Privacy Policy

We are delighted that you have shown interest in our enterprise. Data protection is of a particularly high priority for bondingb. It is bondingb.'s policy to respect your privacy regarding any information we may collect from you across our website, https://bondingb.com.

The processing of personal data of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to bondingb. (Germany). By means of this data protection declaration, data subjects are informed of the rights to which they are entitled.

This means, that this Privacy Policy is also meant to explain to you how we collect, store, process and use your personal information. Please do read it carefully. If you have questions or concerns regarding this Privacy Policy, you may contact us.

The use of the website and the corresponding Internet pages of bondingb. is possible without any indication of personal data. We only ask for personal information when we truly need it to provide a service to you. We collect it by fair and lawful means, with your knowledge and consent.

Generally we will collect and use personal data of data subjects only if and to the extent necessary to make available a functional website and/or to provide our content and services. Personal data of a data subject generally will be collected and/or used only with the prior consent of the data subject.

However, we may collect, store, process and use your personal information for certain services. An exception applies for example in cases where obtaining prior consent is practically impossible and where data processing is permitted by applicable law.

Processing of personal data could become necessary, when a data subject wants to use special services (e.g. "contact form") via our website. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.

In terms of EU data protection legislation, bondingb. is the data controller. We only retain collected information for as long as necessary to provide you with your requested service.

What data we store, we’ll protect within commercially acceptable means to prevent loss and theft, as well as unauthorised access, disclosure, copying, use or modification. However, Internet-based data transmissions may in general have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative ways, e.g. by telephone or mail.

We don’t share any personally identifying information publicly, except when required to by law.

Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and practices of these sites and cannot accept responsibility or liability for their respective privacy policies.

You are free to refuse our request for your personal information, with the understanding that we may be unable to provide you with some of your desired services.

Your continued use of our website will be regarded as acceptance of our practices around privacy and personal information. If you have any questions about how we handle user data and personal information, feel free to contact us.

 

1) Definitions

The data protection declaration of bondingb. is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public, as well as our customers and business partners.

To ensure this, we explain the terms we use:

a) Personal data:

"personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

b) Data subject

"data subject" is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.

c) Processing

"processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

d) Restriction of processing

"restriction of processing" means the marking of stored personal data with the aim of limiting their processing in the future;

e) Data controller

"data controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

f) Third party

"third party" means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;

g) Consent

"consent" of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

h) Enterprise

"enterprise" means a natural or legal person engaged in an economic activity, irrespective of its legal form, including partnerships or associations regularly engaged in an economic activity.

2) Name and address of the controller

The controller within the meaning of the General Data Protection Regulation (hereinafter "GDPR") and other national data protection laws of EU countries and other data protection laws is:

Bonding Bridges GmbH
CEO: Stephanie von Schultz
Sachsentor 55
21029 Hamburg
Germany
E-Mail: stephanie.vonschultz@bondingb.com

3) Contact possibility

The website of bondingb. contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, this includes our address as well as our e-mail address. If a data subject contacts the controller by e-mail or via a contact form, the personal data transmitted by the data subject are automatically stored for the purpose of processing or contacting the data subject. There is no transfer of this personal data to third parties.

4) Collection and use of general data and information

The website of bondingb. collects a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website, (4) the sub-websites, (5) the date and time of access to the Internet site, (6) the IP address, (7) the Internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.

Such data will be stored in log files of our system. Such data are needed only to analyze any malfunctions and will be erased at the latest within seven days. The legal basis for temporarily storing data in log files is Art. 6 para. 1 let. f) GDPR. Temporary storage of the IP address for the system is necessary for making the website available to the terminal device of the user. For this purpose, the IP address of the user must be stored for the duration of the session. Data are stored in log files to ensure the functionality of our website. In addition, such data are used to optimize the website and to ensure the security of our IT systems.

When using these general data and information, bondingb. does not draw any conclusions about the data subject. Thus, data will not be analyzed for marketing purposes in this context, and we will draw no inferences as to your identity. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website, (3) ensure the long-term viability of our website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack.

Furthermore, we may use the information collected in the process of providing the service to data subject for the following purposes: (1) for identity verification, customer service, archival filing and backup, security protection and other purposes in relation to the provision of the service; (2) to help us improve the service quality, upgrade service functions and develop new functions.

The aforementioned purposes also provide the basis of our legitimate interest in data processing within the meaning of Art. 6 para. 1 let. f GDPR. Collecting data to make available the website and to store data in log files is necessary for operating the website. Consequently, users have no right to object to the collection or use of such data for the aforementioned purposes.

Therefore, bondingb. analyses anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

5) Collection and use of personal data and information

Personal information a data subject/ user provide to us is used by us to: (1) provide our recruitment services to a data subject, whether the data subject is a client, applicant/ candidate or a user of our website, (2) enable an applicant to submit his/ her CV generally or to apply for specific jobs, (3) provide information on suitable job opportunities to people who register with us, to match their profile with suitable job vacancies and to assist us in finding a position that is most suitable for an applicant including the evaluation of his/ her data against vacancies which we may have that we determine may be suitable for an applicant, (4) answer a data subject's enquiry, (5) provide other services related to or supplementary to the above; services directly to a data subject to his/ her professional or business email address; and (6) where we have a bona fide requirement by law to disclose it to third parties in relation to the detection of crime, the collection of taxes or duties, in order to comply with any applicable law and court order.

This list is not exhaustive and we may seek to process, use or disclose personal information for any other purpose which has not been listed above always with a data subject's explicit consent. Where appropriate, we will seek a data subject's consent to undertake some of these activities. We may also use the information a data subject send to us via the websites and/or services, to communicate with the data subject via email and, possibly, other means. However, data subjects will always be able to opt-out of such communications at any time (section 12).

We will generally collect and use personal data of our users only if and to the extent necessary to make available a functional website and/or to provide our content and services. Personal data of our users generally will be collected and/or used only with the prior consent of the user. An exception applies in cases where obtaining prior consent is practically impossible and where data processing is permitted by applicable law.

We do not share a data subject’s personal information to anyone except as set out herein. Primarily we will share personal information with prospective employers to increase a data subject’s chances of securing a job. Personal data will only be transmitted outside the EU (e.g. to prospective employers) if a data subject has given his/ her explicit consent to this transfer. Within the scope of the purposes outlined above, we may outsource collected personal information to outside contractors/third parties. If we do so, we will take contractual measures to ensure that they process a data subject’s data in a manner consistent with this Policy.

In the event of a sale, merger, receivership or transfer of all assets of our company, we reserve the right to assign or share personal information with such third parties and their advisers, a data subject will be sent notice of such an event should it occur with the ability to opt-out of such a transfer.

a) Legal basis for processing personal data

Insofar as we obtain the consent of the data subject for processing personal data, Art. 6 para. 1 let. a GDPR serves as the legal basis. Art. 6 para. 1 let. b GDPR serves as the legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This also applies to processing which is necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 let. c GDPR serves as the legal basis. If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh our interest, Art. 6 para. 1 let. f DSGVO serves as the legal basis for the processing.

Insofar as we disclose data to other persons and companies (commissioned processing or third parties) within the scope of our processing, transfer them to them or grant them access to the data, this only takes place on the basis of a legal permission (e.g. if a transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6 para. 1 let. b GDPR), if you have consented to it, if a legal obligation provides for it or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

If we commission third parties with the processing of data on the basis of a so-called "commissioned processing agreement", this is done on the basis of Art. 28 GDPR. If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or in the context of using third party services or of disclosure or transfer of data to third parties, this will only occur if it is done to fulfil our (pre)contractual obligations, on the basis of your consent, a legal obligation or on the basis of our legitimate interests.

Subject to legal or contractual permissions, we process or have the data processed in a third country only if the special requirements of Art. 44 et seq. GDPR are met. This means that the processing takes place, for example, on the basis of special guarantees, such as the officially recognised determination of a data protection level corresponding to the EU (e.g. in the USA the "Privacy Shield") or compliance with officially recognised special contractual obligations (so-called "standard contractual clauses").

b) Contact form, data protection in application procedures

When contacting us (e.g. via contact form, e-mail, telephone or social media), the user's data are processed for the purpose of processing the contact inquiry and processing it in accordance with Art. 6 para. 1 let. b GDPR. User data may be stored in a customer relationship management system ("CRM system") or a comparable enquiry organisation.

The data controller collects and processes the personal data of applicants/candidates for the purpose of processing the application procedure. The processing can also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents electronically, for example by e-mail or via a form on the website, to the data controller.

If the data controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the data controller does not conclude an employment contract with the applicant, the application documents shall be automatically deleted six months after notification of the rejection decision, unless deletion conflicts with any other legitimate interests of the data controller. Any other legitimate interest in this sense is, for example, a burden of proof.

When establishing contact with us (e.g. by contact form, e-mail, telephone or social media), the data subject's details are processed in order to process the contact enquiry and its processing in accordance with Art. 6 para. 1 let. b GDPR. We delete the inquiries if they are no longer necessary. Furthermore, the statutory archiving obligations apply.

c) Purposes for which personal data will be processed and legal basis for processing

Matching suitable candidates – as single candidates or in teams – and companies/ customers for the purpose of concluding an employment contract. The processing is based on Art. 6 para. 1 let. f GDPR.

d) Categories of personal data to be processed

We receive and store information that an applicant provide directly to us. For example, we collect personal information, such as name, age, contact details including email, postal address, Xing or LinkedIn link, and telephone numbers, education details, employment history, current position, current employer, correspondence with candidate if applicable, and immigration status (and of course you may choose to share other relevant information with us).

e) Recipients or categories of recipients of personal data

Each internal department and/or team member which conducts recruiting for companies. The data will only be passed on to a potential employer with the candidate's consent. Any information which applicants provide to us is not made available to any third parties without their permission and is used by bondingb. only in line with the purpose for which the applicants provided it and in accordance with the Act.

f) Duration for which personal data are stored or, if that is not possible, the criteria for determining that duration

Data will be stored as long as the data subject is a potential candidate for exciting job offers.

g) If processing is based on Art. 6 para. 1 let. f GDPR, the legitimate interests pursued by the data controller or a third party

We want to address candidates as individually and personally as possible and only offer them jobs that we are convinced will fit the candidate perfectly. As part of our corporate network, we not only place individual candidates, but also put together cross-professional teams. Moreover, we have an economic interest in placing vacancies.

h) Source from which the personal data originates and, if applicable, whether it originates from publicly accessible sources;

Xing, LinkedIn, Twitter, Facebook or Instagram (public data).

6) Cookies

The website of bondingb. uses cookies. Cookies are text files that are stored in a computer system via an Internet browser. Cookies are downloaded to a device when a visitor accesses a website, so that the website will remember you.

Through the use of cookies, bondingb. can provide the users of this website with more user-friendly services that would not be possible without the cookie setting. Cookies allow us to make your visit to our website more enjoyable and to tailor the website to better match your demands. The cookies stored on your computer will remain effective permanently after your first visit to our website.

Functional and necessary cookies are always used because they enable "Squarespace", our hosting platform, to provide this website securely for our users.

Analytics and performance cookies are only used on this website if a user confirms our cookie banner. We use analytics cookies to gain insight into website traffic, website activity and other data.

For more information on how we use cookies, see The cookies Squarespace uses.

You can set your web browser to notify you when a website tries to put a cookie on your computer. You can also set your browser to reject cookies, thus permanently deny the setting of cookies. Furthermore, already set cookies can be deleted at any time via an Internet browser or other software programs.

However, if a data subject rejects a cookie or deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable. This means that a data subject may not be able to access or use certain functions of this website.

7) Erasure and blocking of personal data

The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.

Thus, personal data of a data subject will be erased or blocked as soon as they are no longer needed for the purposes for which they are stored. Data may also be blocked if provided for by EU or national regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or erased if recordkeeping obligations under the aforementioned norms expire, unless continued storage of such data is necessary to enter into or perform a contract.

If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased in accordance with legal requirements.

8) Links to other websites

The website of bondingb. may include or link to services or websites provided or operated by third parties. Using of the third party's service or providing of information to the third party shall be subject to the terms and conditions of the third party's terms of service and privacy policy, instead of our Privacy Policy. We are not responsible for the content or security of other sites that we link to.

9) Online presences in social media and implementation of third party services

We maintain online presences within social networks and platforms in order to communicate with customers, interested parties and users and to inform them about our services. When visiting the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply. Unless otherwise stated in our privacy policy, we process the data of users who communicate with us within the social networks and platforms, e.g. posting on our social media site or sending us messages.

Within our online services, we place links to these services of third parties on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 let. f GDPR). This always presupposes that third-party providers of this content collect the IP address of the user, since they could otherwise not transmit the content to their browser without the IP address. The IP address is therefore required for the presentation of this content.

We make every effort to use only content whose respective providers use the IP address only to deliver the content. Third party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Pixel tags can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, visit times and other information about the use of our online services, and be linked to such information from other sources.

a) Data protection regarding Facebook components

On this website, the controller has integrated components of the enterprise Facebook.

Facebook always receives, through Facebook components (plug-ins) integrated to individual pages of our website, information about a visit to our website by the data subject, whenever the data subject is logged in at the same time on Facebook during the time of the call-up to our website. You can find an overview of all the Facebook plug-ins here.

If such a transmission of information to Facebook is not desirable for you, then you may prevent this by logging off from your Facebook account before a call-up to our website is made.

The data protection guideline published by Facebook, provides information about the collection, processing and use of personal data by Facebook. In addition, it is explained there what setting options Facebook offers to protect the privacy of the data subject. Furthermore, different configuration options are made available to allow the elimination of data transmission to Facebook. These applications may be used by you to eliminate a data transmission to Facebook.

b) Data protection regarding Instagram

On this website, the controller has integrated components of the service Instagram.

If the data subject is logged in at the same time on Instagram, Instagram detects with every call-up to our website by the data subject - and for the entire duration of their stay on our website - which specific sub-page of our Internet page was visited by the data subject.

This information is collected through Instagram components (button) and is associated with the respective Instagram account of the data subject. This occurs regardless of whether the person clicks on the Instagram button or not. If the data subject clicks on one of the Instagram buttons integrated on our website, then Instagram matches this information with the personal Instagram user account of the data subject and stores the personal data.

If such a transmission of information to Instagram is not desirable for you, then you can prevent this by logging off from your Instagram account before you make a call-up to our website.

You can find further information and the applicable data protection provisions of Instagram here.

c) Data protection regarding Twitter

On this website, the controller has integrated components of Twitter.

If the data subject is logged in at the same time on Twitter, Twitter detects with every call-up to our website by the data subject and for the entire duration of their stay on our website which specific sub-page of our Internet page was visited by the data subject.

This information is collected through Twitter components (buttons) and associated with the respective Twitter account of the data subject. This occurs regardless of whether the person clicks on the Twitter component or not. If the data subject clicks on one of the Twitter buttons integrated on our website, then Twitter assigns this information to the personal Twitter user account of the data subject and stores the personal data.

If such a transmission of information to Twitter is not desirable for you, then you may prevent this by logging off from your Twitter account before you make a call-up to our website.

You can find the applicable data protection provisions of Twitter here.

10) The service of this website is provided by Squarespace. You can find detailed information on what personal data is collected and how it is being used in their data processing agreement.

11) Update of the Privacy Policy

If we decide to update our Privacy Policy, we will post the updated Privacy Policy on our website through a web notification (pop-up) prior to the effectiveness of the new Privacy Policy, so that you will know what information has been changed. Your continued use of the service will be deemed as acceptance of the updated Privacy Policy. If you do not agree to the updated provisions, you should not visit our website.

12) Each data subject shall have rights granted by the European legislator. You can find an overview of your rights here. If you wish to avail yourself of certain rights, you may, at any time, contact us.

 

Contact us

If you have any questions about this Privacy Policy, please feel free to contact us here or via e-mail: info@bondingb.com.