Data privacy statement


1. Name and address of the controller

Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:

Wohlenbergstrasse 3
30179 Hanover

Phone: +49 511 67 47 0


2. Name and address of the Data Protection Officer

The Data Protection Officer of the controller is:

Marco Schulz
Wohlenbergstrasse 3
30179 Hanover

Any data subject may, at any time, contact our Data Protection Officer directly with all questions and suggestions concerning data protection.


3. Collection of general data and information

The website of KEYMILE GmbH collects a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website, (4) the sub-websites, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address).

When using these general data and information, the KEYMILE GmbH does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, the KEYMILE GmbH analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.


4. Cookies

KEYMILE GmbH’s website uses cookies. Cookies are text files placed and stored in a computer system via an internet browser.

Many websites and servers use cookies. Many cookies include what is known as a cookie ID. A cookie ID is the cookie’s unique identifier. It consists of a character string through which websites and servers can be matched with the actual internet browser in which the cookie was stored. This enables websites and servers that have been visited to differentiate between the data subject’s browser and other internet browsers that contain other cookies. A specific internet browser can be recognised and identified via the unique cookie ID.

Cookies cannot be used to start programs or transmit viruses to a computer. Information contained in the cookies help us to facilitate navigation of our website and for of our web pages to be displayed correctly.

We never share your data with third parties or link your data with other information without your consent.

The data subject can prevent our website from enabling cookies at any time by clicking on the appropriate setting in the internet browser used and therefore permanently prevent cookies from being enabled. Furthermore, cookies already created can be deleted at any time via an internet browser or other software. This is possible in all standard internet browsers. If the data subject disables cookies in the internet browser used, it may not be possible to use all the functions our website offers.


5. SSL encryption

We use state-of-the-art encryption (e.g. SSL) via HTTPS to protect your data during transmission.


6. Registering on our website/Service Cloud/InfoPortal

Some personal data is captured such as your name, address, contact and communication details like your telephone number and e-mail address when you register to use our personalised services. If you are registered with us, you can access the content and services only offered to registered users. Furthermore, registered users can amend or delete data provided during registration at any time. We will, of course, give you information on the personal data we store about you at any time. We are happy to correct or delete such data at your request, as long as such request does not run contrary to any statutory requirements to retain such data. Please use the contact info given at the beginning of this Privacy Policy in this regard.


7. Contact possibility via the website

The website of the KEYMILE GmbH contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or via a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis by a data subject to the data controller are stored for the purpose of processing or contacting the data subject. There is no transfer of this personal data to third parties.


8. Data protection for applications and the application procedures

The data controller shall collect and process the personal data of applicants for the purpose of the processing of the application procedure. The processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents by e-mail or by means of a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the submitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded with the applicant by the controller, the application documents shall be erased two months after notification of the refusal decision, provided that no other legitimate interests of the controller are opposed to the erasure. Other legitimate interest in this relation is, e.g. a burden of proof in a procedure under the General Equal Treatment Act (AGG).

9. Deleting or locking data

We adhere to principles of data avoidance and data economy. Therefore, we only store your personal data until the purposes stated here have been achieved or to comply with the many storage periods prescribed by the legislator. The data concerned is locked or deleted routinely as per statutory regulations once the purpose concerned no longer exists or relevant terms have elapsed.


10. Data protection provisions about the application and use of XING

We have placed XING functions on our website. If you visit the website, your web browser will briefly connect to the servers belonging to XING AG, Dammtorstrasse 30, 20354 Hamburg, Germany (XING) via the XING functions (e.g. to calculate the counter value). We would like to point out that XING has not disclosed to us the content of the data transmitted or what it is used for. You can find more information at:


11. Data protection provisions about the application and use of LinkedIn

Our website also includes links to the LinkedIn social network provided by the LinkedIn Corporation (2029 Stierlin Court, Mountain View, CA 94043, USA [hereinafter referred to as LinkedIn]). If you visit the website, your web browser will briefly connect to the LinkedIn Corporation’s servers. We would like to point out that LinkedIn has not disclosed to us the content of the data or what it is used for. Click on the following link to find information about LinkedIn’s privacy policy:


12. Data protection provisions about the application and use of YouTube

The links that we use on our website are operated by YouTube (LLC, 901 Cherry Ave, San Bruno, CA 94066 USA), represented by Google Inc. Visiting the website will generate a link to the YouTube servers. We would like to point out that YouTube has not disclosed to us the content of the data transmitted or what it is used for. You can find YouTube’s privacy policy here:


13. Data protection provisions about the application and use of Google Maps

Our website uses the Google Maps API (Applications Programming Interface) to visualise geographical information (maps). Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this service, you automatically agree to Google or one of its representatives or third parties capturing, processing and using the data generated or the data you enter while you are using Google Maps. By using Google Maps, information about the usage of our website and your IP address is transmitted to a Google server in the US and stored there. Transmitting data to the US does entail risks from a data protection standpoint. You can disable the Google Maps service and prevent data transmission to Google Maps by disabling JavaScript in your browser. However, we would like to point out that maps will then no longer be visualised. You can find more information on the capture, processing and use of your data by Google Maps and your rights in Google’s privacy policy at: and in the terms of service issued by Google Maps or Google Earth at:


14. Data protection provisions about the application and use of Matomo

On this website, the controller has integrated the Matomo component. Matomo is an open-source software tool for web analysis. Web analysis is the collection, gathering and evaluation of data on the behaviour of visitors from Internet sites. A web analysis tool collects, inter alia, data on the website from which a data subject came to a website, which pages of the website were accessed or how often and for which period of time a sub-page was viewed. A web analysis is mainly used for the optimization of a website and the cost-benefit analysis of Internet advertising.

The software is operated on the server of the controller, the data protection-sensitive log files are stored exclusively on this server.

The purpose of the Matomo component is the analysis of the visitor flows on our website. The controller uses the obtained data and information, inter alia, to evaluate the use of this website in order to compile online reports, which show the activities on our Internet pages.

Matomo sets a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, an analysis of the use of our website is enabled. With each call-up to one of the individual pages of this website, the Internet browser on the information technology system of the data subject is automatically through the Matomo component prompted to submit data for the purpose of online analysis to our server. During the course of this technical procedure, we obtain knowledge about personal information, such as the IP address of the data subject, which serves to understand the origin of visitors and clicks.

The cookie is used to store personal information, such as the access time, the location from which access was made, and the frequency of visits to our website. With each visit of our Internet pages, these personal data, including the IP address of the Internet access used by the data subject, are transferred to our server. These personal data will be stored by us. We do not forward this personal data to third parties.

The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the used Internet browser would also prevent Matomo from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Matomo may be deleted at any time via a web browser or other software programs.

In addition, the data subject has the possibility of objecting to a collection of data relating to a use of this Internet site that are generated by Matomo as well as the processing of these data by Matomo and the chance to preclude any such. For this, the data subject must set an opt-out cookie. The opt-out cookie that is set for this purpose is placed on the information technology system used by the data subject. If the cookies are deleted on the system of the data subject, then the data subject must call-up the link again and set a new opt-out cookie.

With each setting of the opt-out cookie, however, there is the possibility that the websites of the controller are no longer fully usable for the data subject.
Further information and the applicable data protection provisions of Matomo may be retrieved under


15. Data protection regulations on using Google reCAPTCHA

KEYMILE GmbH uses Google Inc.’s (Google) reCAPTCHA service to protect your orders submitted by an online form. The purpose of reCAPTCHA is to identify if entries are being made by a human being or fraudulently via a robot. The query includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. Your details are transmitted to Google and used for this purpose there. By using reCAPTCHA, you consent to the recognition you provide being incorporated into the digitisation of old processes. If IP anonymisation is applied on this website, your IP address is truncated beforehand by Google within the member states of the European Union or in other states who are signatories to the Agreement on the European Economic Area. The full IP address will only be transmitted to a Google server in the US and truncated there in exceptional cases. Google will use this information to analyse your usage of this service on behalf of this website’s data controller. The IP address transmitted by reCAPTCHA from your browser will not be amalgamated with other data from Google. Google’s data protection regulations apply to this data.
For further information on Google’s privacy policies go to:


16. Linked websites

KEYMILE GmbH may provide links to other third-party websites and services that are outside our control and not covered by this privacy policy. We encourage you to review the privacy policies posted on those websites you visit.


17. Data transmission to third parties

We normally use your personal data to answer any enquiries from you, process your order or give you access to special information or offerings. As a result, we might need to share your data with our affiliated companies or external service providers in order to process the data connected with the order.
We will not sell your personal data to third parties or market it elsewhere. Data is only transmitted to non-EU countries for purposes associated with processing order data and only insofar as a) such transmission is permitted by law and b) the special conditions for transmitting the data to a non-EU country apply, in particular that the importer of the data guarantees an appropriate level of data protection based on the EU’s standard contract clauses for transmitting personal data to data order processors in non-EU countries. This is based on the specifications of the Federal Data Protection Act (Bundesdatenschutzgesetz) and the German Telemedia Act (Telemediengesetz).


18. Your rights to information, correction, locking, deletion and objection

You have the right to receive information on any of your personal data stored by us at any time. You also have the right to have your personal data corrected, locked, or deleted, apart from when data must be stored for business purposes. Please ask our data protection officer about these issues. You can find the contact info above.

In order to ensure that data can be locked at any time, this data must be kept in a lock file for control purposes. You can also demand the data be deleted as long as no statutory regulations apply stating that this date must be archived. Should such a stipulation apply, we can lock your data on request.
You can make changes to or revoke any consent by notifying us with effect for the future.


19. Amendment to our data protection regulations

KEYMILE GmbH reserves the right to amend this Privacy Policy so that it complies with legal requirements at all times, or in order to anchor changes in our services in the Privacy Policy, for example when we launch new services. The new privacy policy will then apply the next time you visit the website. This data privacy statement was last updated on July 6th, 2018.