The following information provides you with details about how we process your personal data and your rights under data protection law.
Responsibility for data processing and company data protection officer
In line with Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) responsibility lies with:
If you have any questions about data protection, you are welcome to contact our company data protection officer at any time:
Dr. Frederike Rehker
Konica Minolta Business Solutions Europe GmbH
Europaallee 17, 30855 Langenhagen, Germany
Telephone: +49 (0)511 7404-0
You hold the following rights with regard to your personal data processed by us:
- Access to information on the categories of the processed data, purposes of processing, recipients or categories of recipients of your data, and the planned retention period (Article 15 of the GDPR)
- Correction of inaccurate or incomplete data and/or their amendment (Article 16 of the GDPR)
- Deletion of data in line with Article 17 of the GDPR, in particular if the personal data are no longer necessary for the intended purpose or are processed illegally, or if you withdraw your consent or have lodged an objection to processing
- Restriction of data processing in line with Article 18 of the GDPR in certain circumstances insofar as, for instance, deletion is no longer possible or the deletion obligation is at issue
- In line with Article 20 of the GDPR on data portability, to have us provide you or a third party with the personal data you supplied to us in a structured common machine-readable format
- For reasons arising from your particular situation the right to object to data processing on account of a legitimate interest (Article 21, Paragraph 1 of the GDPR)
- Withdrawal of your consent at any time to be effective in the future (Article 7, Paragraph 3 of the GDPR); this also of course also applies to the withdrawal of consents you granted us prior to the GDPR coming into effect
- In line with Article 77 of the GDPR to lodge a complaint about data processing with the responsible supervisory authority
Collection of personal data when you visit our website
If you only visit our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we shall only collect the personal data that your personal browser sends to our server. These data are necessary from a technical point of view to let you view our website. They are also required in order to ensure the stability and security of our website. (Legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR).
- IP address
- Date and time of request
- Country of origin of request
- Content requested (specific web page)
- Access status/http status code
- Website from which the request is launched
- Operating system and interface
- Browser software language and version
- Data volume sent in each case
- Time zone difference to Greenwich Mean Time (GMT)
Some of the services offered on our website can only be performed if we are able to contact you. This means that availing yourself of these services is dependent on you providing us with specific personal (contact) data. We only collect, use and process these data insofar as this is necessary for the performance of the respective services. If you contact us via email or a contact form, the data you enter (your email address and other data you impart to us of your own free will, such as your name/telephone number) are stored by us so we can process your request and answer any questions you may have. We delete the data we have stored about you when it is no longer required. We restrict processing in the case of statutory retention obligations. We process your data in line with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.
Purpose of processing, legal basis and retention period
If we request consent to process your personal data, we do so in line with Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR. If processing your personal data is required to fulfil a contact or pre-contractual measures prompted by your request, our processing is legally based on Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. In cases in which processing of personal data is required to fulfil our legal obligations, processing is in line with Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR. If processing of personal data is necessary to protect a legitimate interest of our company or a third party, and if at the same time the interests, basic rights and freedoms of the data subjects, which require the protection of personal data, do not take precedence over our legitimate interest, Article 6, Paragraph 1, Letter f of the GDPR shall serve as legal basis for said processing.
Unless otherwise specified, we delete personal data in accordance with Article 17 and 18 of the GDPR or restrict their processing. We only process and store your personal data for as long as they are required to fulfil our contractual and legal obligations. Data no longer required for the intended purpose are deleted regularly unless temporary further processing is necessary, which may arise on account of other legally permissible purposes. In compliance with documentation and legal retention obligations in Germany, the necessary documents are stored for six years in line with Article 257, Paragraph 1 of the German Commercial Code (HGB) and ten years in line with Article 147, Paragraph 1 of the German Fiscal Code (AO).
Recipients of your data
In general, we neither sell nor loan user data. We only transfer data to third parties beyond the scope of this privacy statement if it is necessary for the fulfilment of the relevant service you have requested. We work with cooperation partners to render our services. The latter perform services for you on their own responsibility/in relation to your contract with us. You can order these services and consent to the inclusion of the cooperation partner, or inclusion is based on legal permission. In the areas of Marketing, Sales, IT, Logistics and HR we also work with processors in line with Article 28 of the GDPR. These processors are carefully selected by us. We continue to bear responsibility for the protection of your data in the case of processing by a processor. In other cases we send data to government agencies at their request. However, this only takes place if a legal obligation, such as a court order, exists.
Where is my data processed?
We always process your data in Germany and European countries (EU/EEA). Insofar as your data are exceptionally processed in very limited special cases in countries outside the European Union (thus in so-called third countries), this will only take place provided you have given your express consent, it is legally envisaged, or it is necessary for us to perform our service for you. Insofar as we process data in third countries in these exceptional cases, this is performed subject to specific measures (i.e. on the basis of the existence of an adequacy decision by the EU Commission or appropriate guarantees, Article 44 et seq. of the GDPR).
YouTube videos are included on our websites. They are stored on https://www.youtube.com, but can be played back directly on our website. On including videos on our website we activated advanced data protection mode. This means that if you do not play back videos, no data about you is transmitted to YouTube. However, if you play back videos, the data are sent to YouTube. Initially, YouTube receives the information that you have accessed the corresponding page on our website. Other data can also be transmitted to YouTube, of which we have no knowledge. In this case also, we have no influence on data transmission. If you log into YouTube the transmitted data are directly linked to your account. If you do not wish this to happen, you have to log out of YouTube before you play back videos on our websites. YouTube stores your data as a user profile and uses them for advertising and market research purposes and/or to tailor its website to user needs. Evaluation of this nature may in particular be used for targeted advertising (even in the case of users who have not logged in). YouTube offers you a right of objection to the creation to user profiles, which you must lodge directly with YouTube.
The YouTube privacy statement provides more information on the purpose and scope of data acquisition and processing, and also additional information on your rights and settings options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has subjected itself to the EU-US Privacy Shield https://www.privacyshield.gov/EU-USFramework.
The legal basis for the inclusion of YouTube videos is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.
We use Adobe Typekit Webfonts at dots.de. Typekit is a service offered by the company Adobe. This service offers fonts which are rendered in the user's browsers after contacting Adobes server in the USA.
On dots.de we integrate so called social bookmarks (Facebook, Twitter). Users of said services can thus collect links and news. The social bookmarks on our web site are just links to said services.
Data protection for job candidates
Since we must process your data in the recruitment process please note the following:
Sole controller and processor of your personal data is:
dots Gesellschaft für Softwareentwicklung mbH
Schlesische Str. 27
If you have questions about this or if you wish to contact our Data Protection Coordination Manager (DPCM) Mr. Sambale please send an email to: firstname.lastname@example.org
Our purpose to process your your data is to select a candidate for establishing an employment relationsship. We will not process your data for any other reason. The legal foundations for this processing are § 26 BDSG (German data protection law) in conjunction with Art. 6 para 1 lit. b) (Employment contract) und Art. 88 GDPR (data processing for an employment context). Providing personal data is essential to assess the application and, if applicable, to close an employment contract. An application without personal data cannot be considered. Automated decision-making does not happen.
Your data is exclusively distributed internally to the responsible and decision-making persons. We save your data only on our local servers in Berlin. It is not transfered to third countries.
We delete your data six month after the end of the recruitment process. The legal foundation is § 61b Abs. 1 ArbGG (The law governing labour courts) in conjunction with § 15 AGG (Anti discrimination law). If you would like to be considered for future job offers we will only save your data for up to 12 month after you gave us written consent to do so.
According to Art. 15 GDPR you have the right to receive information about the processing of your personal data. In addition you are at liberty to exercise your rights of the correction, deletion or, if deletion is not possible, of the restriction of processing and of the portability of your data according to Art. 16-18, 20 GDPR. If you want to make use of these rights, please contact our DPCM.
You further have the right to complain to the supervisory authority (This is: Berliner Beauftragte für Datenschutz und Informationsfreiheit) at any time.
If you consider our processing of your personal data not lawful, we kindly ask you to contact our DCPM.
In addition Art. 13 para. 2, lit b) GDPR gives you the right to veto the processing of your personal data at any time.
Konica Minolta Policy
Konica Minolta has set out the following policy as the global benchmark for its own conduct:
Global Personal Data Protection Policy of Konica Minolta Group
As a growing global company, being engaged in various business areas, We, Konica Minolta Group recognize that the confidence of our customers, business partners, officers and employees is our most valuable asset. Konica Minolta Group also recognizes that we are, not only to provide the best products and services, but also to meet the highest standards regarding compliance and social responsibility.
Konica Minolta Group is committed to respect the privacy of our customers, business partners, officers and employees and to protect the personal data of our customers, business partners, officers and employees.
Scope and applicability of this Policy
This policy applies to us, Konica Minolta, Inc. (“Konica Minolta”) and all of its affiliated companies (“Group Companies”) and our officers and employees. “Affiliated” in this instance means, that Konica Minolta may enforce the adoption of this Policy directly or indirectly, on the basis of voting majority, majority management representation or by agreement. Konica Minolta and Group Companies (“Konica Minolta Group”) establish and enforce internal rules such as regulations and procedures in accordance with this Policy.
This Policy sets forth the basic principles of Konica Minolta Group’s data protection and data security standards and ensures compliance with national and international data protection laws in force all over the world. Therefore it comprises the internationally accepted data protection principles, intending not to replace, but to supplement the respective national data protection and privacy laws (“National Legislation”). This means, that the content of this Policy has to be observed in the absence of a corresponding National Legislation or if a National Legislation provides lower requirements than this Policy. On the other hand, a National Legislation always takes precedence in case of a conflict with this Policy or if the National Legislation provides stricter requirements than this Policy.
This Policy extends to all processing of personal data. In countries where the data of legal entities are protected to the same extent as personal data, this Policy applies equally to data of legal entities. Anonymized data, e.g. for statistical evaluations or studies, is not subject to this Policy.
Konica Minolta Group’s principles for processing of personal data
Lawfulness, fairness and transparency
Personal data will be collected and processed in a lawful, fair and transparent manner to protect the individual rights of the data subjects.
Restriction to a specific purpose
Personal data will only be collected for specified explicit and legitimate purposes and will not be processed in a manner incompatible with those purposes.
Data accuracy / Data actuality
Personal data will be accurate and where necessary kept up to date. Konica Minolta Group will take every reasonable step to erase or rectify inaccuracies without delay.
Data economy / Data minimization
Personal data will be adequate, relevant and limited to what is necessary. Personal data will not be stored longer than necessary.
Rights of data subjects
Konica Minolta Group respects the rights of all data subjects including rights of access to their data, the right of restriction of processing or erasure, and the right of accuracy. Konica Minolta Group will provide clear and unambiguous information about how and why subjects' data are collected and processed.
Time limits for storage of personal data will be defined. Konica Minolta Group erases personal data that are no longer necessary in relation to the purposes for which they have been collected or in a case a given consent is withdrawn and no other legitimate purpose for processing applies.
Security of processing / Data security
Personal data will be processed securely. Appropriate to the risk, technical and organisational measures will be taken against unauthorised processing or alteration, and against loss or destruction or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed. Konica Minolta Group will ensure ongoing integrity, availability, confidentiality and authenticity. Konica Minolta Group will ensure resilience of our systems and services processing personal data. In the event of an incident Konica Minolta Group will have the ability to restore the availability and access to data in a timely manner.
Data protection by design and by default
Konica Minolta Group will implement appropriate technical and organisational measures for ensuring that, by default, only personal data that is necessary for each specific purpose of the processing is processed. The principle of Data Protection by design and by default will be followed during the development of new products.
There shall be accountability in all processing activities. Konica Minolta Group is responsible for and able to demonstrate compliance.
Konica Minolta Group’s data protection organisation
Each Konica Minolta Group company shall appoint a qualified person, who is responsible for the implementation and observance of the aforementioned principles.