Privacy policy

1. Person responsible

The person responsible for this website in terms of data protection law is SPECTRUM AG, represented by the Executive Board, Schulze-Delitzsch-Straße 41, 70565 Stuttgart, Germany, Tel.: +49 711 78 1942-0, e-mail: zentrale@spectrum-ag.de.

The contact details of our data protection officer are:

Ulrich Wagner, e-mail: datenschutz@spectrum-ag.de.

2. Visit our website

When you access our website, the browser used on your end device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which the access is made (referrer URL)
  • The browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The processing of this data is carried out in accordance with Art. 6 Para. 1 lit. f GDPR. The legitimate interest follows from ensuring the technical functionality of our website.

The log files are deleted after 3 months.

3. Third pages

Insofar as we provide references to other websites (links) on the site, our privacy policy does not apply to these sites. Please read the data protection information on those sites. Due to a lack of influence, we are not liable for the contents and effects of external websites. We do not receive any data about you from the external websites when you follow the links or enter data on the linked pages.

4. Cookies

Cookies are used on this website. Cookies do not cause any damage to your computer and do not contain viruses. They are small text files that are stored on your computer and saved by your browser.

On the one hand, they serve the technical functionality of our website. On the other hand, they enable us to improve the user-friendliness as well as the effectiveness and security of our website and our offer.

Insofar as the cookies serve the technical operation of the website and are essential for the technical operation, this is a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR. Cookies that are not essential for the operation of the website are only set on the basis of your consent pursuant to Art. 6 Para. 1 lit. a GDPR.

For more information on the cookies used, in particular the deletion periods, please refer to the cookie consent manager, which you can access via this link.

We use the tool from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, as our cookie consent manager.

When you access our website, a connection to the Usercentrics server is established. This requires the transfer of your IP address, referrer URL and browser.

The transfer takes place on the basis of Art. 6 Para. 1 lit. c and f GDPR. The legitimate interest lies in the maintenance of technical functionality.

5. Contacting

If you send us a message using the contact details provided on our website, your contact details and any other personal data resulting from the message will be processed by us for the purpose of processing the enquiry.

The personal data we process may include:

  • salutation
  • first and last name
  • address
  • telephone or fax number
  • e-mail-address

The processing of this data is based on your (implied) consent pursuant to Art. 6 Para. 1 lit. a GDPR. If the communication serves to initiate a business transaction, the processing is also carried out on the basis of Art. 6 Para. 1 lit. b GDPR.

The data will be deleted immediately after the matter has been processed, unless the communication is necessary for the defence or assertion of claims or these must be retained due to tax law requirements. In this case, the deletion takes place after three years, starting with the year following the year in which the communication took place, or after 10 years.

6. Applications

You can send us your application for a vacant position with us using the contact details and options mentioned and made available on our websites.

All personal data resulting from your application documents will be processed. This can be in particular:

  • first name, last name
  • address
  • date of birth/age
  • marital status
  • e-mail-address
  • telephone number
  • training
  • professional career
  • health data (e.g. disability)
  • external appearance (photograph)

This data is processed pursuant to Art. 6 Para. 1 lit. a (consent) and b (contract processing) GDPR.

If no employment relationship is established, your documents will be destroyed no later than 6 months after rejection. If an employment relationship is established, your application documents will be placed in the personnel file and destroyed after you leave the company.

7. Job exchange

You have the option of researching and applying for vacancies from other companies via the https://jobs.spectrumag.de website.

The website uses eRecruiter, a tool from eRecruiter GmbH, Am Winterhafen 4, 4020 Linz, Austria.

Any personal information you provide will be processed as part of the application process. This may include, in particular, the following:

  • first name, last name
  • address
  • date of birth/age
  • marital status
  • e-mail address
  • telephone number
  • training
  • professional career
  • health data (e.g. disability)
  • external appearance (photograph)
  • entry date
  • salary request
  • type of employment

This data is processed pursuant to Art. 6 Para. 1 lit. a (consent) and b (contract processing) GDPR.

The personal data you provide will remain stored in your profile until you revoke your consent, delete the data yourself or delete your profile.

8. Social media

We maintain online presences within social networks and platforms such as Facebook, Xing,

Instagram, Twitter, LinkedIn, Pinterest and YouTube in order to get in touch with the members, customers, interested parties and users active there and to be able to inform them about our services or campaigns there as well.

In this context, we draw your attention to the following important points:

  • User data is usually processed by the operators of social networks and platforms for market research and advertising purposes. For example, usage profiles can be created from the usage behaviour and resulting interests of the users. The usage profiles can in turn be used for the placement of interest-based advertisements within and outside of these platforms. For these purposes, cookies and comparable technologies are usually stored on the users’ computers, by means of which the users’ usage behaviour is recorded and stored. Furthermore, data may also be stored in the usage profiles independently of the device, especially if the users are logged in to the respective platforms as members.
  • The processing of the personal data of the users of our online presences in social networks or platforms, including the transfer of your personal data to the operator of the platform in the USA, takes place on the basis of your (implied) consent pursuant to 6 Para. 1 lit. a GDPR as well as Art. 49 Para. 1 sentence 1 lit. a GDPR. We would like to point out that in the case of an insecure third country (USA), it is not guaranteed that the data protection requirements of the General Data Protection Regulation will be complied with when processing your personal data. In particular, due to legal requirements in the respective third country, the operator may be forced to hand over your personal data to authorities and other state institutions.

If you contact us via the messaging or messenger services of social media platforms, this is done voluntarily. We are not responsible for the processing and security of the personal data entered in the chat process and have no influence on this. Please inform yourself in advance about the usage and data protection regulations of the respective platform as further recipients and responsible parties in the context of data processing.

The processing of personal data of the users of our online presences in social networks or platforms is carried out on the basis of our legitimate interests in an effective information of the users and communication with the users, Art. 6 para. 1 lit. f. GDPR. Only in the event that the users are asked by the respective providers of the platforms for consent to the data processing described above, the legal basis of the processing is Art. 6 para. 1 lit. a. and Art. 7 GDPR.

For detailed information on the respective processing and the opt-out options, please refer to the information provided by the providers linked below.

We also point out that requests for information and other data subject rights can also be asserted most effectively with the providers themselves. Only the providers have access to the corresponding data of the users in each case and can thus directly provide corresponding information or take measures. Nevertheless, you can also contact us at any time.

9. Google Analytics

We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, for the purpose of demand-oriented design and ongoing optimisation of our pages. In this context, pseudonymised usage profiles are created and cookies (see point 4) are used. The following information about your use of this website is stored in the cookie:

  • app updates
  • click path
  • date and time of the visit
  • unit information
  • downloads
  • flash version
  • location information
  • IP address
  • JavaScript support
  • pages visited
  • buying activity
  • referrer URL
  • usage data
  • widget interactions
  • browser information

The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services associated with the use of the website and the internet for the purposes of market research and demand-oriented design of these internet pages. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymised so that an allocation is not possible (IP masking).

Further information on data protection in connection with Google Analytics can be found at the following link: https://support.google.com/analytics/answer/6004245?hl=de.

The legal basis for the processing is your consent pursuant to Art. 6 Para. 1 lit. a GDPR.

Please note that it cannot be ruled out that the information obtained will be transmitted to Google LLC servers in the USA. In this respect, the information under point 8 applies analogously.

It is not possible to draw conclusions about you as a person from the recorded user behaviour. Personal data is therefore not stored.

10. Google Ads

For the purpose of external presentation and marketing, we use the advertising service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

In this context, the following personal data are processed:

  • viewed advertisements
  • cookie ID
  • date and time of the visit
  • unit information
  • geographical location
  • IP address
  • search terms
  • displayed advertising
  • customer ID
  • impressions
  • online identifiers
  • browser information
  • hash contact information

Further information on data protection in connection with Google Ads can be found at the following link: https://ads.google.com/intl/de_de/home/faq/gdpr/.

The legal basis for the processing is your consent pursuant to Art. 6 Para. 1 lit. a) GDPR.

Please note that it cannot be ruled out that the information obtained will be transmitted to Google LLC servers in the USA. In this respect, the information under point 8 applies analogously.

It is not possible to draw conclusions about you as a person from the recorded user behaviour. Personal data is therefore not stored.

11. Google AdSense

Furthermore, we use Google AdSense on our site, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google AdSense allows us to display advertisements on our website that enhance the user experience.

The following personal data will be processed:

  • viewed advertisements
  • cookie ID
  • date and time of the visit
  • unit information
  • geographical location
  • IP address
  • search terms
  • displayed advertising
  • customer ID
  • impressions
  • online identifiers
  • browser information
  • hash contact information

Further information on data protection in connection with Google AdSense can be found at the following link: https://policies.google.com/privacy.

The legal basis for the processing is your consent pursuant to Art. 6 Para. 1 lit. a) GDPR.

Please note that it cannot be ruled out that the information obtained will be transmitted to Google LLC servers in the USA. In this respect, the information under point 8 applies analogously.

It is not possible to draw conclusions about you as a person from the recorded user behaviour. Personal data is therefore not stored.

12. Newsletter

We would like to inform you at regular intervals by means of a newsletter about innovations and offers at our company as well as tips for your professional life. In principle, the newsletter can only be received by the data subject if (1) the data subject has a valid e-mail address and (2) the data subject registers to receive the newsletter.

We use Newsletter2go from Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, to send out our newsletter.  You can find further information on data protection at Newsletter2go under the following link: https://de.sendinblue.com/legal/privacypolicy/.

Your e-mail address will only be processed on the basis of your consent pursuant to Art. 6 Para. 1 lit. a) GDPR.

The data collected will be stored for as long as the person concerned wishes to receive the newsletter. If the sending of the newsletter is no longer desired, all collected data will be deleted immediately.

13. Gstatic

Gstatic is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland and is used to provide and load content to be displayed on the website from so-called Content Delivery Networks (CDN).

In order for your browser to obtain the necessary content from the CDN, it is necessary to send your IP address.

The processing of this data is based on the legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. In this case, the legitimate interest is maintaining the functionality and optimisation of our website.

Your data will not be stored.

14. DoubleClick

DoubleClick is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland and is used to provide and load content to be displayed on the website from so-called Content Delivery Networks (CDN).

DoubleClick is used to place advertisements.

The processing of this data is based on the legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. In this case, the legitimate interest is maintaining the functionality and optimisation of our website.

Your data will not be stored.

15. Font Awesome and Google Fonts

For the uniform display of fonts and icons, the web fonts services Google Font API and Font Awesome are used on this website. For this purpose, a connection is established with the respective service provider when our website is called up. Your IP address is transferred in the process.

This service is provided by:

  • Google Font API: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
    Privacy policy: https://policies.google.com/privacy
  • Font Awesome: Fonticons Inc, 307 S Main St Ste 202 Bentonville, AR, 72712-9214 United States.
    Privacy policy: https://fontawesome.com/privacy

The transfer of your personal data to the operator of the platform in the USA takes place on the basis of your (implied) consent pursuant to Art. 6 Para. 1 sentence 1 lit. a and Art. 49 para. 1 sentence 1 lit. a GDPR. We would like to point out that in the case of an insecure third country (USA), it is not guaranteed that the data protection requirements of the General Data Protection Regulation will be complied with when processing your personal data. In particular, due to legal requirements in the respective third country, the operator may be forced to hand over your personal data to authorities and other state institutions.

The IP address is not stored.

16. Gravatar

To manage the author and user accounts, we use the service of Gravatar, a service of Aut O’Mattic A8C Ireland Ltd. , Grand Canal Dock, 25 Herbert Pl, Dublin, D02 AY86, Ireland.

Your IP address is used to establish the connection, your e-mail address for identification purposes and an image (avatar) is processed. This processing is based on Art. 6 Para. 1 lit. a (consent) as well as lit. f (legitimate interest) GDPR.

Your data will not be stored.

Further information on data protection can be found under the following link: https://automattic.com/de/privacy/.

17. HubSpot

You have the option to communicate with us via a chat embedded on the site. This service is provided by HubSpot Ireland Limited, HUBSPOT HOUSE, 662881, Ireland.

All the personal data that you provide within the conversation will be processed. These can be in particular: Name, email address, telephone number. If you send us CVs or other files via this, all personal data contained in these documents will also be processed by us.

This data is processed on the basis of your (implied) consent pursuant to Art. 6 Para. 1 lit. a GDPR.

We process the personal data resulting from the transmitted message until the purpose has been achieved. If the documents sent are application documents, we ask you to take into account point 6 of this data protection declaration.

18. Google reCAPTCHA

This website uses reCAPTCHA, a service provided by Google Ireland Limited, Gordon House,

Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA.

By means of reCAPTCHA, it can be checked whether an entry is made by a natural person or is misused by machine and automated processing. This check serves to protect our website.

The following personal data will be processed:

  • Date, time
  • IP address
  • Target URL

This processing is carried out on the basis of our legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. This lies in the protection and maintenance of the functionality of our website.

Further information on data protection can be found under the following link:

https://www.google.com/intl/de/policies/privacy/

19. Google YouTube

Videos stored on the Internet platform YouTube (www.youtube.com) are embedded on our website. This service is offered by: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA.

In addition to your IP address, the website from which the call comes is transmitted to YouTube, among other things. There is a possibility that data of the data subject will be processed outside the European Union, in particular in the USA.

As soon as a video is started on the website by the data subject, YouTube places cookies on the end device of the data subject, provided you have given your consent to this in accordance with Art. 6 Para. 1 lit. a GDPR. This does not contain any personally identifiable data.

This does not apply if the data subject is currently logged into a Google service. Google offers further information on the general handling of personal data at https://policies.google.com/privacy.

20. Iconify

For the uniform display of icons on the website, we use the service Iconify. This service is provided by Iconify OÜ, Vaike-Paala tn 2, 11414 Tallinn, Estonia.

To retrieve the icons, a connection must be established between you and the Iconify servers. This requires the transfer of your IP address.

Your data is processed on the basis of our legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. This lies in maintaining the functionality of our website.

For more information about Iconify’s privacy policy, please see the following link: https://iconify.design/privacy/.

21. Twemoji

For the uniform display of emojis on the website, we use the service Twemoji. This service is provided by Twitter International Unlimited Company, 1 Cumberland Place, Fenian Street, Dublin 2, Dublin, Ireland.

To retrieve the emojis, a connection must be established between you and the Twitter servers. This requires the transfer of your IP address.

Your data is processed on the basis of our legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. This lies in maintaining the functionality of our website.

You can find further information on data protection at Twitter under the following link: https://twitter.com/de/privacy.

22. Kununu

For the best possible transparency, we display our rating on Kununu on our page. This is a service provided by New Work SE, Am Strandkai 1, 20457 Hamburg.

The following personal data will be processed:

  • Date, time
  • IP address
  • URL of the website from which the request is made

As New Work SE is also the operator of Xing, it is conceivable that your data may be processed further by New Work SE as a result of your visit to our website. You can find more information on data protection at New Work SE under the following link: https://privacy.xing.com/de/datenschutzerklaerung.

The processing of your IP address is based on our legitimate interest according to Art. 6 Para. 1 lit. f) GDPR. This lies in the improvement of our external presentation.

23. Bitly

To link certain websites in social media, we use the URL shortener of the company Bitly. Inc. , 139 5th Avenue, NY 10010, USA.

The following personal data will be processed:

  • Date, time
  • IP address
  • Referrer URL
  • Target URL

This processing is carried out on the basis of our legitimate interest pursuant to Art. 6 Para. 1 lit. f GDPR. This lies in a simplified presentation of complex internet addresses and the related readability of the article in which the internet address is mentioned.

Your data will not be stored by us.

You can find further information on data protection at Bitly under the following link: https://bitly.com/pages/privacy.

24. Your data subject rights

you have the right:

  • to revoke your consent at any time in accordance with Art. 7 Para. 3 GDPR. This has the consequence that we may no longer continue the data processing based on this consent in the future;
  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
  • demand the correction of incorrect or incomplete personal data stored by us without delay in accordance with Art. 16 GDPR;
  • pursuant to Art. 17 GDPR to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • to request the restriction of the processing of your personal data in accordance with Art. 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
  • pursuant to Art. 20 GDPR to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request the transfer to another controller;
  • object to the processing of your personal data in accordance with Art. 21 GDPR, insofar as the processing is based on our legitimate interest and there are grounds for the objection that arise from your particular situation and complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.