Data Privacy

General data protection notes

General data protection notes

§1 General information

Mercedes-Benz Consulting GmbH (hereinafter referred to as “Mercedes-Benz Consulting”) is delighted by your visit to the website and your interest in the company and the services it offers. We take the protection of your private data very seriously and want you to feel comfortable when you visit our website. The protection of your privacy during processing of personal data is an important concern for us and one we take into consideration in our business processes.

The information we have provided below will inform you about which data is stored when using our website and how this data is used. Mercedes-Benz Consulting websites may contain links to websites of other providers to which this privacy statement does not extend.

Please take adequate time to read this information.

§2 Responsible body

Mercedes-Benz Consulting GmbH
Esslinger Str. 1
70771 Leinfelden-Echterdingen
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: info@mercedes-benz-consulting.de

§3 Data Protection Officer / Data Protection Coordinator

Please write to our Data Protection Officer or Data Protection Coordinator if you have any questions regarding processing of your personal data.

Data Protection Officer:
Chief Officer Corporate Data Protection Mercedes-Benz Group AG
HPC G353
70546 Stuttgart
E-Mail: data.protection@meredes-benz.com

Data Protection Coordinator:
Mercedes-Benz Consulting GmbH
Esslinger Straße 1
70771 Leinfelden-Echterdingen
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: data.protection@mercedes-benz-consulting.de

§4 Types of data collected

Personal data is information through which we can relate directly or indirectly to you as a per-son. It includes your first and last name, gender, address, telephone number, date of birth and email address.

We process personal data collected during visits to our websites in accordance with the data protection regulations of the country in which the body responsible for data processing is located. Our data protection policy is otherwise governed by the Data Protection Code of Conduct applicable to Mercedes-Benz Group AG. We may process different data relating to you, depending on the purpose and manner in which you visit our website.

  • Personal data
  • Contact and applicant data
  • Access data
  • Device information
  • Connection data
  • Communication data
  • Other information: Data that you provide us with voluntarily while using the website or related activities, but also from other sources such as social media or other (public) databases

For the use of our Virtual Retail Lab (VRL) website, we collect the following data from the VRL activation page:

  • Access data
  • Frequency of use

§5 Purpose of personal data

Mercedes-Benz Consulting uses your personal data for a variety of purposes. The following is an overview of relevant processing purposes:

  • Support and assistance: Contact inquiries, inquiries about the current status of the application or questions about advertised vacancies
  • Marketing and advertising: Mailings to employees, customers and partners only if express permission has been given beforehand.
  • Conclusion and realization of contracts: Recruitment of new employees, but also the sale of services and products
  • Security and protection: Use of technical security measures to protect against unfair use of the website
  • Fulfillment of legal obligations and/or observance of legal claims: Release of information to security authorities based on applicable national or international laws or other regulations

During use of the Virtual Retail Lab (VRL) and VRL website, we process data for the following purposes:

  • Analytics: Periodic reporting on the content’s frequency of use
  • License management: Periodic reporting on the license allocations used

§6 Legal basis for user of your data

The processing of your data is based in particular on one of the following legal bases:

  • Valid consent granted by you which you can revoke at any time;
  • to create or realize a contract or any other commitments directly related to this;
  • to assert and exercise legal entitlements;
  • to comply with legal obligations;
  • to pursue the legitimate interests of Mercedes-Benz Consulting, such as
    • management of the company; or
    • ensuring the safety and security of the company and established and practiced business enterprise;
  • to protect the vital interests of a natural person.

§7 Disclosure of your data to third parties

Your personal data may be shared with other companies or legal entities under certain circumstances, particularly service providers, business partners, affiliate companies such as Mercedes-Benz Group AG, public authorities and legal entities in connection with insolvency or similar proceedings.

§8 Transfer of your data to other countries

Mercedes-Benz Consulting is a global player. Some of your data is also processed in countries outside the European Union (EU) or European Economic Area (EEA). In such cases, we ensure that the level of data protection provided for your information is sufficiently high through, for example, contractual agreements with our business partners or service providers, or we ask for your express consent.

§9 Use of cookies

We use cookies and other tracking tools when users visit our website. For more information on this, see our cookie guidelines.

§10 Social networks (links)

We have integrated links to various social media services on our website. Clicking the appropriate icon will redirect you to the website of the respective provider. If you select the link for a service with the mouse, you can click on the Follow button to follow our activities on the plat-form.

Please refer to privacy policy of the providers for information regarding the purpose and scope of data collection, further processing and use of data by the providers and your rights and setting options for the protection of your privacy in this respect.

§11 Storage of data

Otherwise, we delete your personal data as soon as the purpose for which we have collected and processed the data ceases to apply. Beyond this time period, data storage only takes place to the extent made necessary by the legislation, regulations or other legal provisions to which we are subject in the EU or by legal provisions in third-party countries if these have an appropriate level of data protection. Should it not be possible to delete data in individual cases, the relevant personal data are flagged to restrict their further processing.

§12 Secure data transmission

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized accessing by third parties. Our security measures are subject to continuous improvement in line with technological developments.

§13 Rights of the data subject and right of appeal to a supervisory authority

As a data subject, you have the right of access (Art. 15 GDPR), right to rectification (Art. 16 GDPR), right to erasure (Art. 17 GDPR), right to restriction of processing (Art. 18 GDPR) and right to data portability (Art. 20 GDPR).

If you have consented to the processing of your personal data by us, you have the right to revoke your consent at any time. The legality of processing your personal data before revocation remains unaffected. We may further process such data pursuant to another applicable legal basis, e.g. for the fulfilment of our legal obligations (cf. section “Legal basis for user of your data”).

Right to object
You have the right to object at any time to the processing of your personal data pursuant to Art. 6 para. 1 letter e GDPR (data processing in the public interest) or Art. 6 para. 1 letter f GDPR (data processing on the basis of a balance of interests) on grounds relating to your particular situation. If you object, we will only process your personal data if we can prove compelling legitimate reasons that outweigh your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

We ask you to address your claims or declarations to the following contact address if possible: data.protection@mercedes-benz-consulting.de.

Complaints against Mercedes-Benz Consulting can be asserted through the supervisory authorities. The authority responsible for Mercedes-Benz Consulting is the State Commissioner for Data Protection and Freedom of Information for Baden-Württemberg:

State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Telefon: 0711 / 615541 – 0
Telefax: 0711 / 615541 – 15
E-Mail: poststelle@lfdi.bwl.de

Updated: March 2022

Cookies

The controller as per the EU General Data Protection Regulation (GDPR) is:

Mercedes-Benz Consulting GmbH („We“)
Esslinger Str. 1
70771 Leinfelden-Echterdingen
Deutschland
E-Mail: info@mercedes-benz-consulting.de

Data Protection Officer:
Chief Officer Corporate Data Protection Mercedes-Benz Group AG
HPC G353
70546 Stuttgart
Germany
E-Mail: data.protection@meredes-benz.com

Data Protection Coordinator:
Mercedes-Benz Consulting GmbH
Esslinger Straße 1
70771 Leinfelden-Echterdingen
Germany
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: data.protection@mercedes-benz-consulting.de

1. Data Protection

We appreciate you visiting our website and your interest in the products we offer. Protecting your personal data is very important to us. In this Privacy Policy, we explain how we collect your personal information, what we do with it, for what purposes and on what legal foundation we do so, and what rights you have on that basis. We will also refer you to Mercedes-Benz’s Data Protection Policy:

Mercedes-Benz Data Protection Policy.

Our Privacy Statement on the use of our websites and the Mercedes-Benz Data Protection Policy do not apply to your activities on the websites of social networks or other providers that can be accessed using the links on our websites. Please read the data protection provisions on the websites of those providers.

2. Collecting and processing your personal data

a. Whenever you visit our websites, we store certain information about the browser and operating system you are using; the date and time of your visit; the status of the interaction (e.g. whether you were able to access the website or received an error message); the usage of features on the website; any search phrases you entered; how often you visit individual websites; the names of the files you access; the amount of data transferred; the Web page from which you accessed our website; and the Web page you visited after visiting our website, whether by clicking links on our websites or entering a domain directly into the input field of the same tab (or window) of the browser in which you have our websites open. In addition, we store your IP address and the name of your Internet service provider for seven days. This is for security reasons; in particular, to prevent and detect attacks on our websites or attempts at fraud.

b. We only process other personal data if you provide this data, e.g. as part of a registration, contact form, chat, survey, price competition or for the execution of a contract, and even in these cases only insofar as this is permitted to us on the basis of a consent (including consent to international data transfer, see section 12) given by you or in accordance with the applicable legal provisions (see section 7).

c. You are neither legally nor contractually obligated to share your personal information. However, certain features of our websites may depend on the sharing or personal information. If you do not provide your personal information in such cases, you may not be able to use those features, or they may be available with limited functionality.

3. Purpose of use

a. We use the personal information collected during your visit to any of our websites to make using them as convenient as possible for you and to protect our IT systems against attacks and other unlawful activities.

b. If you share additional information with us – for example, by filling out a registration form, contact form, chat, survey, contest entry or to execute a contract with you – we will use that information for the designated purposes, purposes of customer management and – if required – for purposes of processing and billing and business transactions within the required scope in each instance.

c. For other purposes (e.g. display of personalized content or advertising based on your usage behaviour), we and, if applicable, selected third parties, use your personal data if and to the extent you give your consent through our consent management system. You will find further information and decision-making options here.

d. In addition, we use personal data to the extent that we are legally obliged to do so (e.g., storage for the fulfilment of commercial or tax-related retention obligations, release in accordance with official or judicial orders, e.g. to a law enforcement authority).

4. Transfer of Personal Information to Third Parties; Social Plugins; Use of Service Providers

a. Our websites may also contain an offer of third parties. If you click on such an offer, we transfer data to the respective provider to the required extent (e.g. information that you have found this offer with us and, if applicable, further information that you have already provided on our websites for this purpose).

b. When we use social plug-ins on our websites from social networks such as Facebook and Twitter, we integrate them as follows:

When you visit our websites, the social plug-ins are deactivated, i.e. no data is transmitted to the operators of these networks. If you want to use one of the networks, click on the respective social plug-in to establish a direct connection to the server of the respective network.

If you have a user account on the network and are logged in when you activate the social plug-in, the network can associate your visit to our websites with your user account. If you want to avoid this, please log out of the network before activating the social plug-in. A social network cannot associate a visit to other Mercedes-Benz websites until you have activated an existing social plug-in.

When you activate a social plug-in, the network transfers the content that becomes available directly to your browser, which integrates it into our websites. In this situation, data transmissions can also take place that are initiated and controlled by the respective social network. Your connection to a social network, the data transfers taking place between the network and your system, and your interactions on that platform are governed solely by the privacy policies of that network.

The social plug-in remains active until you deactivate it or delete your cookies (see section 5.d).

c. If you click on the link to an offer or activate a social plug-in, personal data may reach providers in countries outside the European Economic Area that, from the point of view of the European Union (“EU”), may not guarantee an “adequate level of protection” for the processing of personal data in accordance with EU standards. Please remember this fact before clicking on a link or activating a social plug-in and thereby triggering a transfer of your data.

d. We also use qualified service providers (e.g., IT service providers, marketing agencies) to operate, optimize and secure our websites. We only pass on personal data to the latter insofar as this is necessary for the provision and use of the website and its functionalities, for the pursuit of legitimate interests, to comply with legal obligations, or insofar as you have consented there to (see section 7). You will find more information regarding recipients of personal data in our consent management system.

5. Cookies

a. Cookies may be used when you are visiting our websites. Technically, these are so-called HTML cookies and similar software tools such as Web/DOM Storage or Local Shared Objects (so-called “Flash cookies”), which we collectively refer to as cookies.

b. Cookies are small files that are stored, and later read out, on your desktop, notebook or mobile device while you visit a website. Cookies make it possible, for example, to determine whether there has already been a connection between the device and the websites; take into account your preferred language or other settings, offer you certain certain functions (e.g. online shop, vehicle configurator) or recognize your usage-based interests. Cookies may also contain personal data.

c. Whether and which cookies are used when you visit our websites depends on which areas and functions of our websites you use and whether you agree to the use of cookies that are not strictly, typically for technical reasons, required in our Consent Management System. You will find further information and decision-making options here.

d. The use of cookies also depends on the settings of the web browser you are using (e.g., Microsoft Edge, Google Chrome, Apple Safari, Mozilla Firefox). Most web browsers are preset to automatically accept certain types of cookies; however, you can usually change this setting. You can delete stored cookies at any time. Web/DOM storage and local shared objects can be deleted separately. You can find out how this works in the browser or device you are using in the manual of the learner.

e.The consent to, and rejection or deletion of, cookies are tied to the device and also to the respective web browser you use. If you use multiple devices or web browsers, you can make decisions or settings differently.

f. If you decide against the use of cookies or delete them, you may not have access to all functions of our websites or individual functions may be limited.

6. Security

We take technical and organizational security measures in order to protect your information managed by us from being tampered with, lost, destroyed or accessed by authorized individuals. We are continuously improving our security measures in line with technological advancements.

7. Legal Foundations for Data Processing

a. If you have given us your consent to process your personal information, then that is the legal foundation for processing it (Art. 6, para. 1, letter a, of the EU’s General Data Protection Regulation, or GDPR). Regarding consent to transfer of data to recipients outside of the European Economic Area (Art. 49 para. 1 sentence 1 lit. a GDPR), please refer to section 12.

b. Art. 6, para. 1, letter b, of the GDPR is the legal basis for processing personal information for the purpose of entering into a contract or performing a contract with you.

c. If processing your personal information is required to fulfill our legal obligations (e.g. data retention), we are authorized to do so by Art. 6, para. 2, letter c, of the GDPR.

d. Furthermore, we process personal information for purposes of protecting our legitimate interests as well as the interests of third parties in accordance with Art. 6, para. 1, letter f of the GDPR. Examples of such legitimate interests include maintaining the functionality of our IT systems as well as the (direct) marketing of our products and services (to the extent not covered by your consent) and those of third parties and the legally required documentation of business contacts. As part of the consideration of interests required in each case, we take into account various aspects, in particular the type of personal information, the purpose of processing, the circumstances of processing and your interest in the confidentiality of your personal information.

8. Deleting your personal data

Your IP address and the name of your Internet service provider, which we store for security reasons, are deleted after seven days. Moreover, we delete your personal information as soon as the purpose for which it was collected and processed has been fulfilled. Beyond this time period, data storage only takes place to the extent made necessary by the legislation, regulations or other legal provisions to which we are subject in the EU or by legal provisions in third-party countries if these have an appropriate level of data protection. Should it not be possible to delete data in individual cases, the relevant personal data are flagged to restrict their further processing.

9. Rights of the Data Subject

a. As a data subject affected by data processing, you have the right to information (Section 15 GDPR), Correction (Section 16 GDPR), Deletion (Section 17 GDPR), Restricted processing (Section18 GDPR) and Data Transferability (Section 20 GDPR).

b. If you have consented to the processing of your personal information by us, you have the right to revoke your consent at any time. Your revocation does not affect the legality of the processing of your personal information that took place before your consent was revoked. It also has no effect on the continued processing of the information on another legal basis, such as to fulfill legal obligations (see section titled “Legal Foundation of Data Processing”).

c. Right to object
For reasons relating to your particular situation, you have the right to file an objection at any time to the processing of personal data pertaining to you that is collected under Section 6 Clause (1e) GDPR (data processing in the public interest) or Section 6 Clause 1 f) GDPR (data processing on the basis of a balance of interests). If you file an objection, we will continue to process your personal data only if we can document mandatory, legitimate reasons that outweigh your interests, rights and freedoms, or if processing is for the assertion, exercise or defense of legal claims. To the extent we use your personal data for direct marketing based on legitimate interests, you have the right to object at any time without giving reasons.

d. We ask you to address your claims or declarations to the following contact address if possible: data.protection@mercedes-benz-consulting.de.

e. If you believe that the processing of your personal data violates legal requirements, you have the right to lodge a complaint with a competent data protection supervisory authority (Art. 77 GDPR).

10. Newsletter

If you subscribe to a newsletter offered on our website, the information provided during registration for the newsletter will be used solely for the purpose of mailing the newsletter unless you consent to its use for additional purposes. You may cancel the subscription at any time by using the option to unsubscribe contained in the newsletter.

11. Mercedes-Benz Group AG’s Central Registration Service

With the Central Registration Service offered by Mercedes-Benz Group AG, you can sign up for every website and application belonging to the Mercedes-Benz Group and its brands that are connected to the service. The applicable terms of use contain specific data protection provisions. Those terms of use can be found on the registration pages of affiliated websites and applications.

12. Data transmission to recipients outside the European Economic Area

a. When using service providers (see section 4. d.) and passing on data to third parties based on you consent (see section 3.c.), personal data may be provided to recipients in countries outside the European Union (“EU”), Iceland, Liechtenstein and Norway (= European Economic Area) are transferred and processed there, in particular USA, India.

b. In the following countries, from the EU’s point of view, there is an adequate level of personal data protection (so-called “adequacy”), in compliance with EU standards: Andorra, Argentina, Canada (limited), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Switzerland, South Korea, United Kingdom, Uruguay. We agree with recipients in other countries on the use of EU standard contractual clauses, binding corporate rules or other applicable instruments (if any) to create an “adequate level of protection” according to legal requirements. For more information, please use the contact details given in section 9.d. above.

To the extent that you consent within our Consent Management System, you also consent to the transfer of data to recipients in countries outside of the European Economic Area in which no “adequate level of protection” exists. You may find information on data transferred, data recipients or categories of data recipients, and the relevant countries in our Consent Management System under “Cookie Settings” in the footer at the bottom of the website. Data protection law in these countries may not be fully comparable to that in the European Economic Area (e. g., regarding data subject rights, see section 9 above), no data protection authorities and/or no comparable options to oppose data protection violations. Among other things, public bodies (e. g., authorities) in these countries potentially may have easier access to data processed there and use such data for other purposes than in the European Economic Area. These circumstances may only partially be compensated through specific measures.

Last update: April 2022

Notes on the online application process

Notes on the online application process

§1 General information

Mercedes-Benz Consulting GmbH (hereinafter referred to as “Mercedes-Benz Consulting”) is delighted by the interest you have shown in working in our company. We take the protection of your private data very seriously and want you to feel perfectly comfortable in this respect, particularly with regard to your online application. The protection of your privacy during processing of personal data is an important concern for us and one we take into consideration in our business processes.

The information we have provided below will inform you about which data is stored when using the “Online Application” feature and how this data is used. This privacy statement applies exclusively to the aforementioned functionality and is therefore an addition to the general privacy policy which can be viewed in the footer of our website.

Please take enough time to read this information

§2 Responsible body

Mercedes-Benz Consulting GmbH
Esslinger Str. 1
70771 Leinfelden-Echterdingen
Telefon: +49 711 1770402
Telefax: +49 711 1770403
E-Mail: info@mercedes-benz-consulting.de

§3 Data Protection Officer / Data Protection Coordinator

Please write to our Data Protection Officer or Data Protection Coordinator if you have any questions regarding processing of your personal data.

Data Protection Officer:
Chief Officer Corporate Data Protection Mercedes-Benz Group AG
Mercedes-Benz Group AG
HPC G353
70546 Stuttgart
E-Mail: data.protection@meredes-benz.com

Data Protection Coordinator:
Mercedes-Benz Consulting GmbH
Esslinger Straße 1
70771 Leinfelden-Echterdingen
Telefon: +49 711 1770402
Telefax: +49 711 1770403
E-Mail: data.protection@mercedes-benz-consulting.de

§4 Types of data collected

Personal data is information through which we can relate directly or indirectly to you as a person. It includes your first and last name, gender, address, telephone number, date of birth and email address.

We process personal data collected during visits to our websites in accordance with the data protection regulations of the country in which the body responsible for data processing is located. Our data protection policy is otherwise governed by the Data Protection Code of Conduct applicable to Mercedes-Benz Group AG. Various types of data are collected as part of an online application:

  • Data contained in the documents submitted by the applicant (e.g. resume (CV), cover letter, motivation, references, certificates, verifications);
  • the applicant’s first and last name
  • address information
  • communication data
  • how the applicant’s attention has been attracted to the advertised position;
  • the URL of the applicant’s website;
  • the applicant’s earliest possible starting date;
  • the applicant’s salary expectation;
  • where appropriate, data on the assessment and evaluation of an applicant in the application process (no automated decision-making, including profiling).

During an online job interview, the following data is also collected but not saved:

  • IP address
  • image & sound transmission via the applicant’s web camera to Mercedes-Benz Consulting GmbH

§5 Purpose of personal data

a) When you use the “Online Application” feature on our website, personal data is collected via a software platform operated by a carefully selected external service provider committed to complying with relevant data protection regulations. Personal data collected in connection with an application is in all cases only used to process those applications submitted and to fill advertised vacancies. Any use of this data above and beyond this would only occur if and to the extent that this would be necessary to fulfill a legal obligation and/or to safeguard legal claims. Processing is initially restricted upon completion of the application process. Deletion then follows if storage periods and obligations no longer conflict with this.

b) We use suitable and EU-GDPR-compliant online tools via selected service providers to carry out online application interviews. The data used to conduct the call are transmitted in encrypted form. The conversations are neither recorded nor forwarded to third parties.

§6 Legal basis for use of your data

Processing of your data is based on one of the following legal bases:

  • Valid consent granted by you where appropriate which you can revoke at any time with effect for the future;
  • Art. 6 Subsection 1 b); Art. 88 of the General Data Protection Regulation (GDPR);
  • Art. 6 Subsection 1 c) of the General Data Protection Regulation (GDPR);
  • Section 26 of the German Federal Data Protection Act (latest version – § 26 BDSG (neu)).

§7 Disclosure of your data to third parties

Data collected during the application process is not disclosed to third parties. Any use of this data above and beyond this would only apply if and to the extent that this would be necessary to fulfill a legal obligation and/or to safeguard legal claims.

§8 Disclosure of your data to other countries

In principle, personal data collected in connection with an application will not be transferred to third countries, but is processed exclusively in member states of the European Union. Remote maintenance and support which can be realized from third countries represent the sole exception to this principle. Each incident of this remote maintenance and support is approved in advance by Mercedes-Benz Consulting.

Contractual agreement on standard data protection clauses ensures in these cases that the level of protection guaranteed by the GDPR is not exceeded. We will be more than happy to provide you with a copy of these standard data protection clauses should you so wish. Please direct your inquiry towards the Data Protection Coordinator at Mercedes-Benz Consulting GmbH. You can find his contact details under Section 3 of this privacy statement (see subitem “Data Protection Coordinator”).

§ 9 Use of cookies

We use cookies and other tracking tools during visits to our website. Please refer to our cookie policy for more information in this respect.

§10 Storage of data

The duration of data storage is:

Beginning of an employment relationship:
– 10 years (start of period: termination of the employment relationship)

Without the beginning of an employment relationship (rejection):

All applicant and communication data exchanged during an application process is automatically reduced by the system to master data (all personal data is deleted) four months after a rejection is issued. After this time, the data can no longer be associated with a particular person. After a further nine months, the master data is also automatically deleted from the system.

Without the beginning of an employment relationship (pool rejection)::

Applications that are included in our applicant pool (pool rejection) during the application process do not undergo master data reduction after four months. Potential inclusion in the pool is subject to your active consent during the online application process (consent to inclusion in the pool and to the use of your data). All of the data is retained on the system for a period of twelve months following the rejection (inclusion in the pool), after which it is also automatically deleted from the system. If the pool application is actively included in a selection process during these twelve months – following consultation with and consent from the applicant – the time-based deletion process is restarted.

§11 Secure data transmission

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized accessing by third parties. Our security measures are continuously improved in line with technological developments.

§12 Rights of the data subject and the right of appeal to a supervisory authority

As a data subject, you have the right of access (Art. 15 GDPR), right to rectification (Art. 16 GDPR), right to erasure (Art. 17 GDPR), right to restriction of processing (Art. 18 GDPR) and right to data portability (Art. 20 GDPR).

If you have consented to the processing of your personal data by us, you have the right to revoke your consent at any time. The legality of processing your personal data before revocation remains unaffected. We may further process such data pursuant to another applicable legal basis, e.g. for the fulfilment of our legal obligations (cf. section “Legal basis for user of your data”).

Right to object
You have the right to object at any time to the processing of your personal data pursuant to Art. 6 para. 1 letter e GDPR (data processing in the public interest) or Art. 6 para. 1 letter f GDPR (data processing on the basis of a balance of interests) on grounds relating to your particular situation. If you object, we will only process your personal data if we can prove compelling legitimate reasons that outweigh your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

We ask you to address your claims or declarations to the following contact address if possible: data.protection@mercedes-benz-consulting.de.

Complaints against Mercedes-Benz Consulting can be asserted through the supervisory authorities. The responsible authority for Mercedes-Benz Consulting is the State Commissioner for Data Protection and Freedom of Information Baden-Württemberg:

State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Phone: 0711 / 615541 – 0
Fax: 0711 / 615541 – 15
E-Mail: poststelle@lfdi.bwl.de

Updated: March 2022

Further information about privacy:

General data protection notes LeXi - Learning Management System

General data protection notes LeXi – Learning Management System

§1 General information on registration as participant for events of Mercedes-Benz Consulting GmbH

Mercedes-Benz Consulting GmbH (hereinafter referred to as “Mercedes-Benz Consulting”) is delighted by your visit to the website and your interest in the company and the services it offers. We take the protection of your private data very seriously and want you to feel comfortable when you visit our website. The protection of your privacy during processing of personal data is an important concern for us and one we take into consideration in our business processes.

The information we have provided below will inform you about which data is stored when using our website / training offering and how this data is used. Please take adequate time to read this information. Mercedes-Benz Consulting websites may contain links to websites of other providers to which this privacy statement does not extend.

§2 Responsible body

Mercedes-Benz Consulting GmbH
Esslinger Str. 1
70771 Leinfelden-Echterdingen
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: info@mercedes-benz-consulting.de

§3 Data Protection Officer / Data Protection Coordinator

Please write to our Data Protection Officer or Data Protection Coordinator if you have any questions regarding processing of your personal data.

Data Protection Officer:
Chief Officer Corporate Data Protection Mercedes-Benz Group AG
Mercedes-Benz Group AG
HPC G353
70546 Stuttgart
E-Mail: data.protection@meredes-benz.com

Data Protection Coordinator:
Mercedes-Benz Consulting GmbH
Esslinger Straße 1
70771 Leinfelden-Echterdingen
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: data.protection@mercedes-benz-consulting.de

§4 Types of data collected

Personal data is information through which we can relate directly or indirectly to you as a person. It includes your first and last name, gender, address, telephone number, date of birth and email address.

We process personal data collected during registration and participation in our training offer in accordance with the data protection regulations of the country in which the body responsible for data processing is located. Our data protection policy is otherwise governed by the Data Protection Code of Conduct applicable to Mercedes-Benz Group AG.

The following types of data is collected:

  • Contact data
  • Access data
  • Order-related data
  • Training history
  • Job / qualifications
  • Participant feedback on the quality assessment of our service
  • Optional information on achievement of learning objectives

Participation in online events of Mercedes-Benz Consulting GmbH my be associated with image, sound and film recordings. This refers only to the event and participants concerned.

Records may include:

  • Chats
  • Surveys
  • Presentations
  • Workgroups
  • Image, sound and film recordings of your person

§5 Purpose of personal data

Mercedes-Benz Consulting uses your personal data for a variety of purposes. The following is an overview of relevant processing purposes:

  • Organization of training
  • Performance of training
  • Invoicing / billing
  • Creation of attendance confirmations
  • Creation of certificates
  • Evaluation of participant feedback to improve our customer satisfaction
  • Figure of the training history
  • For records
    • To disseminate and provide information within the registered group of participants and within the learning environment to report on the event
  • Measures for business management and further development of our services.
  • Compliance with legal obligations and/or legal claims: Disclosure of information to security authorities based on national and international laws or other regulations.

§6 Legal basis for user of your data

The processing of your data is based in particular on one of the following legal bases:

  • Valid consent granted by you which you can revoke at any time;
  • to create or realize a contract or any other commitments directly related to this;
  • to assert and exercise legal entitlements;
  • to comply with legal obligations;
  • to pursue the legitimate interests of Mercedes-Benz Consulting, such as
    • management of the company; or
    • ensuring the safety and security of the company and established and practiced business enterprise;
  • to protect the vital interests of a natural person.

§7 Disclosure of your data to third parties

Your personal data may be shared with other companies or legal entities under certain circumstances, particularly service providers, business partners, affiliate companies such as Mercedes-Benz Group AG, public authorities and legal entities in connection with insolvency or similar proceedings.

Confirmation of participation can be passed on to Mercedes-Benz Group AG for the purpose of a common educational history. The processing of the data for the purpose of a common educational history is then carried out jointly with Mercedes-Benz Group AG.

§8 Transfer of your data to other countries

Mercedes-Benz Consulting is a global player. Some of your data is also processed in countries outside the European Union (EU) or European Economic Area (EEA). In such cases, we ensure that the level of data protection provided for your information is sufficiently high through, for example, contractual agreements with our business partners or service providers, or we ask for your express consent.

§9 Use of cookies

We use cookies and other tracking tools when users visit our website. For more information on this, see our cookie guidelines.

§10 Storage of data

Otherwise, we delete your personal data as soon as the purpose for which we have collected and processed the data ceases to apply. Beyond this time period, data storage only takes place to the extent made necessary by the legislation, regulations or other legal provisions to which we are subject in the EU or by legal provisions in third-party countries if these have an appropriate level of data protection. Should it not be possible to delete data in individual cases, the relevant personal data are flagged to restrict their further processing.

§11 Secure data transmission

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized accessing by third parties. Our security measures are subject to continuous improvement in line with technological developments.

§12 Rights of the data subject and right of appeal to a supervisory authority

As a data subject, you have the right of access (Art. 15 GDPR), right to rectification (Art. 16 GDPR), right to erasure (Art. 17 GDPR), right to restriction of processing (Art. 18 GDPR) and right to data portability (Art. 20 GDPR).

If you have consented to the processing of your personal data by us, you have the right to revoke your consent at any time. The legality of processing your personal data before revocation remains unaffected. We may further process such data pursuant to another applicable legal basis, e.g. for the fulfilment of our legal obligations (cf. section “Legal basis for user of your data”).

Right to object
You have the right to object at any time to the processing of your personal data pursuant to Art. 6 para. 1 letter e GDPR (data processing in the public interest) or Art. 6 para. 1 letter f GDPR (data processing on the basis of a balance of interests) on grounds relating to your particular situation. If you object, we will only process your personal data if we can prove compelling legitimate reasons that outweigh your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

We ask you to address your claims or declarations to the following contact address if possible: data.protection@mercedes-benz-consulting.de.

Complaints against Mercedes-Benz Consulting can be asserted through the supervisory authorities. The authority responsible for Mercedes-Benz Consulting is the State Commissioner for Data Protection and Freedom of Information for Baden-Württemberg:

State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Phone: 0711 / 615541 – 0
Fax: 0711 / 615541 – 15
E-Mail: poststelle@lfdi.bwl.de

Updated: April 2022

Social Media

Provider, Legal Notice & Privacy Policies for the use our Social Media channels in the European Economic Area

Provider

Mercedes-Benz Consulting GmbH
Esslinger Str. 1
D-70771 Leinfelden-Echterdingen

Phone +49 711 17-7 04 02
Fax +49 711 17-7 04 03

E-Mail: info(at)mercedes-benz-consulting.de

Represented by:
Managing Directors: Stefan Herbert (CEO), Bettina Friz (CFO)
Headquarters: Leinfelden-Echterdingen, Registry court: Stuttgart, Commercial Registry No. 213378
VAT ID: DE811585973
IBAN: DE53 6117 0076 0030 8304 00, SWIFT (BIC): DEUTDESS611

Our Social Media channels are operated by:

Mercedes-Benz Consulting GmbH (“we”/”us”)
Esslinger Str. 1
D-70771 Leinfelden-Echterdingen
E-Mail: info(at)mercedes-benz-consulting.de

Data Protection

Data Protection Officer:
Chief Officer Corporate Data Protection Mercedes-Benz Group AG
HPC G353
70546 Stuttgart
E-Mail: data.protection@mercedes-benz.com

Data Protection Coordinator:
Mercedes-Benz Consulting GmbH
Esslinger Straße 1
70771 Leinfelden-Echterdingen
Phone: +49 711 1770402
Fax: +49 711 1770403
E-Mail: data.protection@mercedes-benz-consulting.de

Facebook

Facebook Ireland Limited (“Facebook”) is responsible for the collection and further processing of personal user data on the Facebook websites. Please note that Facebook collects and processes certain information about your visit to our Facebook page even if you do not have a Facebook user account or are not logged into Facebook. For information on the processing of personal data from Facebook, please refer to Facebook’s Privacy Policy.

As the operator of this Facebook page, we can only view your public profile on Facebook. Which information is visible here depends on your settings in your profile. In addition, we process your personal data (such as your name and the content of your messages, inquiries or other postings to us) when you contact us via our Facebook page. We then process this data for the purpose of handling and, if applicable, responding to your postings.

Facebook also provides us with so-called Page Insights data. This information is anonymous statistics that we use to evaluate the quality of our Facebook page and content. These statistics are compiled on the basis of usage data collected by Facebook about your interaction with our Facebook page; we do not have access to this usage data. Facebook has agreed to be primarily responsible, and fulfill your rights, under the EU General Data Protection Directive (“GDPR”; see below for more information) regarding the processing of Page Insights data, and to make available to you the essence of the pertinent arrangement.

This processing is based on our legitimate interest pursuant to Art. 6 para. 1 letter f) of the GDPR, in particular in order to be able to contact you on your enquiries or contributions as well as to recognise user preferences (e.g. number of so-called followers, number of visits to individual page areas, user statistics according to age, geography and language) and to be able to adapt and improve the offer on our Facebook page as closely as possible to the target group.

We store your personal data on our systems, i.e. outside Facebook, if and for as long as necessary for the purposes of collection or as long as there are legal storage obligations.

You are not legally or contractually obliged to make available your personal data. However, it is possible that certain functions of our websites depend on the availability of personal data. If you do not make available personal data in these cases, this may result in functions not being available or only being available to a limited extent.

You have the following rights:

  • In accordance with Art. 15 GDPR, you have the right to information about the personal data stored by us. This means that you have the right to obtain from us confirmation as to whether or not personal data concerning you is processed, and, where that is the case, to request access to the personal data. The access information includes – inter alia – the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipients to whom the personal data have been or will be disclosed. However, this is not an absolute right and the interests of other individuals may restrict your right of access.
  • You may have the right to have incorrect personal data corrected in accordance with Article 16 GDPR. This means that you have the right to obtain from us the rectification of inaccurate personal data concerning you. Depending on the purposes of the processing, you may have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
  • You have the right to have your personal data erased in accordance with Art. 17 GDPR. This means that under certain circumstances, you may have the right to obtain from us the erasure of personal data concerning you and we may be obliged to erase such personal data.
  • In accordance with Art. 18 GDPR, you have the right to request a restriction on the processing of your personal data. This means that, in this case, the respective data will be marked and may only be processed by us for certain purposes (e.g. with your consent or to raise legal claims).
  • In accordance with Art. 20 GDPR, under certain circumstances, you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit those data to another entity without hindrance from us.
  • You also have the right to lodge a complaint with the competent data protection supervisory authority, in particular in the EU Member State of your habitual residence or of an alleged infringement of the GDPR.

To exercise these rights with respect to data processing by Facebook, please kindly contact Facebook through the channels provided by Facebook. In other cases or if so desired, please send us an e-mail to: data.protection@mercedes-benz-consulting.de.

Under certain circumstances, you may have the right to object, on grounds relating to your particular situation, or where personal data are processed for direct marketing purposes at any time to the processing of your personal data by us and we can be required to no longer process your personal data. Moreover, if your personal data is processed for direct marketing purposes, you have the right to object at any time to our processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In this case your personal data will no longer be processed for such purposes by us. To exercise your right of objection, if possible please send us an e-mail to: data.protection@mercedes-benz-consulting.de

For additional information on our handling of personal data, please refer to the Mercedes-Benz Consulting Data Privacy Policy.

Status: March 2022

LinkedIn

In general, LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) is the controller for the collection and further processing of personal user data on the websites of LinkedIn. Please note that LinkedIn will collect and process certain information about your visit to our LinkedIn page even if you have no LinkedIn user account or are not logged into LinkedIn. Information on processing of personal data by LinkedIn can be found in the Privacy Policy of LinkedIn under https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.

As the operator of this LinkedIn page, we can only view your public profile on LinkedIn. Which information is visible here depends on your settings in your profile. In addition, we process your personal data (such as your name and the content of your messages, inquiries or other postings to us) when you contact us via our LinkedIn page. We then process this data for the purposes of handling and, if applicable, to responding to your postings.

Additionally, LinkedIn provides us with so-called Page Analytics. This data are anonymous statistics that we use to evaluate the quality of our LinkedIn page and content. These statistics are compiled based on usage data collected by LinkedIn about your interaction with our LinkedIn; we do not have access to this usage date.

This processing is based on our legitimate interest pursuant to Art. 6 para. 1 letter f) of the General Data Protection Regulation (GDPR), in particular in order to be able to contact you on your enquiries or contributions as well as to recognize user preferences (e.g. number of so-called followers, number of visits to individual page areas, user statistics according to age, geography and language). In addition, to be able to adapt and improve the offer on our LinkedIn page as closely as possible to the target group.

We store your personal data on our systems, i.e. outside of LinkedIn, if and for as long as necessary for the purposes of collection or as long as there are legal storage obligations.

You are not legally or contractually obliged to make available your personal data. However, it is possible that certain functions of our websites depend on the availability of personal data. If you do not make available personal data in these cases, this may result in functions not being available or only being available to a limited extent.

It is conceivable that LinkedIn Corporation and their US subsidiaries (“LinkedIn”). based in the United States will also process some of the information collected outside the European Union. LinkedIn is under the EU-U.S. or Swiss-U.S. Privacy Shield certified and committed to complying with the European Data Protection requirements.

For the design and support of this LinkedIn page, we use qualified service providers (dialogue marketing agencies) We pass on personal data to these only if this is necessary for the purposes mentioned above (e.g. answering your queries), for pursuing legitimate interests, if you have consented.

You have the following rights:

  • In accordance with Art. 15 GDPR, you have the right to information about the personal data stored by us. This means that you have the right to obtain from us confirmation as to whether or not personal data concerning you is processed, and, where that is the case, to request access to the personal data. The access information includes – inter alia – the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipients to whom the persona data have been or will be disclosed. However, this is not an absolute right and the interests of other individuals may restrict your right of access.
  • You may have the right to have incorrect personal data corrected in accordance with Article 16 GDPR. This means that you have the right to obtain from us the rectification of inaccurate personal data concerning you. Depending on the purposes of the processing, you may have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
  • You have the right to have your personal data erased in accordance with Art. 17 GDPR. This means that under certain circumstances, you may have the right to obtain from us the erasure of personal data concerning you and we may be obliged to erase such personal data.
  • In accordance with Art. 18 GDPR, you have the right to request a restriction on the processing of your personal data. This means that, in this case, the respective data will be marked and may only be processed by us for certain purposes (e.g. with your consent or to raise legal claims).
  • In accordance with Art. 20 GDPR, under certain circumstances, you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit those data to another entity without hindrance from us.
  • You also have the right to lodge a complaint with the competent data protection supervisory authority, in particular in the EU Member State of your habitual residence or of an alleged infringement of the GDPR.

To exercise these rights with respect to data processing by LinkedIn, please kindly contact LinkedIn via the contact options provided by LinkedIn on the website. In other cases or if so desired, please send us an e-mail to data.protection@mercedes-benz-consulting.de.

Under certain circumstances, you may have the right to object, on grounds relating to your particular situation, or where personal data are processed for direct marketing purposes at any time to the processing of your personal data by us and we can be required to no longer process your personal data. Moreover, if your personal data is processed for direct marketing purposes, you have the right to object at any time to our processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In this case, we will no longer process your personal data for such purposes. To exercise your right of objection, if possible please send us an e-mail to data.protection@mercedes-benz-consulting.de.

For additional information on our handling of personal data, please refer to the Mercedes-Benz Consulting Data Privacy Policy.

Status: March 2022

XING

In general New Work SE Dammtorstraße 30, 20354 Hamburg, Deutschland is the controller for the collection and further processing of personal user data on the websites of Xing. Please note that Xing will collect and process certain information about your visit to our Xing page even if you have no Xing user account or are not logged into Xing. Information on processing of personal data by Xing can be found in the Privacy Policy of Xing under https://privacy.xing.com/en/privacy-policy.

As the operator of this Xing page, we can only view your public profile on Xing. Which information is visible here depends on your settings in your profile. In addition, we process your personal data (such as your name and the content of your messages, inquiries or other postings to us) when you contact us via our Xing page. We then process this data for the purposes of handling and, if applicable, to responding to your postings.

Additionally, Xing provides us with so-called Analytics. This data are anonymous statistics that we use to evaluate the quality of our Xing page and content. These statistics are compiled based on usage data collected by Xing about your interaction with our Xing page; we do not have access to this usage date.

This processing is based on our legitimate interest pursuant to Art. 6 para. 1 letter f) of the General Data Protection Regulation (GDPR), in particular in order to be able to contact you on your enquiries or contributions as well as to recognize user preferences (e.g. number of so-called followers, number of visits to individual page areas, user statistics according to age, geography and language). In addition, to be able to adapt and improve the offer on our Xing page as closely as possible to the target group.

We store your personal data on our systems, i.e. outside of Xing, if and for as long as necessary for the purposes of collection or as long as there are legal storage obligations.

You are not legally or contractually obliged to make available your personal data. However, it is possible that certain functions of our websites depend on the availability of personal data. If you do not make available personal data in these cases, this may result in functions not being available or only being available to a limited extent.

For the design and support of this Xing page, we use qualified service providers (dialogue marketing agencies). We pass on personal data to these only if this is necessary for the purposes mentioned above (e.g. answering your queries), for pursuing legitimate interests, if you have consented.

You have the following rights:

  • In accordance with Art. 15 GDPR, you have the right to information about the personal data stored by us. This means that you have the right to obtain from us confirmation as to whether or not personal data concerning you is processed, and, where that is the case, to request access to the personal data. The access information includes – inter alia – the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipients to whom the persona data have been or will be disclosed. However, this is not an absolute right and the interests of other individuals may restrict your right of access.
  • You may have the right to have incorrect personal data corrected in accordance with Article 16 GDPR. This means that you have the right to obtain from us the rectification of inaccurate personal data concerning you. Depending on the purposes of the processing, you may have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
  • You have the right to have your personal data erased in accordance with Art. 17 GDPR. This means that under certain circumstances, you may have the right to obtain from us the erasure of personal data concerning you and we may be obliged to erase such personal data.
  • In accordance with Art. 18 GDPR, you have the right to request a restriction on the processing of your personal data. This means that, in this case, the respective data will be marked and may only be processed by us for certain purposes (e.g. with your consent or to raise legal claims).
  • In accordance with Art. 20 GDPR, under certain circumstances, you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit those data to another entity without hindrance from us.
  • You also have the right to lodge a complaint with the competent data protection supervisory authority, in particular in the EU Member State of your habitual residence or of an alleged infringement of the GDPR.

To exercise these rights with respect to data processing by Xing, please kindly contact Xing via the contact options provided by Xing on the website. In other cases or if so desired, please send us an e-mail to data.protection@mercedes-benz-consulting.de.

Under certain circumstances, you may have the right to object, on grounds relating to your particular situation, or where personal data are processed for direct marketing purposes at any time to the processing of your personal data by us and we can be required to no longer process your personal data. Moreover, if your personal data is processed for direct marketing purposes, you have the right to object at any time to our processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In this case, we will no longer process your personal data for such purposes. To exercise your right of objection, if possible please send us an e-mail to data.protection@mercedes-benz-consulting.de.

For additional information on our handling of personal data, please refer to the Mercedes-Benz Consulting Data Privacy Policy.

Status: March 2022