I. General information and notes
In the following, we inform you about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.
Responsible person according to Art. 4 No. 7 EU General Data Protection Regulation (GDPR) is
NEOX NETWORKS GmbH
(see our imprint)
Competent data protection supervisory authority:
You can reach our data protection officer at
When you contact us, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions. We delete the data accruing in this context after the storage is no longer necessary or restrict the processing if there are legal retention obligations.
The processing of this data is based on Art. 6 (1) p. 1 lit. b GDPR, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 p. 1 lit. a GDPR) and/or on our legitimate interests (Art. 6 para. 1 p. 1 lit. f GDPR), as we have a legitimate interest in effectively processing the requests addressed to us.
If we use contracted service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we will also state the defined criteria for the storage period.
You have the following rights with respect to us regarding personal data concerning you:
– Right of access,
– Right to rectification or deletion,
– Right to restriction of processing,
– Right to object to processing,
– Right to data portability.
You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
To exercise your rights regarding the personal data concerning you, please contact us by e-mail: firstname.lastname@example.org.
Please note that in the event of a request for information, we will store both this request and our subsequent information for a period of three years for proof purposes regarding the proper information.
Objection or revocation against the processing of your data
If you have given your consent to the processing of your data, you may revoke it at any time. Such revocation will affect the permissibility of the processing of your personal data after you have expressed it to us.
Insofar as we base the processing of your personal data on the balance of interests, you may object to the processing. This is the case if the processing is not necessary, in particular, for the performance of a contract with you, which is shown by us in each case in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will review the situation and either discontinue or adjust the data processing or show you our compelling legitimate grounds on the basis of which we will continue the processing.
Of course, you can object to the processing of your personal data for purposes of advertising and data analysis at any time.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Objection to advertising e-mails
The use of contact data published within the framework of the imprint obligation to send advertising and information materials not expressly requested is hereby prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
II. Use of the website
During the informational use of the website, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server.
If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security (legal basis is Art. 6 para. 1 p. 1 lit. f GDPR):
– IP address
– Date and time of the request
– Time zone difference to Greenwich Mean Time (GMT)
– Content of the request (specific page)
– Access status/HTTP status code
– Amount of data transferred in each case
– Web page from which the request comes
– Operating system and its interface
– Language and version of the browser software.
In addition to the informational use of our website, we offer various services that you can use if you are interested. For this purpose, you usually have to provide further personal data, which we use to provide the respective service and for which the aforementioned data processing principles apply.
Data transfer to service providers & partners
In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly monitored.
Furthermore, we may pass on your personal data to third parties if we offer promotions, competitions, contracts or similar services together with partners. You will receive more information on this when you provide your personal data or in the description of the offer.
If our service providers or partners are based in a country outside the European Economic Area (EEA), we will inform you in the description of the offer.
Data transfers to the USA
The USA is assessed by the European Court of Justice as a country with an insufficient level of data protection according to EU standards. In particular, there is a risk that your data may be processed by U.S. authorities, for control and monitoring purposes, possibly also without any legal remedy.
Please note in particular the further information on the tools and services used by us in this data protection declaration regarding data transfers to the USA.
Many tools and services use so-called “cookies” (more on this below under the point “Cookies”). Typically, their use is accompanied by data transfers to the USA by US providers such as Google, Facebook, Twitter, YouTube, LinkedIn, etc.. If you do not wish this to happen, please ensure that you do not give the corresponding consent that we obtain when you call up the website.
What are Cookies?
Our website uses so-called cookies to store user-specific data. Cookies are small files that are stored by our website on your computer and contain certain user data from you, such as language or personal page settings. When you return to our site, your browser transmits the “user-specific” information back to our site. Thanks to the cookies, our site knows who you are and offers you your usual default settings. A cookie consists of a name and a value.
When you visit our website for the first time (using a so-called “cookie banner” or “cookie consent tool”), you will be asked which cookies you wish to allow.
Cookies that are not essential to provide the services of this website will only be used after you have given your consent. However, this decision will in turn be stored in a cookie for purposes of proof and implementation of your setting.
You can view and change your cookie settings at any time here: Your Cookie Settings.
By agreeing to the use of the respective cookies by US providers such as Google, Facebook, Twitter, YouTube, LinkedIn, etc., you consent at the same time pursuant to Art. 49 (1) p. 1 lit. a GDPR that your data is processed in the USA.
Whether cookies are set in each case and which data is stored therein under which further circumstances is additionally explained in more detail in our notes on the tools, plug-ins or services used.
First-party and third-party cookies
There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites or their tools/plug-ins/services (e.g. Google Analytics).
Each cookie is to be evaluated individually, as each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other “pests”. Cookies also cannot access information on your PC..
What are the types of cookies?
These cookies are necessary to ensure basic functions of the website. For example, when the user adds a product to the shopping cart, then continues surfing on other pages and only later goes to the checkout. Through these cookies, the shopping cart is not deleted even if the user closes his browser window.
These cookies are not mandatory, but they increase the functionality of the website. This includes, for example, information such as user names, language selection, once entered form data, size of the font, etc..
Performance or marketing cookies
These cookies come from external advertising companies, among others, and are used to collect information about the websites visited by the user, for example, to create targeted advertising for the user.
Other cookies collect information about user behavior on the website and whether users receive error messages (if so, which ones?) to enable improvement of the content and structure of the website. Loading times or the behavior of the website with different browser types are also measured with these cookies.
Browser-side deactivation or deletion of cookies
You can set your web browser to generally prevent cookies from being stored on your end device or to ask you each time whether you agree to cookies being set. Once cookies have been set, you can delete them at any time. How this works is described in the help function of the web browser you are using.
A general deactivation of cookies may lead to functional restrictions of this website.
IV. (Online) Application
Purpose and legal basis of processing
We process your personal data for the purpose of establishing an employment relationship in compliance with Art. 6 (1) p. 1 lit. b GDPR in conjunction with Art. 88 GDPR and Section 26 BDSG. Processing is carried out solely for the purpose of assessing your suitability, ability and professional performance with regard to the position for which you are applying.
We also process your personal data for certain purposes (e.g. for longer storage) if you have given us your consent to data processing within the meaning of Art. 6 (1) p. 1 lit. a GDPR in conjunction with Art. 7 GDPR.
If applicable, we are obliged to process your personal data pursuant to Art. 6 para. 1 p. 1 lit. c GDPR. Various legal obligations may exist for this purpose (e.g. obligations under the German Commercial Code; the German Fiscal Code; to store tax-relevant data; under the German Social Security Code; under the General Equal Treatment Act; or other relevant regulations).
Nature of the categories of data processed
We process personal data that we receive from you as part of the application process, e.g. through letters of application, CVs, references, correspondence, telephone or verbal information.
The following categories of data may be affected:
- Personal data (surname, first name, date of birth)
- Address data (address, place of residence)
- Contact data (telephone number, e-mail address)
- Application data (cover letter, references, curriculum vitae)
- Special personal data (health data such as illnesses and disabilities)
Recipients or categories of recipients of the data
Your data is initially accessed by our HR department and accounting department, but also by the specialist department of the position for which you have applied. Our administrators and order processors have technically necessary access to data processed by means of IT. They are strictly bound by our instructions and may not process the data for their own purposes.
Furthermore, third parties may receive data for certain purposes if this is required by law as part of your application (e.g. notification to the Federal Employment Agency).
Data is not transferred to bodies in countries outside the European Union (so-called third countries).
Duration of data storage
Your personal data will be stored for as long as is necessary to fulfill our contractual and legal obligations in the application process. In the event of a successful application, your personal data will be placed in your personnel file and used to implement and terminate the employment relationship.
If we are currently unable to offer you employment, we will continue to process your data on the basis of our legitimate interests pursuant to Art. 6 (1) p. 1 lit. f GDPR for up to 6 months after sending the rejection in order to be able to defend ourselves against any legal claims.
In the event of your consent to the storage of your data beyond the prescribed period, the duration may be correspondingly longer (max. two years).
If the data is no longer required for the fulfillment of contractual or legal obligations, it will be deleted, unless the storage is required due to legal retention periods (e.g. to fulfill commercial and tax retention periods of ten years).
- If you register for our newsletter, we will use the data required for this purpose or separately provided by you to inform you regularly by e-mail about innovations, products or special promotions that are of interest to you.
- After unsubscribing, we will delete your e-mail address unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
- This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. CleverReach is a service with which the newsletter dispatch can be organized and analyzed. The data you enter for the purpose of receiving newsletters (e.g. e-mail address) is stored on CleverReach’s servers in Germany or Ireland.
- Our newsletters sent with CleverReach allow us to analyze the behavior of newsletter recipients. Among other things, we can analyze how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. For more information on data analysis through CleverReach newsletters, please visit: www.cleverreach.com/en/features/reporting-tracking/.
- The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
- If you do not want any analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in each newsletter message.
- The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of CleverReach after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.
- For more details, please refer to the data protection provisions of CleverReach at: www.cleverreach.com/en/privacy-policy/.
The legal basis for this is your consent in accordance with Art. 6 (1) p. 1 lit. a GDPR. We use the data collected exclusively for sending the newsletter.
VI. Analysis Tools
Matomo (formerly Piwik)
- This website uses the web analytics service Matomo to analyze and regularly improve the use of our website. The statistics obtained allow us to improve our offer and make it more interesting for you as a user. The legal basis for the use of Matomo is Art. 6 para. 1 p. 1 lit. a GDPR.
- For this evaluation, cookies (see “Cookies” for more details) are stored on your computer. The information collected in this way is stored by the responsible party exclusively on its server in [Germany]. You can set the evaluation by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, we point out that you may not be able to use this website in full. Preventing the storage of cookies is possible through the setting in your browser.
- This website uses Matomo with the extension “AnonymizeIP”. This means that IP addresses are processed in abbreviated form, which means that they cannot be directly linked to a specific person. The IP address transmitted by your browser via Matomo will not be merged with other data collected by us.
- The Matomo program is an open source project. Information from the third-party provider on data protection is available at http://matomo.org/privacy/policy.
- This website uses external fonts from Google Fonts. If your browser does not support web fonts, a standard font from your computer will be used.
- The integration of these web fonts is done by a server call, usually a Google server in the USA. This transmits to the server which of our Internet pages you have visited. In the process, the user’s browser transmits various information for the uniform presentation of the website. These include various browser and device data and also the IP address of the user himself.
- The processing is based on your consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR in the form of search engine optimization, improved loading times, reduced administrative effort and uniform presentation across devices.
VIII. Embedded Services
YouTube video embedding
- We have integrated YouTube videos into our online offer, which are stored on www.YouTube.com and can be played directly from our website. These are all integrated via a special YouTube privacy plugin (Youtube Lyte), which means that no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos, the data mentioned in paragraph 2 are transmitted. We have no influence on this data transmission. Without this plugin, a connection to the YouTube server in the USA would be established as soon as you call up one of our Internet pages on which a YouTube video is embedded.
- As soon as you play a YouTube video, YouTube sets at least one cookie that stores your IP address and our URL. If you are logged into your YouTube account, YouTube can usually assign your interactions on our website to your profile using cookies. This includes data such as session duration, bounce rate, approximate location, technical information such as browser type, screen resolution or your internet provider. Other data may include contact details, any ratings, sharing of content via social media or adding to your favorites on YouTube. If you want to prevent this, you must either log out of YouTube before visiting our website or make the appropriate settings in your YouTube user account.
- If you are not logged into a Google account or a YouTube account, Google stores data with a unique identifier that is linked to your device, browser or app. For example, your preferred language setting is retained. But a lot of interaction data cannot be stored because fewer cookies are set.
- The legal basis is Art. 6 (1) lit. f GDPR. Our legitimate interest is to improve the quality of our website.
- For the purpose of functionality as well as for the analysis of user behavior, YouTube permanently stores cookies on your end device via your internet browser. If you do not agree with this processing, you have the option to prevent the storage of cookies by a setting in your Internet browser.
- The legal basis for the setting of the cookie is your consent granted in accordance with Art. 6 para. 1 p. 1 lit. a GDPR. Details on this can be found above under the item “Cookies”.
Vimeo video embedding
- We also use videos from the company Vimeo on our website. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in, we can show you interesting video material directly on our website. Personal data may be transferred to Vimeo in the process.
- When you call up one of our web pages that has a Vimeo video embedded, your browser connects to the Vimeo servers. This results in a data transmission. This data is collected, stored and processed on the Vimeo servers. Regardless of whether you have a Vimeo account or not, Vimeo collects data about you. This includes your IP address, technical info about your browser type, operating system or very basic device information. In addition, Vimeo stores information about which website you use the Vimeo service and what actions (web activities) you perform on our website. These web activities include, for example, the session duration or on which button you clicked on our website with built-in Vimeo function. Vimeo may track and store these actions using cookies and similar technologies.
- If you are logged in to Vimeo as a registered member, often more data can be collected because more cookies may have already been set in your browser. In addition, your actions on our website are directly linked to your Vimeo account. To prevent this, you must log out of Vimeo while “surfing” our website.
- The goal is to provide you with the best content possible. And to do so as easily accessible as possible. Only when we have achieved this, we are satisfied with our service. Vimeo gives us the opportunity to present you with high quality content directly on our website. Instead of just giving you a link to an interesting video, you can watch the video right there on our site. This expands our service and makes it easier for you to access interesting content. Thus, in addition to our texts and images, we also offer video content.
- The legal basis is therefore Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies, as previously described, in the quality improvement of our website.
- The legal basis for the setting of cookies is your consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR. Details on this can be found above under the item “Cookies”.
IX. Social Media
- General information
We maintain publicly accessible profiles on social networks. The social networks used by us in detail can be found below.
Social networks can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). Visiting our social media profile triggers numerous processing operations relevant to data protection.
- Personal data
If you are logged into your social media account and visit our social media profile, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your terminal device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media profile. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.
- Reference to risks
We would like to point out that the respective providers may process user data outside the European Union. This may result in risks for users because, for example, it could make it more difficult to enforce the rights of users. With regard to US providers that offer guarantees of a secure level of data protection through, for example, EU standard contractual clauses, we point out that they thereby undertake to comply with EU data protection standards.
- Purpose of processing/legal basis
Our own processing of personal data on our social media sites is carried out on the basis of our legitimate interests pursuant to Art. 6 (1) p. 1 lit. f GDPR, in order to inform about our offer there, to make posts more attractive, to find the right time for publication, as well as to communicate with customers, interested parties and users active there. We have no influence on any further processing by the providers.
The legal basis for the setting of the aforementioned cookies is your consent pursuant to Art. 6 (1) p. 1 lit. a GDPR. Details on this can be found above under the item “Cookies” or under “Social media plugins”.
- Joint responsibility
If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit.
Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.
- Exercise of rights
In principle, you can assert your rights both against us and against the operator of the respective social media portal.
However, we would like to point out that these can be asserted most effectively with the operators. Only the operators have access to the users’ data and can take appropriate measures and provide information directly. Should you nevertheless require assistance, please feel free to contact us.
- Storage period
The data collected directly by us via the social media profile will be deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions – in particular retention periods – remain unaffected.
- Data protection of the providers
For a detailed presentation of the respective forms of processing and the options for objection (opt-out), we refer to the data protection declarations and information of the providers of the respective social media networks, over which we have no influence and which apply when calling up the respective presences.
- Existing social media profiles
Own profile: https://www.facebook.com/pages/NEOX-Networks/834173253270701
Furthermore, Facebook provides us with statistical data of different categories (so-called “Insights data”) when our Fanpage is used, which we can access accordingly. These Page Insights are aggregate data through which we can gain insight into how people interact with our Page. This includes: total page views, “likes”, page activity, post interactions, video views, post reach, comments, content shared, responses, percentage of men and women, country and city origin, language, store views and clicks, route planner clicks, and phone number clicks.
For more information on “Insights data,” including how to exercise your rights, please visit: https://www.facebook.com/legal/terms/information_about_page_insights_data.
There is joint responsibility between the Fanpage operator and Facebook in accordance with Art. 26 of the GDPR.
For this purpose, a corresponding agreement has been reached with the fan page operators (available at: https://www.facebook.com/legal/terms/page_controller_addendum).
In this context, Facebook assumes primary responsibility under the GDPR for the processing of insights data and will fulfill all obligations under the GDPR with regard to the processing of insights data (including Articles 12 and 13 of the GDPR, Articles 15 to 22 of the GDPR and Articles 32 to 34 of the GDPR).
You can contact Facebook’s data protection officer via the general contact form at https://www.facebook.com/help/contact/540977946302970 or with regard to Insights data at https://www.facebook.com/help/contact/308592359910928.
Own profile: www.instagram.com/neoxnetworks
Own profile: www.twitter.com/neox_networks
Own profile: www.linkedin.com/company/neox-networks-gmbh
Own profile: www.xing.com/pages/neoxnetworksgmbh
Own profile: www.pinterest.com/neoxnetworks/
Own profile: www.youtube.com/channel/UCcVe1tdpqxQlxPrERTj1PJQ
Linking to social media profiles via graphic or text link
- We also link on our website to social media profiles on the platforms listed above. The integration takes place via a linked graphic or a text link of the respective platform. The use of this linking prevents a connection to the respective server of the platform from being automatically established when a website with a social media link is called up in order to display a graphic of the respective platform itself. The user is only forwarded to the service of the respective platform by clicking on the corresponding graphic.
- After the user has been forwarded, information about the user is collected by the respective provider. It cannot be ruled out that the data collected in this way will be processed in the USA. Please note our information on data transfers to the USA.
- This is initially data such as IP address, date, time and page visited. If the user is logged into his user account of the respective platform during this time, the operator may be able to assign the collected information of the specific visit of the user to his personal account. If the User interacts via a “Share” button of the respective platform, this information can be stored in the User’s personal user account and may be published. If the user wants to prevent the collected information from being directly assigned to his user account, he must log out before clicking on the graphic. In addition, it is possible to configure the respective user account accordingly.
- If you would like to order in our webshop, it is necessary for the conclusion of the contract that you provide your personal data, which we need for the processing of your order. Mandatory information necessary for the processing of contracts is marked separately, other information is voluntary.
- We transmit personal data to third parties only if this is necessary for the processing of the contract, for example to the companies entrusted with the delivery of the goods or the credit institution entrusted with the processing of payments. A further transmission of the data does not take place or only if you have expressly agreed to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.
- For the fulfillment of the purchase contract concluded between you and us and the associated delivery of the ordered goods, we transmit your e-mail address and telephone number to the selected shipping service provider to enable the coordination of the delivery with you.
- You have the possibility at any time to object to the data transfer with effect for the future by sending a message to email@example.com or directly to the shipping service provider using the contact details provided in each case.
- After revocation, we will delete the data provided, unless you have expressly consented to a different use of the data or we reserve the right to use the data in a manner that goes beyond this and is permitted or ordered by law and about which we inform you in this declaration.
- The revocation then has the consequence that a delivery of the goods ordered by you via our shipping service providers is not possible.
- The basis for the data processing is Art. 6 para. 1 p. 1 lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures.
- We are required by commercial and tax law to store your address, payment and order data for a period of ten years. However, we restrict processing after two years, i.e. your data is only used to comply with legal obligations.
- To prevent unauthorized access by third parties to your personal data, especially financial data, the ordering process is encrypted using TLS technology.