The Boost Group is committed to protecting your Personal Data, taking its commitment in this regard very seriously. For this reason, we would like to take this opportunity to inform you about the Processing of your data, specifically the type, scope and purpose of its collection and use.
Our company always strives to ensure the comprehensive protection of your data, while fully complying with applicable legal regulations, in particular the European General Data Protection Regulation (GDPR), the Swiss revised Data Protection Law (revDSG) and the German Federal Data Protection Act (BDSG), as well as any other country-specific data protection regulations applicable to us.
As the Controller, the company has implemented numerous technical and organizational measures to ensure the most complete protection of Personal Data processed on its website.
This Privacy Policy is intended to inform Data Subjects about the nature, scope and purpose of the Personal Data that we collect, use and process, especially in connection with our website. It will, in addition, inform you, the Data Subject, of your rights.
The information will always be kept available for download on our website.
1.Definitions
Our Privacy Policy is based on the terms used by European lawmakers in the GDPR. The aim is to ensure that the general public can easily read and understand the Policy’s provisions, including our customers and business partners. For this purpose, we would like to explain some of the terms used in advance.
2. Name and address of Controller.
This Privacy Policy applies to all data that we process in our capacity as Controller within the meaning of the GDPR, other data protection laws applicable in EU Member States and other provisions of a data protection nature: See imprint
You can reach our Data Protection Officer at the address of Boost Services AG (see imprint), or by sending an email to dataprivacy@boostgroup.eu.
Data Subjects may always address any questions or suggestions regarding data protection directly to our Data Protection Officer.
3. Cookies
Our webpages make use of cookies. These small text files are automatically created by an internet browser and stored on a computer system or end device (laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your end device, nor do they contain any viruses, Trojans or other malware. The information stored in the cookie (i.e. the cookie ID) is related to the specific end device used. A cookie ID is a unique identifier of the cookie, consisting of a string of characters by which webpages and servers can be assigned to the specific internet browser by means of which the cookie was saved. It enables the visited webpages and servers to distinguish the Data Subject’s browser from other internet browsers that contain other cookies. Although a specific internet browser can be recognized and identified by the unique cookie ID, it is not the case that we thereby gain immediate knowledge of your identity.
Cookies allow us to provide you, the user, with more user-friendly services that would not be possible without the cookie setting. Using a cookie makes it possible to personalize the information and offers on our website in order to meet user interests. As previously mentioned, cookies enable us to recognize the users of our website and, thereby, make it easier for them to use the site.
For example, “session cookies” may be used to identify your previous visits to individual pages of our website. These cookies are automatically deleted after you leave our site.
The data processed by technically necessary cookies is required for the above-mentioned purposes of protecting our legitimate interests pursuant to Art. 6(1)(1)(f) GDPR.
Other temporary cookies used to enhance user-friendliness may also be stored on your terminal device for a defined period of time. Should you return to our site in order to make use of our services, they allow us to automatically recognize you as a repeat visitor and identify the entries and settings that you previously used, so that you do not have to enter them again. For example, the user of a website that uses cookies does not have to re-enter his or her access data each time he or she visits the site, as this procedure is handled by the website after being triggered by the cookie stored on the user’s computer system. Another example is the cookie for a shopping cart in an online store. The online store uses cookies to remember the items that a customer has placed in the virtual shopping cart.
Still other types of cookies are used to statistically record use of our website and to evaluate it in order to improve our services for you. These cookies enable us to automatically recognize that you have previously visited our site, should you happen to return. They are automatically deleted after a defined period of time.
The legal basis for setting these cookies, which are not technically necessary for the operation of the homepage, is your consent pursuant to Art. 6(1)(a) GDPR. You can withdraw your consent at any time by deleting the cookies in your browser. Please note that the withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of the consent prior to withdrawal.
4.Scope, legal basis and purpose of the collection of general data and information and their processing
Our website collects a variety of general data and information each time a Data Subject accesses the site, storing it in log files on the server. The following general data and information may be logged
The legal basis for the collection and storage of the above-mentioned data is our legitimate interests pursuant to Art. 6(1)(1)(f) GDPR involving the maintenance and operation of a homepage.
5.Sharing data; Recipients
To provide you with the best possible service and to promote our business, we may transfer certain data internally or to selected Third Parties. There may also be a specific legal or statutory obligation that requires us to disclose your Personal Data to Third parties.
The parties to which we may disclose your information include:
Whenever we share Personal Data internally or with Third Parties in other countries, we will implement appropriate safeguards in accordance with applicable data protection laws, including, where applicable, the EU Standard Contractual Clauses when transferring data to countries outside the European Union or the European Economic Area. As required by applicable law, Third Parties must use appropriate safeguards to protect Personal Data and may only access Personal Data as needed to perform their respective tasks.
Your Personal Data will not, however, be transferred to Third Parties for any purposes other than those set out in this Privacy Policy. In this respect (and in accordance with Art. (6)(1)(1) GDPR), we only share your Personal Data with Third Parties if:
6.Registration on our website
As a Data Subject, you may choose to provide Personal Data in order to register on our website. This data will be transmitted to us in our capacity as Controller on the basis of the input screen used for the registration process. The Personal Data you enter will be collected and stored exclusively for our internal use and/or own purposes. We or the Controller, as the case may be, may arrange for the transfer to one or more Processors, for example a payment service or logistics company. They will also use the Personal Data exclusively for an internal purpose attributable to us.
Registering on our website also means that the IP address assigned by the internet service provider (ISP) of the person concerned, the date and the time of registration are also recorded. This data is stored because such a practice is the only way to prevent misuse of our services and, if necessary, to enable us to investigate crimes that have been committed. In this respect, the storage of this data is necessary for our protection. As a matter of principle, this data is not disclosed to Third Parties, unless there is a legal obligation to disclose it or the disclosure serves the purpose of criminal prosecution.
Your registration with voluntary provision of Personal Data enables us to offer you content or services that, due to the nature of the matter, can only be offered to registered users. Registered persons are free to amend the Personal Data provided during registration at any time or to have it completely deleted from our database.
You may request information about the Personal Data retained about you, the Data Subject, at any time. Furthermore, we will correct or delete Personal Data at your explicit request or notice, providing this action does not conflict with any statutory retention obligations. Our aforementioned Data Protection Officer (see Section 2) and all of our employees are available to you as contact persons in this connection.
7.Subscription to our newsletter
On our website, users are offered the opportunity of subscribing to our company’s newsletter. The Personal Data transmitted to us in our capacity as Controller when subscribing to the newsletter is specified in the corresponding input screen.
This newsletter is used to inform our customers and business partners at regular intervals about current offers from our company. The newsletter can generally only be received by you, the Data Subject, if
A confirmation email is sent to the email address initially entered by a Data Subject for newsletter subscription using the double opt-in procedure. This confirmation email serves to verify whether the owner of the email address is the Data Subject and has authorized the receipt of the newsletter. Only after confirmation is the subscription to the newsletter completed.
We also store the IP address that the internet service provider (ISP) assigns to the computer system used by the Data Subject when subscribing to the newsletter, as well as the date and time of the subscription. The collection of this data is necessary in order to track the (possible) misuse of a Data Subject’s email address at a later date and therefore provides us with legal protection.
Personal Data collected in connection with newsletter subscription will be used exclusively for the purpose of distributing our newsletter. Furthermore, newsletter subscribers may be informed by email of any changes to the newsletter offer or technical circumstances, should it be necessary for either the subscription to or provision of the newsletter service. No Personal Data collected as part of the newsletter service will be shared with Third Parties.
Your Consent in accordance with Art. 6(1)(a) GDPR provides the legal basis for the collection and Processing of your data in connection with newsletter subscription.
The subscription to our newsletter can be cancelled by you at any time. Your consent to the retention of Personal Data, which you have provided so we can send you the newsletter, can be withdrawn at any time with future effect. The lawfulness of the data processing up to the time of withdrawal remains unaffected. A corresponding link can be found in each newsletter for the purpose of withdrawing Consent. Furthermore, it is also possible to unsubscribe from the newsletter at any time directly on our website or to notify us of the cancellation in another way.
8.Newsletter tracking
Our newsletter contains tracking pixels, which are miniature graphics embedded in emails sent in HTML format to enable log file tracking and log file analysis. This process allows us to statistically evaluate the success or failure of online marketing campaigns. Based on the embedded tracking pixels, we can determine if and when an email was opened by a Data Subject, and the links contained in the email that the Data Subject clicked.
Personal Data collected by the tracking pixels contained in the newsletters is retained and evaluated in order to improve newsletter distribution and to better adapt the content of future newsletters to the interests of the Data Subject. This Personal Data will not be disclosed to any other Third Parties. The separate declaration of Consent made by means of the double opt-in procedure in this regard may be withdrawn at any time with future effect. After withdrawal, we or the Controller will delete your Personal Data. Cancellation of a newsletter subscription will be automatically interpreted as a withdrawal of Consent.
The legal basis for the collection and processing of your data in the context of newsletter tracking is your consent pursuant to Art. 6(1)(a) GDPR, which can be withdrawn at any time with future effect but without affecting the lawfulness of the Processing up to the time of the withdrawal.
9.Contact option via the website
Due to legal regulations and other reasons, our website contains information that enables quick electronic contact with our company as well as direct communication with our representative. If you contact us by email or by using our contact form, the Personal Data you provide will be automatically saved. Any Personal Data that you voluntarily submit to us will be retained for the purpose of processing your request or contacting you, and will not be shared with Third Parties. Personal Data sent by e-mail or the contact form will be deleted when the respective conversation with the user has ended and no relevant retention periods prevent the deletion. The conversation is ended when circumstances indicate that the matter in question has been conclusively settled.
The legal basis for this Processing is usually our legitimate interest pursuant to Art. 6(1)(f) or Art. 6(1)(b) GDPR, if the purpose is to fulfil or initiate a contract with you.
10.Data Collected through mobile apps
As part of the services that Boost provides, Boost sometimes creates app for smartphones and/or tablets on the basis of iOS and/or for Android. Such apps will be published on the respective app stores. The personal data that is collected and processed when you download the app in your app store, is under the responsibility of the app store owner.
Depending on the purpose and functionality of the app, the app may collect your personal data. In compliance with the relevant national data privacy regulations, the app will present the user with such information and functionality, as getting consent, explaining the purpose of personal data processing, the legal basis and the duration of personal data retention.
11.Routine deletion and blocking of Personal Data
We process and retain your Personal Data only for the period of time necessary to achieve the purpose for which it is collected or insofar as this retention is required EU or relevant national lawmakers, whose laws or regulations apply to us, e.g. due to retention periods.
If the reason for retention no longer applies or if a retention period prescribed by the EU or national lawmakers applicable to us expires, the Personal Data will be routinely deleted, blocked or restricted for Processing in accordance with the statutory provisions.
12.Rights of the Data Subject
As a Data Subject, you are afforded the rights listed below, which you may assert against us at any time:
Our company collects and processes your Personal Data as a job applicant for the purpose of completing the application process. The legal basis for this activity is Art. 6(1)(b) GDPR, in conjunction in Germany with Section 26(1)(1) BDSG. The processing may also take place electronically, as is particularly the case if you send us corresponding application documents electronically, for example by email or via a web form located on the website. We have set up our own homepage for our job advertisements at www.boostjobs.eu or www.boost-jobs.ch.
If the application process is successful and we conclude an employment contract with you, the transmitted data will be stored for the purpose of Processing the employment relationship in compliance with the statutory provisions pursuant to Section 26 BDSG.
If the application process does not end successfully and we do not conclude an employment contract with you, the application documents will be deleted six weeks after the end of the application process, unless we agree otherwise with you or there are other legitimate interests that prevent deletion. Other legitimate interests in this sense include, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG) in Germany.
We would also like to inform you that the provision of Personal Data may be necessary for the conclusion of a contract if, for example, you contact us via our homepage in the course of initiating a contract. Failure to provide Personal Data would mean that the contract with you cannot be concluded.
Otherwise, you are not required to provide your data when visiting our website, although failure to do so will make it technically impossible for you to visit our homepages.
A Data Subject may contact our Data Protection Officer prior to providing personal data. Our Data Protection Officer will inform the Data Subject on a case-by-case basis whether the provision of the Personal Data is required by law or by contract, whether it is necessary for the conclusion of a contract, whether there is an obligation to provide the Personal Data and what the consequences of not providing the Personal Data would be.
18.Existence of automated decision-making
As a responsible company, we do not use automatic decision-making or Profiling.
When you visit our website, we use the widespread SSL (Secure Socket Layer) procedure in conjunction with the highest encryption level supported by your browser. As a rule, this is 256-bit encryption. Should your browser not support 256-bit encryption, we will use 128-bit v3 technology instead. You can tell whether an individual sub-page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by Third Parties. Our security measures are continuously improving to keep pace with technological developments.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by Third Parties. Our security measures are continuously improving to keep pace with technological developments.
We do not use plug-ins from social networks on our websites. The visible icons are merely links to our social media profiles on the networks of Facebook, Twitter, Instagram, LinkedIn, Xing and Vimeo.
When you click these links, the respective site operator processes your Personal Data. If you maintain a profile there and are logged in, the visit to our pages may be linked to your profile.
22.Updating and amending this Privacy Policy
This Privacy Policy is currently valid and was last updated in April 2022.
Further development of our internet and service offerings or changes in legal or regulatory requirements may make it necessary to amend this Policy.
You can access and print out the current Privacy Policy at any time on the website at https://www.boostgroup.eu/de/datenschutz-und-cookie-richtlinie.