de
Ambrian Energy

Privacy Policy

Thank you for visiting our website. In this privacy policy, we would like to inform you about how your data is handled in accordance with Article 13 of the General Data Protection Regulation (GDPR).

Controller

The entity named in the publishing details is responsible for the data processing described below.

Data security

We have implemented technical and organisational measures to protect your data as comprehensively as possible against unauthorised access. We use encryption on our websites. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognise this by the padlock symbol in the status bar of your browser and https:// at the start of the address line.

Necessary cookies

We use cookies on our websites that are necessary for the use of our websites.

Cookies are small text files that can be stored and read on your device. Session cookies, which are deleted as soon as you close your browser, are not the same as persistent cookies, which are stored beyond the individual session.

We do not use these necessary cookies for analytics, tracking or advertising purposes.

Some of these cookies only contain information about certain settings and are not personally identifiable. They may also be necessary for user navigation, security and implementation of the site.

We use these cookies on the basis of our legitimate interest in accordance with point (f) of Article 6 (1) GDPR.

You can set your browser to notify you when cookies are downloaded.  You can also delete them at any time and block new cookies via the corresponding browser settings. Please note that our websites may then not be displayed in full and some features may no longer be technically available.

Retention period

Unless we have already provided detailed information about the retention period, we erase personal data when it is no longer required for the aforementioned processing purposes and no legitimate interests or other (legal) reasons for retention prevent its erasure.

Other processors

We share your data with service providers who support us with the operation of our websites and related processes under a processing agreement in accordance with Article 28 GDPR. These are hosting service providers, for example. Our service providers are strictly bound to follow our instructions and are subject to corresponding contractual obligations.

Below we list the data processors with whom we work, unless we have already done so in the text of the privacy policy above. The list below also indicates whether data can be processed outside of the EU or EEA in this context.

Processor
Hetzner Online GmbH

Purpose
Web hosting

Adequate level of data protection
Processing only within the EU

Your rights as a data subject

When processing your personal data, the GDPR grants you, as the data subject, certain rights:

Right of access (Article 15 GDPR)

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed; if this is the case, you have a right of access to this personal data and to the information specified in Article 15 GDPR.

Right to rectification (Article 16 GDPR)

You have the right to request, without undue delay, the rectification of inaccurate personal data concerning you and, if necessary, the completion of incomplete data.

Right to erasure (Article 17 GDPR)

You have the right to request the erasure of personal data concerning you without undue delay if one of the grounds listed in Article 17 GDPR applies.

Right to restriction of processing (Article 18 GDPR)

You have the right to request the restriction of processing for a period enabling the controller to conduct a review if one of the conditions set out in Article 18 GDPR is met, e.g. if you have objected to processing.

Right to data portability (Article 20 GDPR)

In certain cases, which are listed in detail in Article 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transmission of this data to a third party.

Right to withdraw consent (Article 7 GDPR)

If data is processed on the basis of your consent, you are entitled, in accordance with Article 7 (3) GDPR, to withdraw your consent to the use of your personal data at any time. Please note that the withdrawal of consent only applies to the future. It does not affect any processing that took place prior to the withdrawal of consent.

Right to object (Article 21 GDPR)

If data is collected on the basis of point (f) of Article 6 (1) GDPR (data processing for the purposes of legitimate interests) or on the basis of point (e) of Article 6 (1) GDPR (data processing for the performance of a task carried out in the public interest or in the exercise of official authority), you have the right to object to the processing, at any time, on grounds relating to your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend against legal claims.

Right to lodge a complaint with a supervisory authority (Article 77 GDPR)

Pursuant to Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the data protection regulations. In particular, the right to lodge a complaint may be exercised with a supervisory authority in the member state in which you are habitually resident, you have your place of work or in which the alleged infringement occurred.

Exercising your rights

Unless described otherwise above, please contact the body mentioned in the publishing details to assert your rights as a data subject.

Contact details of the data protection officer

Our external data protection officer will be happy to provide you with information on data protection and can be contacted as follows:

data protection nord GmbH
Konsul-Smidt-Strasse 88
28217 Bremen, Germany
Web: www.dsn-group.de
Email: office@datenschutz-nord.de

If you contact our data protection officer, please also indicate the controller named in the publishing details.

Applications by email 

You have the option of submitting a speculative application for the vacancies advertised by us via the email address provided: recruiting@ambrian-energy.com. You yourself determine the scope of the data that you would like to transmit to us as part of your email application. However, in order to be able to consider your application, you must provide the following information at least: Name, address, email address, cover letter or details of your desired position, CV, references and qualifications.

We process this information exclusively for the purpose of selecting applicants in accordance with Section 26 (1) sentence 1 of the German Federal Data Protection Act (BDSG), as it is necessary to make a decision on whether to enter into an employment relationship. Data is not processed for any other purposes.

You can also decide whether or not to share further information with us, such as your hobbies, date of birth, telephone number or a photo of yourself. The disclosure of this data is voluntary and is not absolutely necessary for the application. If you include data in your email application voluntarily, we will process it on the basis of your consent in accordance with point (a) of Article 6 (1) GDPR in conjunction with Section 26 (2) BDSG. You may withdraw your consent at any time with future effect. To do so, please contact the office mentioned in the publishing details.

Our company will treat your information as confidential. We may use service providers to provide us with IT support, for example; these providers are strictly bound by instructions and we have entered into separate processing agreements with them. Beyond this, your data will not be disclosed. If an employment contract is concluded after the application process, we will store the data from your application that is required for the purposes of your employment relationship. The legal basis for this processing is Section 26 (1) sentence 1 BDSG. If your application is unsuccessful, your documents will be deleted after six months. The legal basis for this processing is point (f) of Article 6 (1) GDPR. The processing up to deletion takes place on the basis of our legitimate interest in being able to defend ourselves against any legal action relating to the application. We only process the personal data that you provide to us as part of the application process.