Data Privacy

Every data subject has the rights described below in connection with the processing of their personal data by us as the controller. To exercise your data protection rights listed below, please contact the responsible company listed in section 1.1 with the keyword "Data Protection," providing your name, address, and date of birth.

Right to access, rectification, erasure (Articles 15–17 EU-GDPR)

Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients, and the purpose of data processing, and, if applicable, a right to correct, block, or delete this data. 

Right to restriction of processing (Art. 18 EU-GDPR)

You have the right to have the processing of your personal data restricted under certain circumstances.

Right to data portability (Art. 20 EU-GDPR)

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if it is technically feasible.

Right to object (Art. 21 EU-GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of a public interest (Art. 6 Para. 1 let. e EU-GDPR) or on the basis of our legitimate interest (Art. 6 Para. 1 let. f EU-GDPR); This also applies to profiling based on this provision within the meaning of Article 4 No. 4 EU-GDPR. 

Further information can be found in the data protection information for specific groups of persons below.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.

Automated decision-making in individual cases, including profiling 
(Art. 22 EU-GDPR)

Under certain conditions, you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Right to withdraw your consent given to us (Art. 7 No. 3 EU-GDPR)

You have the right to withdraw your consent to the processing of your personal data with effect for the future. The processing of your data until withdrawal remains lawful.

Further information can be found in the data protection information for specific groups of persons below.

The purposes of processing your data can be found below in the data protection information for the specific group of persons to which you belong as a data subject.

1.4 Legal basis for processing

We process your personal data in accordance with the provisions of the applicable data protection laws: 

a) to fulfill (pre-)contractual obligations (Art. 6  Para. 1 let. b EU-GDPR). This also applies to obligations under employment contracts with our employees.

b) Where necessary, we process your data beyond the actual fulfillment of the contract to protect our legitimate interests or those of third parties (Art. 6  Para. 1  let. f EU-GDPR). Examples:

• Measures for personnel development planning, measures in the event of organizational changes,
• assertion of legal claims and defense in legal disputes,
• ensuring the IT security and IT operations of the company,
• Prevention and investigation of criminal offenses or serious breaches of duty,
• Video surveillance to ensure house rules are observed
• to collect evidence in cases of theft, robbery, and fraud,
• Measures for building and facility security (e.g., access controls),
• Measures to ensure property rights,
• Advertising measures for services that are directly related to similar services already provided.

You have the right to object to processing on the basis of legitimate interests at any time. Please read the information on your right to object under Art. 21 EU-GDPR above.

c) Based on your consent (Art. 6  Para. 1 let. a / Art. 9 No. 2 let. a in conjunction with Art. 7 EU-GDPR)

If you have given us your consent to process personal data for specific purposes (e.g., extended storage of application documents), photographs (in the context of events or publications), the lawfulness of this processing is based on your consent. 
Consent that has been given can be revoked at any time. This also applies to the revocation of declarations of consent that were given to us before the EU-GDPR came into force, i.e. before May 25, 2018. 
The revocation of consent only has effect for the future and does not affect the lawfulness of the data processed up to the point of revocation.

d) Due to legal or regulatory requirements (Art. 6  Para. 1 let. c EU-GDPR) 

As a company, we are subject to various legal obligations, i.e. legal requirements (e.g., social security law, occupational safety, money laundering law). The purposes of processing include, among other things, the fulfillment of social security and tax law control, reporting, and documentation obligations, reports to professional associations, identity verification, fraud and money laundering prevention, and the management of risks within the company.

e) Extension of the purpose of data processing

In exceptional cases and where legally permissible, we reserve the right to use your personal data for additional purposes that were not originally intended when your personal data was collected. This means that we may use your data not only for the purposes originally stated, but also for other compatible or legally permitted purposes. 

If it becomes necessary to use your data for other purposes that are not directly related to the original purposes, we will inform you in good time. 

See the privacy notices for specific groups of people below.

1.6 Potential data recipients in third countries or international organizations

SGL Carbon is a global company. Personal data is stored and processed by us and our service providers primarily within the EU. 

Depending on your request, the products or services ordered, and your role within your employment relationship, the data may be transferred to SGL companies in countries outside the European Union (so-called third countries) on the basis of the EU adequacy decision or with the conclusion of EU standard contractual clauses (EU-SCC), possibly in conjunction with an inter-company agreement.

An overview of our locations and sales offices can be found on our website at:

Overview of SGL Carbon locations worldwide

In addition, data is transferred to entities in countries outside the European Union (third countries) or to international organizations, insofar as

• it is required by law (e.g., tax reporting obligations),
• this is legitimized by our legitimate interest under data protection law and no higher interests of yours that are worthy of protection conflict with this,
• in individual cases with your voluntary consent or on the basis of legal regulations to combat money laundering, terrorist financing, and other criminal offenses, as well as within the framework of a balancing of interests in compliance with the data protection level of the European Union (exceptions according to Art. 49 EU-GDPR),
• this is necessary to ensure the IT operations of our company in compliance with the European level of data protection.

We process and store your personal data for as long as this is necessary to fulfill our contractual and legal obligations. After that, it is regularly deleted. Please note that the employment relationship is a continuing obligation that is designed to last for a longer period of time. 

Statutory retention obligations or contractual deletion periods

• may arise from nationally applicable social law, commercial law, tax law, the German Banking Act, the Money Laundering Act, the Securities Trading Act, and others,
• may be used to preserve evidence within the framework of nationally applicable statutory limitation provisions.

If data processing is carried out in the legitimate interest of us or a third party, the personal data will be deleted as soon as this interest no longer exists.

The same applies to data processing based on consent. As soon as you revoke this consent for the future, the personal data will be deleted, unless one of the above exceptions applies.

Further information can be found in the data protection information for specific groups of people below.

All data protection information provided to date applies to all groups of people. The information listed below applies to the specific groups of people mentioned.

2.1 Data protection information for employees

The processing of your personal data is largely based on the requested or agreed components of your employment relationship as set out in your employment contract. 

Data sources and data types

We process personal data that we have received or obtained from you in the course of an application process or employment relationship. In addition, we process your personal data that we obtain from publicly accessible sources (e.g., press, Internet) in a permissible manner or that is legitimately transmitted to us by other third parties (e.g., information on criminal offenses) to the extent necessary for the employment relationship.

Relevant personal data includes personal details (name, address, and other contact details, date and place of birth, and nationality), family details (e.g., marital status, information about your children), religious affiliation, health data (if relevant to the employment relationship), any criminal convictions (police clearance certificate), identification data (e.g., ID card details), tax identification number, and information about qualifications and previous employers. In addition, this may also include application data (e.g., application for secondary employment), data from the fulfillment of our contractual obligations (e.g., salary payments), information about your financial circumstances that indirectly affect us (e.g., wage garnishments), and other data comparable to the categories mentioned. 

Purposes of processing

Your personal data is processed for the purpose of establishing, implementing, or terminating the employment relationship within the framework of the existing contract with you.

In addition, we process your personal data if this is necessary for the exercise or fulfillment of the rights and obligations of employee representation arising from a collective bargaining agreement or a works agreement (collective agreement).

In individual cases, we reserve the right to process your personal data for purposes other than those for which it was originally collected, provided that this is legally permissible and the change of purpose is in accordance with the applicable data protection regulations (Art. 6 No. 4 EU-GDPR).

In doing so, we attach particular importance to ensuring that processing is only carried out for purposes that are compatible with the original purposes and for which legal permission exists. In the event of a necessary change of purpose, we will inform you accordingly and ensure that your rights are protected.

Legal basis 

• Processing for employment purposes in connection with national implementing and supplementary legislation (Art. 6 Para. 1let. b EU-GDPR in conjunction with Art. 88 No. 1 and No. 2 EU-GDPR and §26 BDSG (new)).
  Processing is permissible if it is necessary for the establishment, implementation, or termination of the employment relationship.
• Legal obligation (Art. 6  Para. 1 let. c GDPR)
  Legal obligations to process your personal data arise, among other things, from the Working Hours Act, the Unfair Dismissal Protection Act, the Federal Leave Act, social security obligations (health, pension, unemployment, and long-term care insurance), the Income Tax Act (EStG), Whistleblower Protection Act, and others.
• Our legitimate interest (Art. 6  Para. 1  let. f EU-GDPR)
  Processing is necessary to safeguard our legitimate interests or those of a third party, unless the interests or fundamental rights and freedoms of the data subject prevail. Our legitimate interest is to fill all positions with qualified personnel within the SGL Group and to ensure efficient production and administrative processes. 
  You have the right to object to processing based on legitimate interests (Art. 6  Para. 1  let. f EU-GDPR). Please read the information above about your right to object under Art. 21 GDPR.
• Your consent (Art. 6  Para. 1 let. a / Art. 9 No. 2 let. a EU-GDPR) 
  If you have given us your consent to process personal data for specific purposes (e.g., taking photographs), the lawfulness of this processing is based on your consent. Consent that has been given can be revoked at any time. The revocation of consent is only effective for the future and does not affect the lawfulness of the data processed until the revocation. 
  This also applies to the revocation of declarations of consent that were given to us before the EU-GDPR came into force, i.e. before May 25, 2018. The revocation of consent only applies to the future and does not affect the legality of the data processed up to the point of revocation.
• Labor and social security rights and obligations (Art. 9 No. 2 let. b EU-GDPR) 
  Processing is necessary for the controller or you to exercise your rights under labor law and social security and social protection law and to fulfill your obligations in this regard.
• Protection of vital interests (Art. 9 No. 2 let. c EU-GDPR) 
  Processing is necessary to protect your vital interests or those of another natural person, and you or the data subject are physically or legally incapable of giving your consent.
• Data that you have obviously made public (Art. 9 No. 2  let. e EU-GDPR)
• Your data for the establishment, exercise, or defense of legal claims (Art. 9 No. 2 let. f EU-GDPR)

Provision of your personal data

Within the scope of your employment relationship, you must provide the personal data that is necessary for the commencement, execution, and termination of the employment relationship and for the fulfillment of the associated contractual obligations, or that we are required to collect by law or on the basis of collective agreements or company agreements. 

Without this data, we will generally not be able to conclude, execute, and terminate a contract with you. 

In some cases, you may experience disadvantages if you do not provide certain personal data, e.g., health data for shift work. 

If you do not provide us with the necessary information and documents, this may prevent the establishment and execution of the employment relationship.

Possible data recipients

Within the company, those departments that need your data to fulfill our contractual and legal obligations will have access to it. Service providers and vicarious agents employed by us may also receive data for these purposes. With regard to the transfer of data to recipients outside our company, it should first be noted that, as an employer, we only transfer necessary personal data in compliance with the applicable data protection regulations. As a matter of principle, we may only disclose information about our employees if required to do so by law, if the employee has given their consent, or if we are otherwise authorized to do so. 

Under these conditions, recipients of personal data may include, for example:

• Social security institutions,
• health insurance companies n,
• tax authorities,
• professional associations,
• Credit and financial services institutions or comparable institutions to which we transfer personal data for the purpose of implementing the contractual relationship (e.g., for salary payments),
• tax auditors,
• Service providers that we use within the scope of order processing relationships.

Other data recipients may be those entities to which you have given us your consent to transfer data or to which we are authorized to transfer personal data on the basis of a balancing of interests.

Possible data recipients in third countries or international organizations

See General Information.

Storage period of your personal data

Your data is stored for the first time when your application is received or when you create your applicant profile in the applicant portal. The storage period is primarily based on the statutory retention obligations and our legitimate interest in further storage. Your personal data will be deleted 3 years after the end of the employment relationship, wage and salary data 10 years after the end of the employment relationship, and health data up to 40 years after the end of the employment relationship. 

Longer storage may be necessary in individual cases if we have a legitimate interest in doing so and your interests worthy of protection do not conflict with this.

Automated decision-making and profiling

As a matter of principle, we do not use fully automated decision-making (e.g., profiling) in accordance with Article 22 of the EU-GDPR for the establishment, implementation, and termination of your employment relationship.

Should we use these procedures in individual cases, we will inform you separately about this and your rights in this regard, provided that this is required by law.

We process some of your data automatically due to legal requirements to combat money laundering, terrorist financing, and crimes that endanger assets.

Your data protection rights

See general section.

The processing of your personal data is largely based on your application.

Data sources and data types

We process personal data that we have received or obtained from you during the application process. In addition, we process your personal data that we have obtained from publicly accessible sources (e.g., press, Internet) in a permissible manner or that has been legitimately transmitted to us by other third parties (e.g., information on criminal offenses), insofar as this is necessary for the application process.

Relevant personal data includes personal details (name, address, and other contact details, date and place of birth, and nationality), family details (e.g., marital status, information about your children), religious affiliation, health data (if relevant to the employment relationship), any criminal convictions (police clearance certificate), identification data (e.g., ID card data), tax identification number, and information on qualifications and previous employers. In addition, this may also include information about your financial circumstances that indirectly affect us (e.g., wage garnishments) and other data comparable to the categories mentioned. 

Purposes of processing

Recruiting qualified employees, trainees, dual students, interns, retrainees, and temporary workers for the SGL Group.

Your personal data is processed for the purpose of carrying out the application process, communicating with you, and protecting our interests in the event of a legal dispute.

Legal basis 

• Processing for the purposes of the employment relationship in connection with national implementing and supplementary legislation (Art. 6  Para. 1 let. b EU-GDPR in conjunction with Art. 88 No. 1 and No. 2 EU-GDPR and §26 BDSG (new)).
  Processing is permissible if it is necessary for the decision on the establishment of an employment relationship.
• Legal requirements (Art. 6 Para. 1 let. c EU-GDPR)
  In addition, as a company, we are subject to various legal obligations, i.e., legal requirements (e.g., Money Laundering Act, Whistleblower Protection Act). The purposes of processing include, among other things, fraud and money laundering prevention, as well as the assessment and management of risks within the company and the SGL GROUP.
• Our legitimate interest (Art. 6  Para. 1  let. f EU-GDPR)
  Processing is necessary to safeguard our legitimate interests or those of a third party, unless the interests or fundamental rights and freedoms of the data subject prevail. Our legitimate interest is to fill all positions with qualified personnel within the SGL Group and to ensure an efficient recruitment process. 
  You have the right to object to processing based on legitimate interests (Art. 6 Para. 1 let. f EU-GDPR). Please read the information above about your right to object under Art. 21 EU-GDPR.
• Your consent (Art. 6  Para. 1 let. a / Art. 9 No. 2 let. a EU-GDPR) 
  If you have given us your consent to process personal data for specific purposes (e.g., extended storage of application documents), the lawfulness of this processing is based on your consent. Consent that has been given can be revoked at any time. The revocation of consent is only effective for the future and does not affect the lawfulness of the data processed until the revocation.
• Protection of vital interests (Art. 9 No. 2 let. c EU-GDPR) 
  Processing is necessary to protect your vital interests or those of another natural person, and you or the data subject are physically or legally incapable of giving your consent.
• Your data for the establishment, exercise, or defense of legal claims (Art. 9 No. 2 let. f EU-GDPR)

Provision of your personal data

As part of the application process, you are required to provide the necessary data. Without this data, we cannot consider your application. This refers to processing based on Art. 6  Para. 1 let. b EU-GDPR in conjunction with Art. 88 No. 1 and No. 2 EU-GDPR and §26 BDSG (new).

As part of the application process, you have an obligation to enable the processing of your data. If you do not provide this data, you may suffer disadvantages such as your application not being considered. This refers to processing carried out on the basis of Art. 6  Para. 1  let. f EU-GDPR.

You are not obliged to provide certain data for processing. This will not result in any disadvantages for you. This refers to processing based on consent in accordance with Art. 6  Para. 1 let. a EU-GDPR.

Possible data recipients

Within the company, those departments that need your data to fulfill our contractual and legal obligations will have access to it. Service providers and vicarious agents employed by us may also receive data for these purposes. With regard to the transfer of data to recipients outside our company, it should first be noted that, as an employer, we only transfer necessary personal data in compliance with the applicable data protection regulations. As a matter of principle, we may only disclose information about our employees if required to do so by law, if the applicant has given their consent, or if we are otherwise authorized to do so. 

Under these conditions, recipients of personal data may include, for example:

• In the case of unsolicited applications: other SGL companies,
• service providers that we use in the context of order processing relationships,
• the Employment Agency.

Other data recipients may be those entities to which you have given us your consent to transfer data or to which we are authorized to transfer personal data on the basis of a balancing of interests.

Possible data recipients in third countries or international organizations

No transfer to third countries or international organizations takes place.

Storage period of your personal data

Your data is stored for the first time when your application is received or when you create your applicant profile in the applicant portal. The storage period is primarily based on the statutory retention obligations and our legitimate interest in further storage. Your application documents and data will be stored for 6 months after rejection, unless you have given your consent for longer storage. 

Longer storage may be necessary in individual cases if we have a legitimate interest in doing so and your interests worthy of protection do not conflict with this.

Automated decision-making and profiling

As part of the application process, we do not use fully automated decision-making (e.g., profiling or AI) in accordance with Article 22 of the EU-GDPR.

If we use these procedures in individual cases, we will inform you separately about this and your rights in this regard, provided that this is required by law.

We process some of your data automatically because we are required by law to combat money laundering, terrorist financing, and crimes that endanger assets. 

Your data protection rights

See general section.

Data sources and data types

We process personal data that we receive from our customers, suppliers, or other affected persons in the course of our business relationship. In addition, we process personal data that we obtain from publicly accessible sources (e.g., debtor registers, land registers, commercial and association registers, press, Internet) in a permissible manner or that is legitimately transmitted to us by other third parties (e.g., credit agencies) to the extent necessary for the performance of our business relationship.

Relevant personal data includes personal details (name, address, and other contact details, date and place of birth, and nationality), identification data (e.g., ID card details), and authentication data (e.g., signature sample). In addition, this may also include order data (e.g., payment orders), data from the fulfillment of our contractual obligations (e.g., sales data in payment transactions), information about your financial situation (e.g., creditworthiness data, scoring/rating data, origin of assets), advertising and sales data (including advertising scores), documentation data (e.g., minutes from meetings), and other data comparable to the categories mentioned.

Purposes of processing

Data is processed for the purpose of order processing with our customers or for the implementation of pre-contractual measures, which are carried out on request. The purposes of data processing are primarily based on the specific product and may include, among other things, needs analyses, consulting, purchase and service contracts, and the execution of transactions. Further details on the purposes of data processing can be found in the relevant contract documents and terms and conditions.

Legal basis

• Fulfillment of contractual obligations (Art. 6  Para. 1 let. b EU-GDPR)
  Data is processed for the purpose of fulfilling and executing orders and contracts within the framework of our contracts with our customers or for the purpose of carrying out pre-contractual measures that are carried out upon request. The purposes of data processing are primarily based on the specific product and may include, among other things, needs analyses, consulting, purchase and service contracts, and the execution of transactions . Further details on the purposes of data processing can be found in the relevant contract documents and terms and conditions. 
  In addition, data is processed to fulfill our obligations under purchase, service, leasing, or rental agreements.
• Your consent (Art. 6  Para. 1 let. a / Art. 9 No. 2 let. a EU-GDPR)
  If you have given us your consent to process personal data for specific purposes (e.g., disclosure of data via the SGL GROUP, evaluation of payment transaction data for marketing purposes, photographs taken at events, newsletter distribution, supplier applications in the supplier portal), the lawfulness of this processing is based on your consent. Consent that has been given can be revoked at any time. This also applies to the revocation of declarations of consent that were given to us before the EU-GDPR came into force, i.e. before May 25, 2018. The revocation of consent only takes effect for the future and does not affect the lawfulness of the data processed until the revocation.
• Legal requirements (Art. 6  Para. 1 let. c EU-GDPR) 
  As a company, we are also subject to various legal obligations, i.e., legal requirements (e.g., Money Laundering Act, tax laws, Whistleblower Protection Act). The purposes of processing include credit checks, identity and age verification, fraud and money laundering prevention, compliance with tax control and reporting obligations, and the assessment and management of risks within the company and the SGL GROUP.
• Our legitimate interest (Art. 6  Para. 1  let. f EU-GDPR)
  Where necessary, we process your data beyond the actual fulfillment of the contract to protect our legitimate interests or those of third parties. Examples:
• Consultation with and exchange of data with credit agencies (e.g., SCHUFA) to determine creditworthiness and default risks in our purchasing processes,
  • Assertion of legal claims and defense in legal disputes,
  • Ensuring the IT security and IT operations of the company,
  • Prevention and investigation of criminal offenses,
  • Video surveillance to protect property rights and collect evidence in the event of break-ins,
  • Measures for building and facility security (e.g., access controls),
  • Measures to ensure property rights,
  • Measures for business management,
  • risk management within the SGL GROUP.
    
    You have the right to object to processing on the basis of legitimate interests (Art. 6  Para. 1  let. f EU-GDPR). Please read the information above about your right to object under Art. 21 EU-GDPR.
• Protection of vital interests (Art. 9 No. 2 let. c EU-GDPR) 
  Processing is necessary to protect your vital interests or those of another natural person, and you or the data subject are physically or legally incapable of giving your consent.
• Your data for the establishment, exercise, or defense of legal claims (Art. 9 No. 2 let. f EU-GDPR)

Provision of your personal data

In the context of our business relationships, you must provide the personal data that is necessary for the establishment, execution, and termination of a business relationship and for the fulfillment of the associated contractual obligations, or that we are legally obliged to process. 

Without this data, we will generally not be able to conclude, execute, and terminate a contract with you or grant you access to our properties.

Possible data recipients

Within the company, those departments that need your data to fulfill our contractual and legal obligations will have access to it. Service providers and vicarious agents employed by us may also receive data for these purposes, provided that they maintain confidentiality and integrity.

With regard to the transfer of data to recipients outside our company, it should first be noted that we only transfer necessary personal data in compliance with the applicable data protection regulations. We may only disclose information about you if required to do so by law, if you have given your consent, or if we are authorized to provide such information. 

Under these conditions, recipients of personal data may include, for example:

• Public authorities and institutions (e.g., tax authorities, law enforcement agencies, family courts, land registries) in the event of a legal or official obligation,
• Other credit and financial services institutions or comparable institutions to which we transfer personal data in order to conduct our business relationship with you (stock exchanges, credit agencies),
• Creditors or insolvency administrators who make inquiries in the context of enforcement proceedings,
• Auditors,
• Service providers that we engage in the context of order processing relationships.

Data transfer to third countries or international organizations

See General Section - Possible data recipients in third countries or international organizations.

Storage period for your personal data

We process and store your personal data for as long as is necessary to fulfill our contractual and legal obligations. 

If the data is no longer required for the fulfillment of contractual or legal obligations, it is regularly deleted, unless its further processing is necessary for the following purposes: 

• Fulfillment of commercial and tax law retention obligations,
• German Commercial Code (HGB), German Fiscal Code (AO), German Money Laundering Act (GwG). The retention and documentation periods specified therein are generally two to ten years.
• Preservation of evidence within the framework of the statutory limitation provisions. According to §§ 195 ff of the German Civil Code (BGB), these limitation periods can be up to 30 years, with the regular limitation period being 3 years.

Automated decision-making and profiling

As a matter of principle, we do not use fully automated decision-making in accordance with Article 22 of the EU-GDPR to establish and implement the business relationship. If we use these procedures in individual cases (e.g., to improve our products and services), we will inform you separately about this and your rights in this regard, provided that this is required by law.

We process some of your data automatically with the aim of evaluating certain personal aspects (profiling). We use profiling in the following cases, for example:

• Due to legal requirements, we are obliged to combat money laundering, terrorist financing, and crimes that endanger assets. This also involves data analysis (including in payment transactions). These measures also serve to protect you.
• We use evaluation tools to provide you with targeted information and advice on products and services. These enable us to communicate and advertise in a targeted manner in line with your needs, including market and opinion research.
• We use scoring to assess your creditworthiness. This calculates the probability that a customer will meet their payment obligations in accordance with the contract. The calculation may include, for example, income, expenses, existing liabilities, occupation, employer, length of employment, experience from previous business relationships, contractual repayment of previous loans, and information from credit agencies. The scoring is based on a mathematically and statistically recognized and proven method. The calculated scores support us in our decision-making process when concluding product contracts and are incorporated into our ongoing risk management.

Your data protection rights

See general section.

The provider of the site automatically collects and stores information in server log files, which your browser automatically transmits to us. These are:

a) Access log

• First line of request
• Required time (in microseconds) to serve the request
• Connection status after response is finished

b) Error log

• Time stamp
• Error type
• Process ID
• Client (only the IP of the upstream load balancer, not the actual IP)
• Error code
• Error description
• Affected resource

The server log files are retained for 90 days. This data will not be conflated with other data sources. The basis for data processing is Art. 6  Para. 1 let. a and let. f EU-GDPR.

The provision of the aforementioned personal data is neither prescribed by law nor required by contract. However, without the IP address and cookie identifier, the service and the functionality of our website is not guaranteed. In addition, individual services may be limited or unavailable. If you do not agree to this, we ask that you leave the site.

The job portal uses cookies. These do not harm your computer and do not contain viruses. Cookies are small text files that are stored on your computer and saved by your browser. They serve to make our site more user-friendly, effective, and secure.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser.

Important: Disabling cookies may limit the functionality of this website.

The site uses the JSESSIONID cookie type. This cookie is set by the Server Session option selected by SGL. This is the setting recommended by SAP in order to provide users with the best possible applicant accounts and to keep the website in compliance with the latest data protection laws. No login cookies are set when this cookie is used. This cookie is created as a session cookie when a new user visits an RMK site. When a user closes their browser, the session for that user expires. If this cookie is disabled by browser or computer settings, the user will not be able to log in.