Data Protection Notice for your participation in the event “Digital After Work @Fresenius”

Thank you for your interest in Fresenius. The protection of your personal data during the entire application process is important to us and we want you to feel secure when visiting our website. Below we would like to explain which data we collect via our website  https://afterwork.fresenius.com and what happens with this data. However, our websites may contain links to websites which are not covered by this data protection notice.

The processing of personal data is subject to the EU General Data Protection Regulation (“GDPR”). This data protecstion notice informs you about which and how your personal data is processed during the use of the websites and during the application process.

By "personal data" we mean all information that identifies you or makes you identifiable.

By “processing” we mean any operation which is performed on personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

With this data protection information, we explain to you in detail:

  • Who is responsible for processing your personal data, and who you can contact if you have questions or complaints (section 1)
  • How we collect your data, what data we collect and for what purposes we process this personal data (section 2 and 4) 
  • What kind of cookies will be used (section 3 and 4)
  • To whom we may transfer your personal data (section 4, 5 and 6)
  • How you can update, correct or even delete this data and exercise other rights in relation to your data (section 7)

1. Controller and Contact

1.1 Controller

In accordance with the GDPR, the data controller responsible for the use of your personal data is Fresenius SE & Co. KGaA, Else-Kröner-Straße 1, 61352 Bad Homburg vor der Höhe, Germany, e-mail: afterwork@fresenius.com

1.2 Data Protection Officer

According to the GDPR, we are obliged to provide you with a data protection officer.

You can also contact the data protection officer directly.

Fresenius SE & Co. KGaA: datenschutzbeauftragter@fresenius.com

2. Processing of your personal data

2.1 How we operate the websites

In the course of using the websites, we collect and store certain data automatically. This includes: the IP address or device ID assigned to the respective terminal device, which we require for the transmission of requested content (e.g. in particular content, texts, images and job information), the type of respective terminal device, the URL of the previously visited website, the browser type and operating system used, as well as date and time.

This data processing takes place in order to enable the use of the websites and the information contained therein.

We also keep this information for a maximum of 30 days for abuse detection and tracking purposes.

In addition, we delete or anonymize the usage data including IP addresses immediately as soon as they are no longer required for the aforementioned purposes.

The data is processed on the basis of statutory regulations which permit data processing because it is necessary for the provision of the website to the user (Art. 6 para. 1 lit. b GDPR) or because we have a legitimate interest in ensuring the security and operability of the service and its proper use, without this being opposed by an overriding interest of the persons concerned (Art. 6 para. 1 lit. f GDPR).

2.2 Application process

2.2.1 Application

If you apply, the personal data you provide in your application will be processed for the purpose of processing your application and carrying out the respective application and filling procedure for the event.

Personal data may include especially, without limitation the following information:

  • Last name, first name
  • Contact details (e.g. e-mail address, phone number)
  • Qualifications (e.g. previous degrees and experience such as internships, stays abroad, etc.)

The application data is processed on the basis of statutory provisions which permit data processing because it is necessary for the decision on the participation in the event (Art. 6 para. 1 lit. b GDPR).

In the event that we reject your application, we will delete your personal data three (3) months after the end of the event. In the event that we accept your application, we will also delete your personal data — whether or not you are actually attending the event — three (3) months after the end of the event, unless you have registered in our Fresenius Alumni retention program (see 2.2.3) before then. If this is the case, the separate data protection information provided there during the registration shall apply.

2.2.2 Successful Application

In the event that you are invited to participate in the event, we will also process the data mentioned in section 2.2.1 in order to enable your invitation and participation in the event. This includes, for example, sending an invitation, creating a list of participants and the general organization of the event.

The data is processed on the basis of legal provisions which permit data processing because it is necessary for the purpose of participation in the event (Art. 6 para 1 lit. b GDPR).

The Fresenius Digital After Work event will be held solely virtually as a Microsoft Team video conference. By the use of Microsoft Teams  we process  image and sound data during the video conference and we store any chats and shared files, as well as technical metadata. This data processing is carried out to enable you to participate in the video conference and to allow you to access the information shared during the videoconference, as well as for abuse detection and tracking purposes.

The data is processed on the basis of statutory provisions which permit data processing because it is necessary for the provision of the event to the user (Art. 6 para. 1 lit. b GDPR), or because we have a legitimate interest in ensuring the security and operability of the service and its proper use, without this being contrary to any overriding interest of the persons concerned (Art. 6 para. 1 lit. f GDPR).

Your data will be deleted twelve (12) months after the end of the event, unless you have registered in our Fresenius Alumni loyalty program (see 2.2.3) in the meantime. Should this be the case, the separate data protection information provided there during registration will apply.

2.2.3 E-Mail for the registration at Alumni

Furthermore, we process your personal data based on the consent you have given us for the sending of an e-mail for voluntary registration in our Fresenius Alumni retention program, which you declare when submitting your application. Typically, your e-mail address as well as your first and last name are processed. The processing takes place on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR as well as Art. 7 GDPR. Further information about the registration and the content of the Fresenius Alumni retention program will be made available separately during the registration process and is independent from this consent regarding the receipt of the registration e-mail.

3. Use of cookies

Cookies are text files containing information. They are stored on the hard disk of your computer and do not cause any damage there.

You can also view our website without cookies. Most Internet browsers automatically accept cookies. You can prevent cookies from being saved on your hard disk by selecting "do not accept cookies" in your browser settings. Please refer to your browser manufacturer's instructions to find out how this works in detail. You can delete cookies that have already been set on your computer at any time. If you do not accept cookies, however, this may lead to functional limitations of our offers.

The following list shows you which cookies are set by us in total. You can agree to the use of cookies via our cookie banner.

Name: _ga | Host: .fresenius.de | Purpose: This cookie is used to distinguish users. | Expiration: 2 years | Type:  HTTP Cookie

Name: _gid | Host: .fresenius.de | Purpose:  This cookie is used to distinguish users. | Expiration: 24 hours | Type:  HTTP Cookie

Name: _gat_UA-18449528-7| Host: .fresenius.de | Purpose: This cookie is used to throttle the request rate towards Google. | Expiration: 1 minute | Type:  HTTP Cookie

Name: _fbp | Host: .fresenius.de | Purpose: Used by Facebook to display a range of advertising products. | Expiration: 7 days | Type:  HTTP Cookie

Name: mc-optin | Host: .karriere.fresenius.de | Purpose: Opt-in for the use of Marketing Cookies. | Expiration: 2 years | Type:  HTTP Cookie

4. Usage analysis and remarketing

The use of the following services takes place on the basis of a consent you may have given (Art. 6 para 1 lt.1 GDPR).

You can revoke your consent at any time with effect for the future by clicking on the link below.

Revocation of the cookies

In the event of a revocation, we will not process your data further for the purposes mentioned under this section and the cookies we set for this purpose will be deleted.

4.1 Google Analytics

These websites use Google Analytics, a web analysis service provided by Google LLC ("Google"). Google Analytics uses cookies, which are text files placed on your device, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your shortened IP address) will be transmitted to and stored by Google on servers in the United States.

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.

You can find more detailed information about how Google uses your data in Google's Privacy Policy: https://www.google.com/policies/privacy/

You can disable Google Analytics using a browser add-on if you do not want the website analysis. You can download it here: http://tools.google.com/dlpage/gaoptout?hl=en

Alternatively, you can prevent cookies from being saved on your hard drive by selecting "do not accept cookies" in your browser settings. Please refer to your browser manufacturer's instructions to find out how this works in detail. You can delete cookies already set on your computer at any time. If you do not accept cookies, however, this may lead to functional limitations of our offers.

4.2 Google Remarketing

We use the marketing platform. Google uses cookies to record your usage behaviour on our website in order to display interest-based online advertising for our products on other pages within the Google advertising network. Further processing of data is only done if you have consented to Google linking your browsing history to your Google Account and using information from your Google Account to personalize ads you see on the web. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, your personal data is temporarily linked by Google with Google Analytics data to form target groups.

If you do not want Google to record your surfing behaviour for the purpose of displaying advertising, you have the following options in addition to the privacy settings of your browser and the selection of cookie preferences (see section 4.1 above):

4.3. Facebook pixel

The Facebook pixel is integrated on our website, which also places cookies on your computer. Through this, it is recorded when you perform certain actions on our website or visit certain areas of our website. In addition, usage data on a pseudonymous basis (such as URL, referrer URL, IP address, device and browser properties and timestamp) is recorded and transmitted to Facebook. If you have a Facebook profile and log in there, the data transmitted by the pixels can be used to present you with targeted individualized advertising for our products on Facebook.

For further information about the purpose and scope of data collection and the further processing and use of data by Facebook, as well as your settings options for protecting your privacy on Facebook, please refer to the Facebook privacy policy at https://de-de.facebook.com/privacy/explanation. Under the following link you will find information on how to stop data processing in connection with the Facebook pixel: https://www.facebook.com/help/769828729705201/.

Facebook is operated for users in the EU by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Your data may also be made available to other Facebook companies. This may involve the transfer of personal data to the USA or other third countries outside the European Economic Area. Facebook Ireland uses the standard contractual clauses approved by the EU Commission, which constitute a suitable guarantee in accordance with Art. 46 para. 2 lit. c GDPR for transfers to third countries.

5. Possible recipients or categories of recipients of your personal data

To fulfil the aforementioned purposes, we may need to share your personal information with others. These are service providers, such as companies that provide IT systems and IT support. If necessary, we may also have to share your data with authorities in the event of enquiries from these authorities.

6. International data transfers

In addition to the cases expressly mentioned in this data protection notice, any necessary transfer of personal data to recipients domiciled outside the European Economic Area shall in principle take place in compliance with the supplementary requirements of Art. 44 et seq. GDPR.

Generally, corresponding contracts are concluded with these recipients, which contain the EU Standard Contractual Clauses issued by the EU Commission to secure such international data transfers. The EU Standard Contractual Clauses used can be viewed here:

Your personal data may also be transferred to recipients in countries for which the European Union has already decided that European data protection requirements will be met. These are currently Argentina, Canada, New Zealand, Switzerland and Uruguay. A complete list of the countries with adequacy decisions can be found on the following page of the Hessian Data Protection Authority:

https://datenschutz.hessen.de/datenschutz/internationales/angemessenheitsbeschl%C3%BCsse

Ultimately, personal data can be transferred on the basis of an exception according to Art. 49 GDPR.

7. Your rights and your personal data

You have the following rights with respect to your personal data:

7.1 Right of access

You have the right to request from us, at any time, information on which personal data about you that we process [Art. 15 GDPR].

7.2 Right to rectification of incorrect data

If data about you is inaccurate, you have the right to obtain from us rectification of such data without undue delay [Art. 16 GDPR].

7.3 Right to deletion

Under specific circumstances you have the right to demand from us the deletion of your personal data [Art. 17 GDPR]. In particular, you may request that we delete personal data if (i) it is no longer necessary in relation to the purposes for which it was collected or otherwise processed, (ii) the personal data has been unlawfully processed, (iii) you object to the processing pursuant to Art. 21 para. 1 GDPR and there are no overriding legitimate grounds for the processing, (iv) the personal data must be deleted in order to comply with a legal obligation according to the law of the European Union or a Member State law to which we are subject, or (v) you withdraw your consent on which the processing is based, and there is no other legal ground for the processing.

7.4 Right to restriction of processing

You have the right to obtain from us a restriction of processing, when one of the following applies [Art. 18 GDPR]: (i) The accuracy of the personal data is contested by you, and for a period that enables us to verify its accuracy, (ii) the processing is unlawful but you oppose the deletion of the personal data and instead request a restriction on their use, (iii) we no longer need the personal data for the purposes of the processing but are required by you to keep them for the establishment, exercise or defence of legal claims, or (iv) you have objected to processing pursuant to Art. 21 GDPR as long as the verification of whether our legitimate interest override yours is pending.

7.5 Right to data portability

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format [Art. 20 GDPR].

In all of the above cases, please use the contact form or send your request to the postal or e-mail address stated above.

7.6 Right to object

Right to object

You have the right to object to the processing of your personal data based on Art. 6 para. 1 lit. f GDPR. We will cease processing your personal data unless we can prove that there are important legitimate reasons for the processing which outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend against legal claims.

7.7 Right to lodge a complaint

You also have the right to lodge a complaint with a regulatory authority. A list of regulatory authorities can be found here: https://edpb.europa.eu/about-edpb/board/members_en.

8. More information for specific situations and contacts

This data protection notice only informs you about the processing of personal data when participating in the Fresenius event “Digital After Work @Fresenius”. Please note that we may also process your personal data in other contexts, such as when you visit our website at www.fresenius.de. In these cases, please observe the information on the processing of your personal data relevant for each specific instance.

If you have any questions about data protection at Fresenius, please contact datenschutz@fresenius.com.