1. Data Protection at a Glance
Data Collection on Our Website
Who Is Responsible for Data Collection on This Website?
Data processing on this website is carried out by the website operator. You can find their contact details in the site’s legal notice (Impressum).
How Do We Collect Your Data?
We collect your data primarily when you provide it to us. This may include data that you enter into a contact form, for example.
Other data is automatically collected by our IT systems when you visit our website. This is primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.
What Do We Use Your Data For?
Some of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior.
What Rights Do You Have Regarding Your Data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction, blocking, or deletion of this data. For this purpose and for any further questions regarding data protection, you can always contact us at the address provided in the legal notice. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
2. General Information and Mandatory Information
Please note that data transmission over the internet (e.g., when communicating by email) may have security vulnerabilities. A complete protection of the data against access by third parties is not possible.
The controller for data processing on this website is:
SILBERLAKE REAL ESTATE GROUP GMBH
PHONE: +49 (0) 211 730 698 0
The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Data Protection Officer Required by Law
We have appointed a data protection officer for our company.
LUTOP DATA-COMPLIANCE GMBH
PHONE: +49 201219694-70
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. An informal email to us is sufficient for this purpose. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
Right to Object to Data Collection in Special Cases and Direct Marketing (Art. 21 GDPR)
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection under Art. 21(2) GDPR).
Right to File Complaints with the Supervisory Authority
In the event of breaches of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or place of the alleged infringement. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.
Right to Data Portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent technically feasible.
SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
Encrypted Payments on This Website
If there is an obligation to provide us with your payment data (e.g., account number for direct debit authorization) after the conclusion of a fee-based contract, this data is required for payment processing.
Payment transactions using common means of payment (Visa/MasterCard, direct debit) are only made via encrypted SSL or TLS connections. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
In the case of encrypted communication, your payment data that you transmit to us cannot be read by third parties.
Information, Blocking, Deletion
Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients and the purpose of data processing and, if applicable, a right to correct, block, or delete this data. For this purpose, as well as for further questions regarding personal data, you can contact us at any time at the address given in the legal notice.
RIGHT TO RESTRICTION OF PROCESSING
You have the right to request the restriction of the processing of your personal data. To exercise this right, you can contact us at any time using the contact information provided in the imprint. The right to restriction of processing applies in the following cases:
If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data has been or is being carried out unlawfully, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data but you require it for the exercise, defense, or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection according to Article 21(1) of the GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, these data may – apart from their storage – only be processed with your consent or for the assertion, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a Member State.
3. DATA COLLECTION ON OUR WEBSITE
Our website uses so-called cookies in part. Cookies do not harm your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser when you visit us again.
You can configure your browser to inform you about the setting of cookies, allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when you close your browser. Disabling cookies may limit the functionality of this website.
Cookies that are necessary for the performance of electronic communication processes or for the provision of certain functions requested by you (e.g., shopping cart function) are stored based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in storing cookies for the error-free and optimized provision of its services. If other cookies (e.g., cookies for analyzing your browsing behavior) are stored, they will be separately addressed in this data protection declaration.
COOKIE CONSENT WITH BORLABS COOKIE
Our website uses the cookie consent technology from Borlabs Cookie to obtain your consent for storing certain cookies in your browser and to document this data protection-compliantly. The provider of this technology is Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg (hereinafter referred to as Borlabs).
When you enter our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not passed on to the provider of Borlabs Cookie.
The data collected will be stored until you ask us to delete it or until the Borlabs cookie is deleted, or the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected. Details on data processing by Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.
If you send us inquiries via the contact form, your information from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.
The processing of the data entered in the contact form is thus exclusively based on your consent (Article 6(1)(a) of the GDPR). You can revoke this consent at any time. An informal message by email to us is sufficient for this purpose. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions – especially retention periods – remain unaffected.
REQUESTS VIA EMAIL, PHONE, OR FAX
If you contact us via email, phone, or fax, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of processing your request. We will not share this data without your consent.
The processing of this data is based on Article 6(1)(b) of the GDPR, insofar as your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Article 6(1)(a) of the GDPR) and/or on our legitimate interests (Article 6(1)(f) of the GDPR), as we have a legitimate interest in the effective processing of the requests directed to us.
The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions – especially legal retention periods – remain unaffected.
4. Plugins and Tools
This website utilizes the Google Maps mapping service through an API. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
To use the features of Google Maps, it is necessary to store your IP address. This information is typically transmitted to a Google server in the United States and stored there.
The provider of this website has no influence over this data transmission.
The use of Google Maps is for the purpose of visually presenting our online offerings and making it easy to locate the places we specify on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
5. Hosting and Content Delivery Networks (CDN)
This website is hosted by an external service provider (hoster). Personal data collected on this website is stored on the hoster’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access, and other data generated via a website.
The use of the hoster is for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and for the purpose of ensuring a secure, fast, and efficient provision of our online services by a professional provider (Art. 6 para. 1 lit. f GDPR).
Our hoster will only process your data to the extent necessary to fulfill its obligations and will follow our instructions regarding this data.
Conclusion of a Data Processing Agreement
To ensure data protection-compliant processing, we have concluded a data processing agreement with our hoster.
6. Our Services
Handling of Applicant Data
We offer you the opportunity to apply to us (e.g., via email, postal mail, or online application form). In the following, we will inform you about the scope, purpose, and use of your personal data collected during the application process. We assure you that the collection, processing, and use of your data will be in accordance with applicable data protection laws and all other legal requirements and will be treated with strict confidentiality.
Scope and Purpose of Data Collection
When you submit an application to us, we will process your associated personal data (e.g., contact and communication data, application documents, notes from job interviews, etc.) to the extent necessary to decide on the establishment of an employment relationship.
The legal basis for this is § 26 BDSG-new according to German law (initiation of an employment relationship), Art. 6 para. 1 lit. b GDPR (general contract initiation), and – if you have given your consent – Art. 6 para. 1 lit. a GDPR. Consent is revocable at any time. Your personal data will only be passed on within our company to persons who are involved in the processing of your application.
If the application is successful, the data submitted by you will be stored on the basis of § 26 BDSG-new and Art. 6 para. 1 lit. b GDPR for the purpose of carrying out the employment relationship in our data processing systems.
Retention Period of Data
If we cannot offer you a position, you decline a job offer, or you withdraw your application, we reserve the right to retain the data you have submitted on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR) for up to 6 months after the end of the application process (rejection or withdrawal of the application). Afterward, the data will be deleted, and physical application documents will be destroyed. The retention serves in particular as evidence in the event of a legal dispute. If it is apparent that the data will be required after the 6-month period has expired (e.g., due to an impending or pending legal dispute), deletion will only take place when the purpose for further storage no longer applies.
A longer retention period can also take place if you have given corresponding consent (Art. 6 para. 1 lit. a GDPR) or if statutory retention obligations prevent deletion.
Inclusion in the Applicant Pool
If we do not offer you a position, there may be the possibility of including you in our applicant pool. In the event of inclusion, all documents and information from the application will be transferred to the applicant pool to contact you in case of suitable vacancies.
Inclusion in the applicant pool is based solely on your express consent (Art. 6 para. 1 lit. a GDPR). Giving consent is voluntary and is not related to the ongoing application process. The data subject can revoke their consent at any time. In this case, the data from the applicant pool will be irrevocably deleted unless there are legal storage obligations.
The data from the applicant pool will be deleted no later than two years after consent is granted.
Our Social Media Presence
Data Processing by Social Networks
We maintain publicly accessible profiles on social networks. You can find details about the specific social networks we use below.
Social networks such as Facebook, Twitter, etc., can generally comprehensively analyze your user behavior when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). Visiting our social media presences can trigger numerous data protection-relevant processing operations. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media platform can assign this visit to your user account. Your personal data may be collected even if you are not logged in or do not have an account with the respective social media platform. This data collection may occur, for example, via cookies stored on your end device or by collecting your IP address.
With the help of the data collected in this way, the operators of the social media platforms can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you both inside and outside the respective social media presence. If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are logged in or were logged in.
Our social media presences are intended to ensure the widest possible presence on the Internet. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which are to be specified by the operators of the social networks (e.g., consent in the sense of Art. 6 para. 1 lit. a GDPR).
Controller and Exercise of Rights
When you visit one of our social media presences (e.g., Facebook), we, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can exercise your rights (information, correction, deletion, restriction of processing, data portability, and complaint) basically both towards us and towards the operator of the respective social media platform (e.g., towards Facebook).
Please note that despite the shared responsibility with the social media platform operators, we do not have full influence on the data processing operations of the social media platforms. Our possibilities are largely determined by the corporate policy of the respective provider.
The data directly collected by us via the social media presence will be deleted from our systems as soon as the purpose for their storage no longer applies, you request us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory legal provisions, especially retention periods, remain unaffected.
Social Networks in Detail
We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn has a certification under the EU-US Privacy Shield. LinkedIn uses advertising cookies.
If you want to disable LinkedIn advertising cookies, please use the following link: HTTPS://WWW.LINKEDIN.COM/PSETTINGS/GUEST-CONTROLS/RETARGETING-OPT-OUT.