Privacy Policy


Privacy policy of the PB Consult Planungs- und Betriebsberatungsgesellschaft mbH

We welcome you to our website and appreciate your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the General Data Protection Regulation (GDPR) and the country-specific implementation laws applicable to us. This privacy policy provides you with comprehensive information about the processing of your personal data by PB Consult Planungs- und Betriebsberatungsgesellschaft mbH and the rights to which you are entitled.

Personal data is information that makes it possible to identify a natural person. This includes, in particular, name, date of birth, address, telephone number, email address, but also your IP address.

Data is anonymous if no personal reference to the user can be established.

Responsible body and data protection officer

PB Consult Planungs- und Betriebsberatungsgesellschaft mbH
Rothenburger Straße 5
90443 Nuremberg

Phone 0911 3 22 39-0
Email: datenschutz@pbconsult.de

Your rights as a data subject

Firstly, we would like to take this opportunity to inform you about your rights as a data subject. These rights are standardised in GDPR Art. 15 - 22. This includes:

  • The right to information (GDPR Art. 15),
  • The right to erasure (GDPR Art. 17),
  • The right to rectification (GDPR Art. 16),
  • The right to data portability (GDPR Art. 20),
  • The right to restriction of data processing (GDPR Art. 18),
  • The right to object to data processing (GDPR Art. 21).

To assert these rights, please contact: datenschutz@pbconsult.de. The same applies if you have any questions about data processing in our company or wish to withdraw your consent. You also have the right to lodge a complaint with a data protection supervisory authority.

Rights of objection

Please note the following in connection with rights of objection:
If we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling insofar as it is associated with direct marketing.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made in any form, if possible to: datenschutz@pbconsult.de.

In the event that we process your data to protect legitimate interests, you can object to this processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defence of legal claims.

Purposes and legal basis of data processing

When processing your personal data, we comply with the provisions of the GDPR and all other applicable data protection regulations. The legal basis for data processing arises in particular from GDPR Art. 6.

We use your data to initiate business, to fulfil contractual and legal obligations, to implement the contractual relationship, to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising.

Your consent to data processing may also constitute a data protection authorisation provision. Before you give your consent, we will inform you about the purpose of the data processing and your right of cancellation.

If the consent also relates to the processing of special categories of personal data, we will expressly point this out to you in the consent. Processing of special categories of personal data in accordance with GDPR Art. 9 only takes place if this is required by law and there is no reason to assume that your legitimate interest in the exclusion of processing prevails.

Disclosure to third parties

We will only pass on your data to third parties within the framework of the statutory provisions or with the appropriate consent. Otherwise, your data will not be passed on to third parties unless we are obliged to do so due to mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).

Recipients of the data / categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfil their contractual and legal obligations.
In certain cases, service providers support our specialist departments in the fulfilment of their tasks. The necessary data protection contracts have been concluded with all service providers.

Transfer to a third country / intention to transfer to a third country

Data will only be transferred to third countries (outside the European Union or the European Economic Area) if this is necessary to fulfil the contractual obligation, is required by law or if you have given us your consent to do so. We do not transfer your personal data to any service provider outside the European Economic Area

Storage period of the data

We store your data for as long as it is required for the respective processing purpose. Please note that numerous retention periods require that data (must) continue to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further retention obligations, the data will be routinely deleted once the purpose has been achieved.

In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the framework of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.

Secure transfer of your data

We use appropriate technical and organisational security measures to protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The security levels are continuously reviewed in co-operation with security experts and adapted to new security standards.

The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, using the latest encryption protocols. It is also possible to use alternative communication channels (e.g. by post).

Obligation to provide the data

Various personal data are necessary for the establishment, execution and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.

We have summarised the details for you in the section above. In certain cases, data must also be collected or made available due to legal provisions. Please note that it is not possible to process your enquiry or execute the underlying contractual relationship without providing this data.

Categories, sources and origin of the data

Which data we process is determined by the respective context: this depends on whether, for example, you place an order online or enter an enquiry in our contact form, whether you send us an application or submit a complaint.

Please note that we may also provide information for special processing situations separately in a suitable place, e.g. when uploading application documents or in the event of a contact enquiry

We collect and process the following data when you visit our website:

  • Name of the Internet service provider
  • Information about the website from which you are visiting us
  • Web browser and operating system used
  • The IP address assigned by your Internet service provider
  • Requested files, transferred data volume, downloads/file export
  • Information about the webpages you visit on our site, including date and time

For reasons of technical security (in particular to defend against attempted attacks on our web server), this data is stored in accordance with GDPR Art. 6 para. 1 lit. f. After 7 days at the latest, the IP address is anonymised by shortening it so that no reference is made to the user.

We collect and process the following data as part of a contact enquiry:

  • Company, name
  • Email address
  • Information on wishes and interests

We collect and process the following data for online applications:

  • Surname, first name
  • Address
  • Contact details
  • All data that you send us as part of your application, e.g. application photo, school/professional education data, etc.

Automated decisions in individual cases

We do not use purely automated processing to reach a decision.

Cookies (GDPR Art. 6 para. 1 sentence 1 lit. a, f, TTDSG § 25 para. 1, 2)

Our website uses so-called cookies. They serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your end device and saved (locally) by your browser. Cookies only contain pseudonymous, usually even anonymous data. Some cookies remain in place for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. consent settings). The latter are automatically deleted after the specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.

Based on our legitimate interest (GDPR Art. 6 para. 1 sentence 1 lit. f), we use technically necessary cookies, which are absolutely necessary for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent if their sole purpose is to store or access information stored in the terminal device for the transmission of messages or if they are absolutely necessary to provide the service you have expressly requested, TTDSG § 25 para. 2.

Subject to your consent, other cookies are used to enable us or third parties to analyse how our services are used, for example. This allows us to customise the content according to user needs. Cookies also enable us to measure the effectiveness of a particular advert and to place it, for example, depending on the thematic interests of the user. The legal basis for this is your express consent (GDPR Art. 6 para. 1 sentence 1 lit. a, TTDSG § 25 para. 1).

You can revoke your consent via our consent banner at any time with effect for the future and change the cookie settings. Please note that changes must be made separately for each end device.

If you have accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a combination by not granting or revoking your consent to the relevant cookies or by logging out of the respective third-party providers in advance.

Most browsers accept cookies automatically. You can also deactivate, restrict or delete cookies on your end device manually via your browser settings or with the help of software. If you deactivate the setting of cookies, you will not be able to use our website to its full extent or only to a limited extent.

Use of Bootstrap CDN

On our website we integrate the CSS Framework Bootstrap of the company LLC. NetDNA, 3575, Cahuenga Blvd Suite 630, Los Angeles, CA 90068, USA (hereafter: Bootstrap CDN), to optimise the presentation of the content we offer on the various end devices and to reduce the loading speed of our website. Bootstrap CDN is a public Content Delivery Nework (CDN) for the provision of content. Bootstrap CDN users can load CSS, JavaScript and images remotely from their servers. The use or integration of Bootstrap CDN is necessary for the purposes mentioned in order to safeguard our legitimate interests according to. GDPR Art. 6 para. 1 sentence 1 lit. f required.

If Java Script is activated in your browser and no (Java) Script blocker is installed, your browser will transmit personal data (e.g. your IP address and browser) to Bootstrap CDN when you load our website.

You can find the provider's privacy policy at https://www.bootstrapcdn.com/privacy-policy/

Data protection notice social media

On our website you will find links to the social media services of LinkedIn. You can recognise links to the websites of social media services by the respective company logo. If you follow these links, you will reach the corporate presence of PB Consult Planungs- und Betriebsberatungsgesellschaft mbH on the respective social media service. When you click on a link to a social media service, a connection to the servers of the social media service is established. This informs the social media service's servers that you have visited our website. In addition, further data is transmitted to the provider of the social media service. These are, for example:
• Address of the website on which the activated link is located
• Date and time the website was accessed or the link was activated
• Information about the browser and operating system used
• IP adress
If you are already logged in to the corresponding social media service at the time you activate the link, the provider of the social media service may be able to determine your user name and possibly even your real name from the transmitted data and assign this information to your personal user account with the social media service. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand.
Some of the servers of the social media services are located in the USA and other countries outside the European Union. The data may therefore also be processed by the provider of the social media service in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same extent as is the case in the member states of the European Union.
In addition to PB Consult Planungs- und Betriebsberatungsgesellschaft mbH, the following company is responsible for the company websites within the meaning of the GDPR and other data protection regulations

  • LinkedIn
    (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland)

Purpose and legal basis
We ourselves maintain the fan pages in order to communicate with visitors to these pages and to inform them about our offers.
We also collect data for statistical purposes in order to further develop and optimise the content and to make our offer more attractive. The data required for this (e.g. total number of page views, page activities and data provided by visitors, interactions) are processed by the social networks and made available to us. We have no influence on the generation and presentation of this data.
In addition, your personal data is processed by the social media providers for market research and advertising purposes. For example, it is possible that user profiles are created based on your usage behaviour and the resulting interests. This allows, among other things, adverts to be displayed within and outside the platforms that correspond to your interests. Cookies are usually stored on your computer for this purpose. Irrespective of this, data that is not collected directly on your end devices may also be stored in your user profiles. Data is also stored and analysed across devices; this applies in particular, but not exclusively, if you are registered as a member and logged in to the respective platforms.
We do not collect or process any other personal data.
The processing of your personal data by PB Consult Planungs- und Betriebsberatungsgesellschaft mbH is based on our legitimate interests in effective information and communication in accordance with GDPR Art. 6 para. 1 sentence 1 lit. f
If you are asked to consent to data processing, i.e. if you declare your consent by confirming a button or similar (opt-in), the legal basis for processing is GDPR Art. 6 para. 1 sentence 1 lit. a., Art. 7.

Your rights / option to object
If you are a member of a social network and do not want the network to collect data about you via our website and link it to your stored membership data with the respective network, you must

  • log out of the respective network before visiting our fan page,
  • delete the cookies present on the device
  • and close and restart your browser.

However, once you log in again, you will once again be recognisable to the network as a specific user.
For a detailed description of the respective processing and the opt-out options, please refer to the information linked below:

  • LinkedIn

Privacy policy: https://www.linkedin.com/legal/privacy-policy;
Opt-out: https://www.linkedin.com/legal/cookie-policy und
http://www.youronlinechoices.com;

You have the following rights with regard to the processing of your personal data:
Right of access; right to rectification; right to erasure; right to restriction of processing; right to object; right to data portability; right to lodge a complaint about unlawful processing of your personal data with the competent data protection authority.
However, since PB Consult Planning and Betriebsberatungsgesellschaft mbH does not have complete access to your personal data, you should contact the social media providers directly when making a claim, as they each have access to the personal data of their users and can take appropriate measures and provide information.

If you still need help, we will of course try to support you. Please contact datenschutz@pbconsult.de.

Contact form / contact via email (GDPR Art. 6 para. 1 Letters a, b)

There is a contact form on our website that can be used to contact us electronically. If you write to us using the contact form, we will process the data you provided in the contact form to contact us and answer your questions and requests.

The principle of data minimisation and data avoidance is observed here, in that you only have to provide the data that we absolutely need to contact you. These are your company or your name, your email address and the message field itself. In addition, your IP address is processed for technical reasons and for legal protection. All other data are voluntary fields and can be provided optionally (e.g. to answer your questions more individually).

In order to best protect the security and confidentiality of your data, we implement appropriate security measures. Your request will be transmitted to us in encrypted form.

If you contact us via MS Teams email or via Sharepoint access, we will process the personal data provided in the email solely for the purpose of processing your request. The data is secured by Hornetsecurity GmbH.

Privacy Policy: https://www.hornetsecurity.com/de/privacy/

Application by email (GDPR Art. 6 para. 1 lit. a, b)

We are pleased that you are interested in working for PB Consult Planungs- und Betriebsberatungsgesellschaft mbH. We are aware of the importance of your data and process the personal data you provide as part of the application process only for the purpose of effectively and correctly processing the application process and for contacting you as part of the application process. The data will not be passed on to third parties without your consent.

As part of your application via email, you will be asked to provide personal information. We adhere to the principle of data economy and data avoidance in that you only have to provide us with the data that we need to fully examine your application documents, such as your CV, or which we are legally obliged to collect.

Unfortunately, without this data we cannot examine your application documents. Of course, you have the option to provide further voluntary information.

We store your data for the purposes mentioned above until the application process has been completed and relevant deadlines have expired - no later than six months after receiving a decision. However, you have the option of us storing your application documents for a longer period of time and comparing them with other vacant positions that match your profile if you give us your consent.

Links to other providers

Our website also contains – clearly visible – links to the websites of other companies. If there are links to websites of other providers, we have no influence on their content. Therefore, no guarantee or liability can be assumed for this content. The respective provider or operator of the pages is always responsible for the content of these pages.

The linked pages were checked for possible legal violations and recognizable legal violations at the time of linking. Illegal content was not apparent at the time of linking. However, permanent control of the content of the linked pages is unreasonable without concrete evidence of a legal violation. Upon notification of rights violations, such links will be removed promptly.

TRANSPARENCY AND INFORMATION OBLIGATIONS FOR THOSE AFFECTED BY CAMERA RECORDINGS IN PUBLIC SPACES FROM PB CONSULT PLANUNGS- UND BETRIEBSBERATUNGSGESELLSCHAFT MBH ACCORDING TO THE EU BASIC DATA PROTECTION REGULATION (GDPR)

With this document we will inform you about the processing of your personal data by the PB Consult Planungs- und Betriebsberatungsgesellschaft mbH and the rights to which you are entitled under data protection law.