1. GENERAL NOTES AND MANDATORY INFORMATION
The following information provides a simple overview of how IFANO processes your personal data, for what purpose and what rights you have. Detailed information on the subject of data protection can be found in our detailed data protection declaration listed below this text.
We understand data protection as a customer-oriented quality feature. IFANO therefore takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. We adhere to the principle of data avoidance and only process as little personal data as possible. The data you transmit is protected by us using suitable technical and organizational measures to protect it from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously monitored and improved in line with technological developments and organizational possibilities.
As a matter of principle, IFANO does not pass on, sell, assign or otherwise disseminate your personal data to third parties, unless this is required by law, required in the context of contract processing or has been expressly approved by you.
What are personal data?
Personal data according to Art. 4 GDPR is all information that relates to an identified or identifiable natural person, ie all data that can be directly or indirectly assigned to you personally, e.g. name, address, telephone number, email address or date of birth.
Note on the responsible body
The responsible body is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).
The responsible body for data processing on this website is:
Phone: +49 551 607-119
Fax +49 551 607-81-119
Information, blocking, deletion, correction
Within the framework of the applicable legal provisions (Art. 15 GDPR) you have the right to free information about your stored personal data, their origin and recipient, the purpose of the data processing and, if necessary, a right to correction, restriction, blocking or deletion this data. You can contact us at any time at the address given in the legal notice or via if you have any further questions on the subject of personal data.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your already given consent at any time in accordance with Art. 7 Paragraph 3 GDPR. An informal message by email to us at is sufficient. As a result, we cannot and may no longer continue the data processing based on this consent in the future. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the person concerned has the right to lodge a complaint with the responsible state data protection officer in accordance with Art. 77 GDPR. This depends on the location of the company. For the Göttingen location, this would be the state data protection officer of the State of Lower Saxony (Prinzenstrasse 5, 30159 Hanover).
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format in accordance with Art. 20 GDPR. If you request the direct transfer of the data to another responsible person, this will only be done if this is technically possible.
Restriction of data processing
According to Art. 18 DSG-VO, you can request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you do Need to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 DSG-VO.
Statutory data protection officer
We have appointed a data protection officer for our company.
Phone: +49 (0) 551 607-487
2. DATA COLLECTION ON OUR WEBSITE
Thank you for visiting our website and for your interest in our company. This data protection declaration applies to the use of the domain www.ifano.de.
When you visit our website, various personal data are collected. Our web servers store technical access data as standard, such as the IP address of the computer that requested the data, the identification data of the browser type and operating system you are using, the objects that you have requested and accessed from us, and the date and time of the request. However, we do not assign this data to a specific person, but only use it to improve the attractiveness and usability of our website and to identify technical problems on our website at an early stage. We do not create any individual user profiles and do not combine them with personally identifiable information. Personal data is only stored if it is absolutely necessary for the purpose you have requested and you have provided it yourself, e.g. for order processing, to answer your request, to give you access to special information and offers or to provide you with special services to provide.
We point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
Contact form and user registration
If you send us inquiries using the contact form or register as a user with IFANO, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions and, if necessary, passed on to affiliated companies. Please only send us the information that is necessary to process your request.
The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). The data remains with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions - in particular retention periods - remain unaffected. If you want to revoke your consent, an informal e-mail to us is sufficient. The legality of the data processing operations carried out before the revocation remains unaffected by the revocation.
Social media plugins
Facebook plugins (like & share button)
Plugins of the social network Facebook, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, are integrated on our pages. You can recognize the Facebook plugins by the Facebook logo or the "Like" button on our website. You can find an overview of the Facebook plugins here:
When you visit our website, the plug-in creates a direct connection between your browser and the Facebook server. As a result, Facebook receives the information that you have visited our site with your IP address. If you click the Facebook "Like" button or leave a comment while you are logged into your Facebook account, you can link the content of our pages to your Facebook profile. This enables Facebook to assign your visit to our website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by Facebook. You can find more information on this in Facebook's data protection declaration at:
If you do not want Facebook to be able to assign your visit to our website to your Facebook user account, please log out of your Facebook user account before visiting our website.
Functions of the Instagram service are integrated on our website. These functions are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA.
If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This enables Instagram to assign your visit to our website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by Instagram.
You can find more information on this in Instagram's data protection declaration:
3. DATA PROTECTION IN MARKETING
In the context of marketing we adhere to the legal requirements of the GDPR and the UWG.
Once you have given us your consent for advertising purposes, you can revoke this at any time without giving reasons at email@example.com.
If you receive advertising from us in the context of existing customer relationships in accordance with the provisions of Section 7 (3) UWG - this is the case if we would like to inform you about the sale of a similar product or service, and you have not objected to the sending of advertising messages and we have your contact details in connection with the performance of the contract - you can object to their use at any time at firstname.lastname@example.org.
If you should advertise on the basis of a weighing of interests according to Art. 6 Para. 1 lit. f DS-GVO received from us, you can object to this at any time at email@example.com.
Our newsletter informs you about current topics, such as changes at IFANO or news from the IT world. The information should simplify the cooperation between you and IFANO and guarantee a uniform level of knowledge.
If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter . Further data is not collected or is only collected on a voluntary basis within the scope of your consent (Art. 6 Para. 1 lit. a GDPR). We use this data exclusively for sending the requested information.
We use the double opt-in procedure to prove your consent, ie after registering on the website, you will receive a confirmation link from us to the email address you provided. You will only be included in the newsletter distribution list by confirming the registration link. If you do not confirm the link within 30 days, we will delete your data.
You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "Unsubscribe" link in the newsletter or by sending an informal email to firstname.lastname@example.org. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted both by us and our service providers after you unsubscribe from the newsletter. This does not affect data that we have saved for other purposes (e.g. email addresses for the user area).
This website uses the external service Newsletter2Go to send newsletters. The provider is Newsletter2Go GmbH, Nürnberger Strasse 8, 10787 Berlin, Germany.
Newsletter2Go is a service with which, among other things, the dispatch of newsletters can be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter are stored on the Newsletter2Go servers in Germany.
If you do not want an analysis by Newsletter2Go, you have to unsubscribe from the newsletter. We provide a corresponding link for this in every newsletter. You can also unsubscribe from the newsletter directly on the website.
For more information, see the data protection provisions of Newsletter2Go at:
You can find detailed information on the functions of Newsletter2Go at the following link:
5. DATA PROTECTION DURING ORDER PROCESSING
In the course of order processing, it is necessary to process and save personal data. All data that you make available to us in the course of order processing, such as client and recipient information, are processed by us exclusively for the purpose of fulfilling the contract and are treated with the highest degree of confidentiality. The legal basis for data collection and processing is the fulfillment of the contract concluded with you (Art. 6 Paragraph 1 lit. b GDPR). The stored data are subject to the statutory retention and deletion periods.
The data will only be passed on to other companies inside or outside IFANO if this is also necessary for the purpose of fulfilling the contract.
As part of existing customer relationships, we reserve the right to provide you with information on our own similar products or services from IFANO. If you do not wish to be contacted in this context, you also have the right to object at any time.
6. DATA PROTECTION IN THE APPLICATION PROCESS
If you apply to us for a current job advertisement by post or email or send us an unsolicited application, you are providing us with personal data. The legal basis for data processing is Art. 6 Para. 1 lit. a or b DS-GVO, as well as Art. 88 DS-GVO in connection with § 26 BDSG-new. By submitting the application documents via the portal ausbildung-bei-ifano.de (online application) you declare that you agree to our data protection regulations. In this case, the transmission of your application documents is encrypted and forwarded to the responsible clerk. If we receive your application documents by other means, we will send you a confirmation of receipt and a reference to our data protection principles. Please note that the transfer is usually unencrypted if you send us your application documents by email.
In the course of your application, the personal data listed below will be collected and processed from you: surname, first name; Address; Phone number; E-mail address; Application documents (cover letter, résumé, references, certificates, etc.).
Please only send us the information that we need to process your application. We do not require any information from you that cannot be used under the General Equal Treatment Act (e.g. race, ethnic origin, religion, belief or sexual identity) or other sensitive data about you (e.g. pregnancy, membership in a trade union, physical or mental health or sex life).
Your application data is collected and processed exclusively for the purpose of filling positions within our company. In principle, your data will only be forwarded to the internal departments and specialist departments of our company responsible for the specific application process. Your personal application data will only be passed on to other IFANO companies with your prior express consent. Your application data will not be used or passed on to third parties beyond this.
The application documents are stored by us for 6 months after the application process has been completed and then destroyed. This does not apply if statutory provisions prevent deletion, further storage is necessary for the purpose of providing evidence or you have expressly consented to longer storage (e.g. for future job offers). If your application is successful, the data provided can be used for administrative matters relating to the employment.
7. OUR SOCIAL MEDIA PRESENTATIONS
Data processing through social networks
Our social media presence is intended to ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases that must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 Para. 1 lit. a GDPR).
Responsible and assertion of rights
If you visit one of our social media sites (e.g. Facebook), we and the operator of the social media platform are responsible for the data processing operations triggered during this visit. You can fundamentally exercise your rights (information, correction, deletion, restriction of processing, data portability and complaint) against us as well as claim against the operator of the respective social media portal (e.g. against Facebook). Please note that, despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely based on the company policy of the respective provider.
Social networks in detail
We have a profile on Facebook. The provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook is certified according to the EU-US Privacy Shield. You can adjust your advertising settings yourself in your user account. To do this, click on the following link and log in:
Social networks in detail
We use the short message service Twitter. The provider is Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Twitter is certified according to the EU-US Privacy Shield.
You can adjust your Twitter data protection settings yourself in your user account. To do this, click on the following link and log in:
Details can be found in Twitter's data protection declaration:
We have a profile on XING. The provider is XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany. You can find details on how they handle your personal data in XING's data protection declaration:
The content of our data protection declaration is checked regularly. IFANO reserves the right to change the data protection declaration at any time with or without prior notice. If we change the content of this data protection declaration, we will announce these changes on our website. However, we will always make earlier versions of the data protection declaration available so that they are easy to find.
01 August 2019