Privacy policy for our company’s presence on social media
This privacy policy provides information on the nature, scope and purpose of the collection and use of personal data by our company’s presence on social media.
As a company with a presence on social networks, we process personal data together with the respective provider of the social network. According to Art. 4 para. 1 GDPR, personal data means all information relating to an identified or identifiable person (e.g. surname, first name, date of birth, address, photos, etc.).
The legal basis for processing your personal data is Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in presenting our company on popular communication media and in offering users, interested parties and our customers today’s usual chosen form of communication with our company.
Our company has a presence on the following social networks:
We would like to point out that your use of social media, in particular interaction with the networks, such as posting and sharing contributions, is your own responsibility and that you can choose to contact us instead via the contact form on our website or by email/letter/telephone. Our contact details can be found in:
The Controller within the meaning of Art. 4 para. 7 GDPR is:
COMATCH GmbH
Wilhelmstr. 118
10963 Berlin
The authorised representative is Dr Jan Schächtele
The Controller has its registered office in Berlin (register court: Berlin, HRB 162116 B)
Data Protection Officer
For all questions concerning data protection with regard to our website and our range of services, or to exercise your rights as an individual, please contact our Data Protection Officer:
Prof. Dr Thomas Jäschke
DATATREE AG
Märkische Strasse 212-218
44141 Dortmund
Email: [email protected]
T +49 231 54380-798
Joint responsibility according to Art. 26 GDPR
According to Art. 26 GDPR, joint data processing with the respective provider of the social network requires the conclusion of an agreement in which the distribution of our obligations under the GDPR and the obligations of the respective provider of the social network are defined as binding.
By creating and publishing our company’s presence, we have concluded such an agreement by accepting the respective social network’s terms of use which regulate conditions for using the site and for processing the data that arises from it.
The providers of the social network assume primary responsibility for the fulfilment of their data protection obligations (see ECJ ruling of 05/06/2018, case C-210/16). This includes:
• The fulfilment of information obligations (acc. Art. 12, 13 GDPR)
• The rights of data subjects (acc. Art. 15 – 22 GDPR)
• Security of processing (acc. Art. 32 GDPR)
• The reporting of data protection violations (acc. Art. 33, 34 GDPR)
Further details on the collection and storage of your personal data and on the nature, scope and purpose of its use by the respective provider of the social network can be found in the privacy policy of the respective platform operator.
As a company with a presence on social networks, we also assume responsibility for fulfilling our data protection obligations. This includes:
• The legality of the data processing (according to Art. 6 para. 1 GDPR)
• The forwarding of data subject enquiries relating to content published by us on the social networks to the respective platform operator
• The obligation to draw up a privacy policy for our company’s presence on social networks
Processing of your data when using our social networks
We use the technical platform and services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland for the information service offered on Facebook at https://de-de.facebook.com/COMATCHGmbH/.
Your visit to our Facebook profile launches a large number of data processing operations. Your personal data will not only be collected, used and stored by us, but also by Facebook. This happens even if you do not have a Facebook profile yourself. We only process the personal data which you provide to us via your public account and by commenting on our posts. You are not obliged to provide us with your personal data. However, this may be necessary for individual features of our Facebook profile. These features are not available to you or only available to a limited extent if you do not provide us with your personal data.
The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in being able to communicate with users, interested parties or customers and to inform them about our services.
If you have a Facebook profile and are logged in, Facebook processes, among other things, the data you have entered voluntarily, such as your first and last name, username, email address and telephone number. In addition, Facebook can analyse your usage behaviour and create a usage profile based on your usage behaviour. For this, cookies are stored on your device. These cookies allow Facebook to create user profiles based on your preferences and interests and to display advertisements (inside and outside of the platform) that are tailored to your preferences. We do not have access to the usage data that Facebook collects to compile these statistics. We are not necessarily able to comprehend the individual data processing operations and their scope. Facebook only provides us with anonymous usage statistics which we use in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR to improve the user experience for the target group when visiting our Facebook profile.
If you do not agree with Facebook assigning the collected data directly to your Facebook profile, we recommend that you log out of this social network, delete your cookies as part of the browser setting and restart the browser. You also have the right to object to the creation of these user profiles; you must contact Facebook to exercise this right.
We cannot rule out the possibility that personal data may be transferred outside the jurisdiction of the European Union, e.g. to servers located in the USA, when our company is accessed on Facebook. We would also like to specifically point out that an equivalent level of data protection cannot be guaranteed for the USA.
For details on the collection and storage of your personal data and on the nature, scope and purpose of its use by Facebook, please refer to Facebook’s privacy policy: https://www.facebook.com/about/privacy/update?ref=old_policy. You will also find further information about your rights at https://www.facebook.com/privacy/policy/?section_id=7-WhatIsOurLegal. You can also learn about your privacy settings at https://www.facebook.com/privacy/guide/security so that you can set notifications for your network, use search engines to disable your profile’s visibility or manage what is visible on your profile.
We use the technical platform and services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland for the information service offered on Instagram at https://www.instagram.com/comatch_official/.
Your visit to our Instagram profile launches a large number of data processing operations. Your personal data will not only be collected, used and stored by us, but also by Instagram. This happens even if you do not have an Instagram profile yourself. We only process the personal data which you provide to us via your public account and by commenting on our posts. You are not obliged to provide us with your personal data. However, this may be necessary for individual features of our Instagram profile. These features are not available to you or only available to a limited extent if you do not provide us with your personal data.
The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in being able to communicate with users, interested parties or customers and to inform them about our services.
If you have an Instagram profile and are logged in, Instagram processes, among other things, the data you have entered voluntarily, such as your first and last name, username, email address and telephone number. In addition, Instagram can analyse your usage behaviour and create a usage profile based on your usage behaviour. For this, cookies are stored on your device. These cookies allow Instagram to create user profiles based on your preferences and interests and to display advertisements (inside and outside of the platform) that are tailored to your preferences. We do not have access to the usage data that Instagram collects to compile these statistics. We are not necessarily able to comprehend the individual data processing operations and their scope. Instagram only provides us with anonymous usage statistics which we use in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR to improve the user experience for the target group when visiting our Instagram profile.
If you do not agree with Instagram assigning the collected data directly to your Instagram profile, we recommend that you log out of this social network, delete your cookies as part of the browser setting and restart the browser. You also have the right to object to the creation of these user profiles; you must contact Instagram to exercise this right.
We cannot rule out the possibility that personal data may be transferred outside the jurisdiction of the European Union, e.g. to servers located in the USA, when our company is accessed on Instagram. We would also like to specifically point out that an equivalent level of data protection cannot be guaranteed for the USA.
For details on the collection and storage of your personal data and on the nature, scope and purpose of its use by Instagram, please refer to Instagram’s privacy policy: https://help.instagram.com/155833707900388. You will also find further information on your rights under “VI. How can you exercise your rights under the GDPR?”. You can also learn about your privacy settings at https://help.instagram.com/811572406418223/?helpref=hc_fnav so that you can set notifications for your network, use search engines to disable your profile’s visibility or manage what is visible on your profile.
We use the technical platform and services of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland for the information service offered on LinkedIn at https://de.linkedin.com/company/comatch-gmbh.
Your visit to our LinkedIn profile launches a large number of data processing operations. Your personal data will not only be collected, used and stored by us, but also by LinkedIn. This happens even if you do not have a LinkedIn profile yourself. We only process the personal data which you provide to us via your public account and by commenting on our posts. You are not obliged to provide us with your personal data. However, this may be necessary for individual features of our LinkedIn profile. These features are not available to you or only available to a limited extent if you do not provide us with your personal data.
The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in being able to communicate with users, interested parties or customers and to inform them about our services.
If you have a LinkedIn profile and are logged in, LinkedIn processes, among other things, the data you have entered voluntarily, such as your first and last name, username, email address and telephone number. In addition, LinkedIn can analyse your usage behaviour and create a usage profile based on your usage behaviour. For this, cookies are stored on your device. These cookies allow LinkedIn to create user profiles based on your preferences and interests and to display advertisements (inside and outside of the platform) that are tailored to your preferences. We do not have access to the usage data that LinkedIn collects to compile these statistics. We are not necessarily able to comprehend the individual data processing operations and their scope. LinkedIn only provides us with anonymous usage statistics which we use in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR to improve the user experience for the target group when visiting our LinkedIn profile.
If you do not agree with LinkedIn assigning the collected data directly to your LinkedIn profile, we recommend that you log out of this social network, delete your cookies as part of the browser setting and restart the browser. You also have the right to object to the creation of these user profiles; you must contact LinkedIn to exercise this right.
We cannot rule out the possibility that personal data may be transferred outside the jurisdiction of the European Union, e.g. to servers located in the USA, when our company is accessed on LinkedIn. We would also like to specifically point out that an equivalent level of data protection cannot be guaranteed for the USA.
For details on the collection and storage of your personal data and on the nature, scope and purpose of its use by LinkedIn, please refer to LinkedIn’s privacy policy: https://de.linkedin.com/legal/privacy-policy. You will also find further information about your rights under “4.2 Right to access and control your personal data”. You can also learn about your privacy settings at https://www.linkedin.com/help/linkedin/answer/a545600 so that you can set notifications for your network, use search engines to disable your profile’s visibility or manage what is visible on your profile.
We use the technical platform and services of New Work SE, Am Strandkai 1, 20457 Hamburg for the information service offered on Xing at https://www.xing.com/pages/comatchgmbh.
Your visit to our Xing profile launches a large number of data processing operations. Your personal data will not only be collected, used and stored by us, but also by Xing. This happens even if you do not have a Xing profile yourself. We only process the personal data which you provide to us via your public account and by commenting on our posts. You are not obliged to provide us with your personal data. However, this may be necessary for individual features of our Xing profile on social networks. These features are not available to you or only available to a limited extent if you do not provide us with your personal data.
The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in being able to communicate with users, interested parties or customers and to inform them about our services.
If you have a Xing profile and are logged in, Xing processes, among other things, the data you have entered voluntarily, such as your first and last name, username, email address and telephone number. In addition, Xing can analyse your usage behaviour and create a usage profile based on your usage behaviour. For this, cookies are stored on your device. These cookies allow Xing to create user profiles based on your preferences and interests and to display advertisements (inside and outside of the platform) that are tailored to your preferences. We do not have access to the usage data that Xing collects to compile these statistics. We are not necessarily able to comprehend the individual data processing operations and their scope.
If you do not agree to Xing processing your personal data, we recommend that you log out of this social network, delete your cookies as part of the browser settings and restart the browser. You also have the right to object to the creation of these user profiles; you must contact Xing to exercise this right.
For details on the collection and storage of your personal data and on the nature, scope and purpose of its use by Xing, please refer to Xing’s privacy policy: https://privacy.xing.com/de/datenschutzerklaerung. You will also find further information about your rights under “What rights can you assert?”. You can also learn about your privacy settings at https://privacy.xing.com/de/ihre-privatsphaere so that you can set notifications for your network, use search engines to disable your profile’s visibility or manage what is visible on your profile.
Your rights as a data subject
According to Art. 26 para. 3 GDPR, you, as a data subject, can assert your rights under the General Data Protection Regulation against the respective platform operator and against us. However, we recommend that you contact the respective provider of the social network with regard to your rights, as only they have access to your personal data. This is regulated in the terms of use that we have accepted when creating our company presence, since we are not necessarily able to comprehend the platform operator’s individual data processing operations or their scope.
You can assert the following rights with regard to data processing:
Right to information (Article 15 GDPR)
You have the right, within the scope of Art. 15 GDPR, to receive information from us about the processing of your personal data
Right to rectification (Art. 16 GDPR)
You have the right, within the scope of Art. 16 GDPR, to request from us without delay the correction of inaccurate personal data and/or the completion of incomplete personal data relating to you.
Right to deletion (Art. 17 GDPR)
You have the right, within the scope of Art. 17 GDPR, to request the immediate deletion of your personal data. Statutory retention periods which prevent deletion must be taken into account.
Right to restriction (Art. 18 GDPR)
You have the right, within the scope of Art. 18 GDPR, to request the restriction of data processing relating to you.
Right to data portability (Art. 20 GDPR)
You have the right, within the scope of Art. 20 GDPR, to receive the personal data which you provided and which relates to you in a structured and machine-readable format and to transfer this data to another controller.
Right of objection (Art. 21 GDPR)
You have the right, within the scope of Art. 21 GDPR, to object at any time to the processing of personal data relating to you for reasons arising from your particular situation, provided that the processing is based on an overriding interest or your data is used for the purpose of direct advertising.
Revocation in the event of consent in accordance with Art. 7 para. 3 GDPR
If you have provided your personal data on the basis of consent, you have the right to revoke this consent for the future at any time and without stating a reason, according to Art. 7 para. 3 GDPR. We would like to point out that the revocation of consent does not affect the legality of the processing carried out on the basis of the consent prior to the revocation.
Right to lodge a complaint (Art. 77 GDPR)
If you believe that the processing of your personal data when using our social networks is not in compliance with data protection regulations, you have the right to contact a data protection supervisory authority informally at any time, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement.
The supervisory authority responsible for us:
The Berlin Commissioner for Data Protection and Freedom of Information
Maja Smoltczyk
Friedrichstr. 219
10969 Berlin
T +49 30 13889-0
[email protected] www.datenschutz-berlin.de