Google on our website. The fonts are installed locally, so no connection to Google’s servers is established when you visit our website.

For more information about Google Web Fonts, please visit https://developers.google.com/fonts/faq and Google’s privacy policy: https://policies.google.com/privacy?hl=en.

Audio and Video Conferencing

As a company, we are in contact with many people: customers, business partners, service providers, etc. In addition to other means of communication, we also use so-called online conferencing tools for this purpose. Information relevant to data protection regarding the provider(s) of the tools we use can be found at the end of this section. If you communicate with us via such a tool, not only we but in particular the provider of the respective tool will process your personal data.

How do we process your data?

Online conferencing tools collect and store various personal data to enable participation in an online conference and its smooth execution. In addition to registration, conference, and technical data, this also includes certain communication content.

Registration data: your email address and/or phone number and, where applicable, other data you provide when registering for the conference.

Conference data: start, end, and duration of your participation in the conference, the number of participants, and other metadata relating to the conference.

Technical data: IP address, MAC address, device ID, device type, operating system and version, client version, camera type, microphone or speaker, and the type of connection.

Communication content: cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards, and other information shared during the use of the service.

For details on data processing, please refer to the privacy policies of the respective conferencing tool provider.

How long do we store your data?

As your communication partner, we delete your data on our systems as soon as one of the following applies:

The purpose of data processing no longer applies.

You request that we delete the data.

You revoke your consent to storage.

This does not apply if we are legally obligated to retain the data.

Cookies remain on your device until you delete them.

The providers of conferencing tools also store your data for their own purposes. For information on what this means for the duration of storage of your data, please enquire directly with the providers.

On what legal basis do we process your data?

If we are already contractually connected or you wish to enter into a contract with us, we use conferencing tools to fulfil the contract or to inform you about our services or products. In this respect, data processing is based on Art. 6(1)(b) GDPR. Otherwise, the use of conferencing tools serves simple and fast communication, without which we could not run our company efficiently. We therefore also have a legitimate interest in data processing pursuant to Art. 6(1)(f) GDPR. An additional legal basis may be your consent. In this case, Art. 6(1)(a) GDPR is applicable. This basis ceases to apply for the future if you revoke your consent.

 

Which online conferencing tools do we use?

Zoom

What is Zoom?
A communication platform for video meetings, voice communication, webinars, and chats via desktop computers, phones, mobile devices, and conference room systems.

Who processes your data?
Zoom Communications Inc., 55 Almaden Boulevard, Suite 600, San Jose, CA 95113, USA

Has a data processing agreement been concluded with Zoom?
Yes

Where can you find more information about data protection at Zoom?
https://zoom.us/en/privacy.html

On what basis do we transfer your data to the USA?
Zoom Communications Inc. adheres to the Standard Contractual Clauses of the European Commission (see https://zoom.us/en/privacy.html#_Toc44414846)

Microsoft Teams

What is Microsoft Teams?
A communication platform for team collaboration.

Who processes your data?
Microsoft Corp., One Microsoft Way, Redmond, WA 98052-6399, USA

Has a data processing agreement been concluded with Microsoft Teams?
Yes

Where can you find more information about data protection at Microsoft Teams?
https://privacy.microsoft.com/en-us/privacystatement

On what basis do we transfer your data to the USA?

Microsoft adheres to the Standard Contractual Clauses of the European Commission (https://docs.microsoft.com/en-us/compliance/regulatory/gdpr)

 

Own Services / Other

Handling of applicant data

If you would like to work for us, we are happy to receive your application. All personal data transmitted will be treated in strict confidence. This also applies to data that we collect later in the course of the application process.

How do we process your data?

All data that we collect in the course of the application process is stored and used insofar as this is necessary for deciding on the establishment of an employment relationship. In addition to contact and communication data and application documents, this also includes, for example, notes that we make during job interviews. Within our company, we only share your data with persons involved in processing your application.

If your application is successful, we store the data necessary for carrying out the employment relationship in our data processing systems.

If we are unable to offer you a suitable position at present, we are happy to include your data in our applicant pool with your consent. This allows us to contact you should a position become available that matches your profile.

How long do we store your data?

If we are unable to make you a job offer, you decline a job offer, or you withdraw your application, we reserve the right to retain your documents and other application data for up to 6 months after the end of the application process. The reason is that we may need the data for evidentiary purposes in the event of legal proceedings. After the expiry of this period, we delete the data and destroy the documents. If legal proceedings are actually imminent or already pending, we delete the data and documents when they are no longer needed for evidentiary purposes.

Data in the applicant pool is deleted no later than 2 years after consent was given. If you revoke your consent before this period expires, we delete the data sooner.

The deletion of your data always presupposes that we are not legally obligated to retain it for a longer period.

On what legal basis do we process your data?

We process your applicant data on the basis of Section 26 BDSG (new) (initiation of an employment relationship) and Art. 6(1)(b) GDPR (general contract initiation).

The same applies if your application is successful.

If we are unable to make you a job offer, you decline a job offer, or you withdraw your application, we have a legitimate interest in using your data for evidentiary purposes in potential legal proceedings. Data processing is therefore based on Art. 6(1)(f) GDPR.

If you have expressly consented to the storage of your data, we process your data on the basis of Art. 6(1)(a) GDPR. You may revoke your consent at any time with effect for the future.

This GDPR-compliant privacy policy was created using the intelligent privacy generator of PRIVE Privacy Software.