Free cookie consent management tool by TermsFeed

Privacy Policy

Thank you for your interest in our website. We process personal data in connection with our website. The protection of personal data is of particular importance to us. We therefore process personal data exclusively in accordance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and the German Telecommunications Digital Services Data Protection Act (TDDDG). Below you will find information about us as the controller within the meaning of data protection law, details on the processing of personal data, the use of cookies and similar technologies, as well as information on your rights as a data subject.

A. Responsible Person and Data Protection Contact

I. Controller

Anding & Company GmbH

Munich Office:
Bavariaring 24
80336 Munich
Germany

Düsseldorf Office:
EUREF-Campus 1
40472 Düsseldorf
Germany

E-Mail: contact@anding.company

Managing Directors:

Lyudmyla Kovalenko, Markus Anding, Christoph Schierle

II. Data Protection Contact

Anding & Company GmbH has not appointed a data protection officer.

For all matters relating to data protection, you may contact us using the contact details stated above.

B. Processing of Personal Data I. Definitions

This privacy policy uses the terminology of the General Data Protection Regulation (GDPR). The relevant definitions can be found in Art. 4 GDPR.
The purpose of this policy is to provide clear and transparent information about the processing of personal data.

II. Provision of the Website and Log Files

When you visit our website, our systems automatically collect and store information from the accessing device. This includes:

  • IP address
  • Date and time of access
  • Browser type and version
  • Operating system
  • Referrer URL
  • Accessed pages

The temporary storage of the IP address is technically necessary to deliver the website to your device.

Legal basis:
Art. 6 (1)(f) GDPR (legitimate interest).
Our legitimate interest lies in ensuring the security, stability, and technically error-free operation of our website.

III. Access to and Storage of Information on End Devices

Access to information stored on your device or the storage of information on your device takes place only:

  • where technically necessary pursuant to Section 25 (2) no. 2 TDDDG, or
  • with your consent pursuant to Section 25 (1) TDDDG in conjunction with Art. 6 (1)(a) GDPR

Consent may be withdrawn at any time with effect for the future.


C. Web Hosting

This website is hosted by:

Webflow, Inc.
399 Olive Way, Suite 300
Seattle, WA 98101
United States

The following data may be processed through the hosting service:

  • IP addresses
  • Contact requests
  • Meta and communication data
  • Website access data

Processing is carried out to ensure secure, stable, and technically error-free operation of the website.

Legal basis:
Art. 6 (1)(f) GDPR (legitimate interest).

A data processing agreement pursuant to Art. 28 GDPR has been concluded with Webflow, Inc.

Data transfer to third countries:
Personal data may be transferred to the United States.
Webflow, Inc. is certified under the EU–US Data Privacy Framework. Where required, additional safeguards such as Standard Contractual Clauses pursuant to Art. 46 GDPR apply.

D. Storage Duration and Data Deletion

For reasons of technical security, log data is stored for a limited period.

  • IP addresses are anonymized after 7 days
  • No combination with other personal data
  • No disclosure to unauthorized third parties

E. No Obligation to Provide Data

There is no legal or contractual obligation to provide personal data. However, failure to provide technically required data may result in limited website functionality.

F. Handling of Applicant Data

I. Purpose and Scope

Applicants may apply via email or online forms.

During the application process, we process personal data exclusively for recruitment purposes and pre-contractual measures.

Processed data may include:

  • Name
  • Email address
  • Phone number
  • Application source
  • Application documents (CV, certificates, cover letter)

Legal basis:
Art. 6 (1)(b) GDPR in conjunction with §26 (1) BDSG.

II. Storage Duration

  • Application data: 6 months after completion of the process
  • Talent pool (with consent): 12 months
  • In case of employment: transfer to personnel file

G. LinkedIn Insight Tag
We use the LinkedIn Insight Tag provided by:

LinkedIn Corporation
2029 Stierlin Court
Mountain View, CA 94043
USA

The LinkedIn Insight Tag enables us to analyze campaign effectiveness and create target groups.

Legal basis:
Art. 6 (1)(a) GDPR in conjunction with Section 25 (1) TDDDG (consent).



K. External Links

The LinkedIn Insight Tag is only activated after consent via the cookie banner.

LinkedIn is certified under the EU–US Data Privacy Framework.

Privacy Policy:
https://www.linkedin.com/legal/privacy-policy

H. Visitor Data (Office Visits)

Visitors to our offices may be required to register via Microsoft Forms, provided by:

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Legal basis:
Art. 6 (1)(f) GDPR (legitimate interest in security).

Microsoft acts as a processor pursuant to Art. 28 GDPR.

Data is deleted no later than 14 days after collection.

Microsoft is certified under the EU–US Data Privacy Framework. Where necessary, Standard Contractual Clauses apply.

I. Cookies

I. General Information

Cookies are small text files stored on your device.
We distinguish between:

  • Session cookies
  • Permanent cookies
  • First-party cookies
  • Third-party cookies
  • Essential cookies
  • Statistical and marketing cookies

II. Consent Management

Cookies requiring consent are set only after explicit consent pursuant to Art. 6 (1)(a) GDPR and Section 25 (1) TDDDG.

Consent can be withdrawn at any time via the cookie settings.

III. Browser Settings

Users may manage cookies via browser settings.
Please note that disabling cookies may restrict website functionality.

J. Rights of Data Subjects
You have the following rights:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right to withdraw consent (Art. 7 (3) GDPR)

You also have the right to lodge a complaint with a supervisory authority, in particular:

Bavarian State Office for Data Protection Supervision (BayLDA)
Postfach 1349
91504 Ansbach
Germany

K. External Links

We have no influence over the content or data protection practices of external websites linked on our site.

L. Automated Decision-Making
Automated decision-making or profiling pursuant to Art. 22 GDPR does not take place.

M. Subject to Change
We reserve the right to amend this privacy policy to reflect legal or technical changes.
The current version applies at the time of your visit.