Back to the cookie settings

Data protection

Data protection - nicos AG

Data protection

1. Data protection at a glance

General information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to identify you personally. Detailed information on the subject of data protection can be found in our data protection declaration listed below this text.

Data collection on our website

Who is responsible for data collection on this website?

The processing of data on this website is performed by the website operator. You will find the operator's contact information in this website's legal notice.

How do we collect your data?

On the one hand, your data is collected when you provide it to us. This may, for example, be data that you enter in a contact form.

Other data is collected automatically by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website.

What do we use your data for?

Some of the data is collected to ensure that the website is error-free. Other data may be used to analyze user behavior.

What rights do you have with regard to your data?

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. You can contact us at any time at the address given in the legal notice if you have any further questions on the subject of data protection. You also have the right to lodge a complaint with the competent supervisory authority.

You also have the right to request the restriction of the processing of your personal data under certain circumstances. For details, please refer to the privacy policy under "Right to restriction of processing".

2. General notes and mandatory information

Data protection

The operators of this website take the protection of your personal data extremely seriously. We handle your personal data in strict confidence and in compliance with statutory data protection regulations, as well as according to this privacy notice.

When you use this website, various forms of personal data are collected. Personal data refers to data which allows you to be personally identified. This privacy notice explains which data we collect and what we use it for. It also explains how and for what purpose this takes place.

We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. Complete protection of data against access by third parties is not possible.

Information on the controller

The controller responsible for data processing on this website is:

nicos AG
Robert-Bosch-Str. 17a
48153 Münster
Germany
Phone: +49 251 986 330
E-mail: info@nicos-ag.com

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

Withdrawal of your consent for data processing

Many data processing operations are only possible with your express consent. You can withdraw your consent at any time. All you need to do is send us an informal e-mail. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to data collection in special cases, as well as to direct marketing (Art. 21 GDPR)

If data processing is carried out on the basis of Art. 6 para. 1 lit. e or f GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this privacy policy. If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims (objection pursuant to Art. 21 (1) GDPR).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection pursuant to Art. 21 (2) GDPR).

Right to lodge a complaint with the competent supervisory authority

In cases of violations of the GDPR, data subjects are entitled to lodge a complaint with a su-pervisory authority, in particular in the member state of their habitual residence, place of work, or place of the alleged infringement. The right to lodge a complaint shall exist without prejudice to other administrative law or judicial remedy.

Right to data portability

You have the right to have data which we automatically process based on your consent or as part of the fulfillment of a contract handed over to you or a third party in a commonly used, machine-readable format. If you request direct transmission of the data to another controller, this shall only take place where technically feasible.

SSL and TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

When SSL and/or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.

Information, blocking, deletion and correction

Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data at any time. You can contact us at any time at the address given in the legal notice if you have further questions on the subject of personal data.

Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time at the address given in the legal notice. The right to restriction of processing exists in the following cases:

If you dispute the accuracy of your personal data stored by us, we generally need time to check this. For the duration of the review, you have the right to request that the processing of your personal data be restricted.

If the processing of your personal data was/is carried out unlawfully, you can request the restriction of data processing instead of erasure.

If we no longer need your personal data, but you need it for the exercise, defense or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.

If you have lodged an objection in accordance with Art. 21 (1) GDPR, your interests and our interests must be weighed up. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, this data - apart from its storage - may only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.

3. Data protection officer

Data protection officer required by law

We have appointed a data protection officer for our company.

Legal Manager | Cert. Data Protection Officer (TÜV)
Ramona Mach
Tel: +49 251 986 33-5630
E-mail: datenschutz@nicos-ag.com

4. data collection on our website

Inquiries via e-mail, telephone, or fax

When you contact us via e-mail, telephone, or fax, we will store and process your inquiry including all the resulting personal data (name, inquiry) for the purposes of processing your concern. We will not disclose this data without your consent.

This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and / or on our legitimate interests (Art. 6 para. 1 lit. f GDPR), as we have a legitimate interest in the effective processing of the inquiries addressed to us.

The data you send to us via contact requests will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

Contact form

When you send us inquiries via a contact form, we will save your information from the inquiry form including the contact data you have specified in it for the purpose of processing the in-quiry and in case of follow-up questions. We will not disclose this data without your consent.

The data entered in the contact form is therefore processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. All you need to do is send us an informal email. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions - in particular retention periods - remain unaffected.

5. Analysis tools and advertising

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

Google Analytics cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.

IP anonymization

We have activated the IP anonymization feature on this website. This means that Google will truncate your IP address within member states of the European Union or in other countries which are contracting parties to the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website in order to compile re-ports on website activity and to provide the website operator with additional services related to website and Internet use. The IP address transmitted by your browser as part of Google Analytics will not be combined with other data from Google.

Browser plugin

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

Objection to data collection

An opt-out cookie will be set to prevent your data from being collected on future visits to this website. Please click here to deactivate the collection of data by Google Analytics for this website.

For more information on how Google Analytics handles user data, please refer to Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

Order data processing

We have concluded a contract with Google for commissioned data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Demographics by Google Analytics

This website uses the "demographic characteristics" function of Google Analytics. This allows reports to be created that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google and from visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as described in the section "Objection to data collection".

6. Plugins and tools

Google Maps

This site uses the Google Maps map service via an API. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

You can find more information on the handling of user data in Google's privacy policy:
https://policies.google.com/privacy?hl=de.

Google Web Fonts

This site uses so-called web fonts provided by Google for the uniform display of fonts. When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must connect to Google's servers. As a result, Google becomes aware that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/.

Liability for links

Our website contains links to external third-party websites over whose content we have no influence. Therefore, we cannot accept any liability for this third-party content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal content was not recognizable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete evidence of an infringement. If we become aware of any legal infringements, we will remove such links immediately.

Copyright

The content and works created by the site operators on these pages are subject to German copyright law. Duplication, processing, distribution and any kind of exploitation outside the limits of copyright law require the written consent of the respective author or creator. Downloads and copies of this site are only permitted for private, non-commercial use. Insofar as the content on this site was not created by the operator, the copyrights of third parties are respected. In particular, third-party content is identified as such. Should you nevertheless become aware of a copyright infringement, please inform us accordingly. If we become aware of any infringements, we will remove such content immediately.

Liability for content

As a service provider, we are responsible for our own content on these pages in accordance with Section 7 (1) TMG (German Telemedia Act) and general legislation. According to §§ 8 to 10 TMG, however, we as a service provider are not obliged to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information in accordance with general legislation remain unaffected by this. However, liability in this respect is only possible from the time of knowledge of a specific infringement. As soon as we become aware of such infringements, we will remove this content immediately.

Privacy policy: nicos recruiting page

General information
We are providing you with this privacy policy, which relates exclusively to the data collected as part of the online application process, to inform you about how we handle your personal data collected as part of the application process.

Controller pursuant to data protection laws:

nicos AG
Robert-Bosch-Str. 17a
48153 Münster
Phone: +49 251 986 330
E-mail: info@nicos-ag.com

Entry in the commercial register
Register number:HRB5908
Register court:Münster Local Court

Data Protection Officer:

Legal Manager | Cert. Data Protection Officer (TÜV)
Ramona Mach
Tel: +49 251 986 33-5630
E-mail: datenschutz@nicos-ag.com

1. Personal data in the application process

Personal data refers to information about the personal or factual circumstances of an identi-fied or identifiable natural person. This includes information such as your name, address, phone number, and date of birth, as well as information about your specific job history, etc. that can be associated with a specific person with a reasonable amount of effort. In contrast, information that is not (in)directly associated with your real identity is not personal data.

2. Basis and purposes of the processing of personal data for applications and in the application process

If you submit your application to us electronically, i.e., by e-mail or via our web form, we will collect and process your personal data for the purpose of processing your application and carrying out pre-contractual measures.  By submitting an application on our recruiting page, you express your interest in taking up employment with us. In doing so, you provide us with personal information that we will use and store solely for the purpose of your job search/application.  In particular, the following data is collected:

  • Name (first and last name)
  • E-mail address
  • Phone number
  • LinkedIn profile (optional)
  • How you heard about us

You may also upload supporting documents such as a cover letter, your resume, and certifi-cates. These may contain additional personal data, such as your date of birth, address, etc.  Only authorized HR personnel or those involved in the application process have access to your information.  This personal data is stored exclusively for the purpose of filling the vacant position for which you have applied.  Your data will be stored for a period of 180 days after the end of the application process. This is usually done to comply with legal obligations or to defend against any claims arising under the law. We are subsequently obliged to delete or anonymize your data. In this case, the data will be available to us only as metadata without any direct reference to your identity for sta-tistical evaluations (e.g., proportion of women or men applying, number of applications in a particular period, etc.).  In addition, we reserve the right to keep your information in our talent pool for 365 days after the end of the application process in order to identify other opportunities that may be of in-terest to you. This also includes, for example, applications for an apprenticeship or intern-ship. By accepting the privacy notice, you consent to further storage of your data and inclu-sion in our talent pool.  If you receive an offer of employment with us during the application process and accept it, we will store the personal data collected during the application process for at least the duration of the employment relationship.

3. Disclosure of data to third parties

The data transmitted as part of your application will be transferred using TLS encryption and stored in a database. This database is managed by Personio GmbH, which offers personnel administration and applicant management software (https://www.personio.de/impressum/). Personio is our processor in this context in accordance with Art. 28 GDPR. The basis for the processing is a data processing agreement between us as the controller and Personio.

4. Rights of data subjects

If personal data is processed by us as the controller, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and purpose of the processing.

Rights of data subjects affected by data processing

As a data subject, you are generally entitled to the following rights, provided that contractual and legal obligations do not conflict with this and the conditions specified in the individual articles are met:

  • Right of access (Art. 15 GDPR) with the restrictions according to Sections 34, 35 of the Federal Data Protection Act (BDSG), new version;
  • Right to rectification of inaccurate data (Art. 16 GDPR);
  • Right to erasure (Art. 17 GDPR) with the restrictions according to Sections 34, 35 BDSG, new version;
  • Right to restriction of processing of personal data (Art. 18 GDPR);
  • Right to data portability (Art. 20 GDPR);
  • Right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR);
  • Right to object on a case-by-case basis (Art. 21(1) GDPR) for reasons arising from your particular situation and relating to data processing in accordance with Art. 6(1)(e) GDPR and Art. 6(1)(f) GDPR. The objection can be addressed to the aforementioned contact details.

The supervisory authority responsible for us is the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia (LDI NRW), Kavalleriestr. 2-4, 40213 Düsseldorf, phone: +49 (0)211/38424-0, e-mail:  poststelle@ldi.nrw.de

Please contact our data protection officer (see above) to assert your rights as a data subject with regard to the data processed in this online application process.

5. Appointment booking via Microsoft Bookings

Our website uses the Microsoft Bookings service (part of Microsoft Office 365) for online appointments. Microsoft Bookings is provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18 D18 P521 (hereinafter: "Microsoft"). Further information on how your data is handled can be found in Microsoft's privacy policy.

With Microsoft Bookings, it is possible to make an appointment with one of our employees. Once the booking has been made, you will receive an automatic confirmation email with further details of your appointment. If necessary, the responsible employee will get in touch with you via the contact address you have provided to clarify further details of the appointment in advance.

Insofar as data is processed outside the EU/EEA, we have concluded the standard contractual clauses adopted by the EU Commission (Art. 46 GDPR) with the service provider to ensure a secure level of data protection.

The legal basis for the processing of your data in connection with the "Microsoft Bookings" service is Art. 6 para. 1 sentence 1 lit. f) GDPR (legitimate interest in data processing). The legitimate interest arises from our desire to be able to arrange an appointment for you with one of our employees. We would like to point out that you are not obliged to use Microsoft Bookings. If you do not wish to use the service, please use another of the contact options offered to make an appointment.

We store your data for as long as it is required for the organization of the appointment. As soon as the desired appointment has been carried out, the data will be deleted. We may be subject to statutory retention periods so that your personal data may continue to be stored.

6. Final provisions

We reserve the right to amend this privacy notice at any time to ensure that it always com-plies with current legal requirements or to reflect changes in the application process, etc. If you visit this recruiting page again or submit a new application, the new privacy notice will apply.

Data protection information for online meetings, telephone conferences & webinars via "Zoom" from nicos AG

We would like to inform you below about the processing of personal data in connection with the use of "Zoom".

Purpose of the processing

We use the "Zoom" tool to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: "online meetings"). "Zoom" is a service provided by Zoom Video Communications, Inc. based in the USA.

Person responsible

The controller for data processing that is directly related to the holding of "online meetings" is

nicos AG
Robert-Bosch-Str. 17a
48153 Münster
Phone: +49 251 986 330
E-mail: datenschutz@nicos-ag.com

Note: If you access the "Zoom" website, the provider of "Zoom" is responsible for data processing. However, accessing the website is only necessary for the use of "Zoom" in order to download the software for the use of "Zoom".

You can also use "Zoom" if you enter the relevant meeting ID and any other access data for the meeting directly in the "Zoom" app.

If you do not want to or cannot use the "Zoom" app, the basic functions can also be used via a browser version, which you can also find on the "Zoom" website.

What data is processed?

Various types of data are processed when using "Zoom". The scope of the data also depends on the data you provide before or when participating in an "online meeting".

The following personal data is generally processed:

User details: first name, last name, telephone (optional), e-mail address, password (if "single sign-on" is not used), profile picture (optional), department (optional)

Meeting metadata: Topic, description (optional), participant IP addresses, device/hardware information

For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of the online meeting chat.

When dialling in with the telephone: information on the incoming and outgoing phone number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be saved.

Text, audio and video data: You may have the option of using the chat, question or survey functions in an "online meeting". In this respect, the text entries you make are processed in order to display them in the "online meeting" and, if necessary, to log them. In order to enable the display of video and the playback of audio, the data from the microphone of your end device and from any video camera of the end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time via the "Zoom" applications.

To take part in an "online meeting" or to enter the "meeting room", you must at least provide information about your name.

Scope of processing

We use "Zoom" to conduct "online meetings". If we want to record "online meetings", we will inform you transparently in advance and - if necessary - ask for your consent. The fact of the recording will also be displayed to you in the "Zoom" app.

If it is necessary for the purposes of logging the results of an online meeting, we will log the chat content. However, this will not usually be the case.

In the case of webinars, we may also process the questions asked by webinar participants for the purposes of recording and following up webinars.

If you are registered with "Zoom" as a user, reports on "online meetings" (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) can be stored for up to one month at "Zoom".

Automated decision-making within the meaning of Art. 22 GDPR is not used.

Legal basis for data processing

Insofar as personal data of nicos AG employees is processed, Section 26 BDSG is the legal basis for data processing. If, in connection with the use of "Zoom", personal data is not required for the establishment, implementation or termination of the employment relationship, but is nevertheless an elementary component of the use of "Zoom", Art. 6 para. 1 lit. f) GDPR is the legal basis for data processing. In these cases, our interest lies in the effective conduct of "online meetings".

In addition, the legal basis for data processing when conducting "online meetings" is Art. 6 para. 1 lit. b) GDPR, insofar as the meetings are conducted within the framework of contractual relationships.

If there is no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) GDPR. Here too, we are interested in the effective conduct of "online meetings".

Recipients / forwarding of data

Personal data that is processed in connection with participation in "online meetings" is not passed on to third parties unless it is intended to be passed on. Please note that content from "online meetings", as with face-to-face meetings, is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on.

Other recipients: The provider of "Zoom" necessarily receives knowledge of the above-mentioned data, insofar as this is provided for in the context of our order processing contract with "Zoom".

Data processing outside the European Union

"Zoom" is a service provided by a provider from the USA. Personal data is therefore also processed in a third country. We have concluded an order processing contract with the provider of "Zoom" that meets the requirements of Art. 28 GDPR.

An appropriate level of data protection is guaranteed on the one hand by the "Privacy Shield" certification of Zoom Video Communications, Inc. and on the other hand by the conclusion of the so-called EU standard contractual clauses.

Data protection officer

We have appointed a data protection officer.

You can reach them as follows:

Legal Manager | Cert. Data Protection Officer (TÜV)
Ramona Mach
Tel: +49 251 986 33-5630
E-mail: datenschutz@nicos-ag.com

Your rights as a data subject

You have the right to information about the personal data concerning you. You can contact us at any time for information.

In the case of a request for information that is not made in writing, we ask for your understanding that we may require proof from you that you are the person you claim to be.

Furthermore, you have a right to rectification or erasure or to restriction of processing, insofar as you are legally entitled to do so.

Finally, you have the right to object to the processing within the framework of the legal requirements.

There is also a right to data portability within the framework of data protection regulations.

Deletion of data

We generally delete personal data when there is no need for further storage. A requirement may exist in particular if the data is still needed to fulfill contractual services, to check and grant or defend against warranty and guarantee claims. In the case of statutory retention obligations, deletion will only be considered after the respective retention obligation has expired.

Right to lodge a complaint with a supervisory authority

You have the right to complain to a data protection supervisory authority about the processing of personal data by us.

Amendment of this data protection notice

We will revise this data protection information in the event of changes to data processing or other occasions that make this necessary. You will always find the current version on this website.

Status: 30.04.2024