Your privacy is of the utmost importance to us. As a recruitment services company, our business model is based on the trust you extend to us to keep your data safe, and we take that very seriously. We are based in Munich, Germany, with offices across Europe and the United Kingdom; as such, we are fully compliant with, and primarily subject to, the Datenschutz-Grundverordnung of Germany (DSGVO), and by extension, the General Data Protection Regulation of the European Union (GDPR).
This policy explains when and how we collect personal information about the visitors of our website, persons who contact us through a contact form or call us, and our business subjects and employees of the company; who has access to the collected data; how long we retain the data; how we keep it secure; and explains your rights under the GDPR to request information about the personal data we have stored on you, and to request its correction or deletion.
How to contact us
See our contact page
What type of information do we collect?
1. When you visit our website:
a. Anonymous visitor statistics with Google Analytics.
We use Google Analytics to collect anonymous, generic, aggregated statistics about the visitors of our website. These statistics allow us to optimize our website for different devices, and to understand general trends about its usability.
No information is collected that would allow us to identify you personally. To ensure this, we anonymize the IP address of all visitors of our website, and the collected information is deleted 14 months after your last visit to our website.
The Google Analytics servers used to store this information may be located outside of the European Union, in the U.S.A., in which case the data transfer is governed by the EU-U.S. Privacy Shield legal framework.
b. Server logs from Amazon Web Services, Inc.
Our web server stores a log of website access requests your internet browser makes to our website in standard server access logs as part of the default configuration of any web server. Access request information is logged to improve the security of our visitors (e.g. to identify, analyze, and block attempts at (D)DoS attacks on our website), and to provide the basic functionality of the website.
Personally identifying information logged: IP address.
The server access logs are never used in combination with our operating business. Access to the server logs is restricted to our IT personnel, and the logs are generally deleted after 30 days. The Amazon servers storing these logs are located in the European Union.
Visit the privacy policy of Amazon Web Services
c. Content Delivery Network from Cloudflare, Inc.
Our website employs services provided by Cloudflare, Inc. to cache some contents of the website, to improve website load times and to protect against attacks and illegal activities. Cloudflare provides us with anonymous, generic, aggregated statistics about website requests, coarse geographic information, and website load times.
Personally identifying information logged: IP address.
Cloudflare does not provide us with individual IP addresses or other individual information that would allow us to identify you personally.
The Couldflare servers used to host this information may be located outside of the European Union.
Cloudflare may use cookies in order to provide their services efficiently. A cookie is a small text file that is stored in your browser as a part of its normal operation.
Visit Cloudflare’s privacy policy
d. External Greifenberg websites that are hosted by third parties
Our job board, which we link to from our homepage, is hosted by jobboard.io, an external service provided by ZipRecruiter, Inc. The purpose of jobboard.io is to provide our visitors with a list of job positions which we are actively seeking to fill as part of our day-to-day operations, and to allow our visitors to contact us if they are interested in an offer.
Personally identifying information we collect through the jobboard.io contact forms: Name, contact information, curriculum vitae (CV), IP address, and other information provided to us by the visitor submitting the form.
The jobboard.io servers on which this information is hosted may be located outside of the European Union.
Jobboard.io may use cookies in order to provide their services efficiently, to analyze general trends, or to offer additional functionality to the visitors of their website.
Visit the privacy policy of jobboard.io
e. Integrated features of our website that are provided by third parties
We may employ certain features on our website which are provided by third parties, including:
Google Fonts
Our website may use fonts that are provided by Google Fonts and loaded from Google’s servers to improve load times. We do not collect any information through this resource; however, as part of the normal functionality of the internet, the visitor’s IP address is visible by the Google Fonts servers hosting the resource, which may be located outside of the European Union.
Google Maps
Our website may provide embedded interactive maps to our visitors, which are provided by Google Maps. We do not collect any information through this resource; however, as part of the normal functionality of the internet, the visitor’s IP address is visible by the Google Maps servers hosting the resource. Additionally, Google may collect certain information about our visitors as part of their maps service, including the visitor’s Google ID (which Google has stored in a cookie on the visitor’s computer), which may allow Google to identify the visitors and offer them additional features of the dynamic Google Maps application. For example, visitors of our website who are logged into their Google account at the same time may see the option to save a location shown on the map to a list of favorite locations in their personal Google account.
We do not have access to any information collected by Google Maps; this is ensured by the standard cross-origin browser protocols of every internet browser.
2. When you contact us through a form on our website:
When you submit a contact form on our website, we are legally obligated to ask for your permission to store and use the data you submit to us for the intended purpose. If you do not give us permission to store and use your data, we are unable to receive any information you send us.
Personally identifying information we collect through the contact forms on our website: Name, email address, phone number (optional), and any other personal information you submit to us through the form or as part of your job application.
When you contact us, your information is stored on our servers provided by Bullhorn, Inc., which are located in the European Union. Your information is only used to provide you with the service you indicate when you submit the form.
3. Other information we store:
We collect and store other information in order be able to serve our business purpose:
a. General information
Personally identifying information may contain names, addresses, contact data, contract data, or consultation protocols. In addition, we may store the following information about different groups of persons:
b. Job applicants
Information about applicants which is provided to us by the applicant or collected during normal business operations may include data the applicant provided to us and made publicly available on relevant social networks (such as Xing or LinkedIn).
c. Clients
In addition to the general information, client data may include billing information, employment information, or sales information.
d. Employees of Greifenberg
In addition to the general information, employee information may include billing information, employment information, internal valuation indicators, success rates, or notes by superiors.
e. Suppliers and business partners
In addition to the general information, supplier and business partner data may include billing information, employment information, or sales information.
Data storage duration
We store personally identifying information until revocation by the data owner, or at the latest, until deletion after 10 years according to §257 HGB (German Commercial Code) and §147 AO (German Tax Code), if it is no longer necessary to fulfill any contractual agreements.
Your rights
It is our core mission to protect your rights and your data. Should you ever be dissatisfied with our handling of your data, please let us know, so we may investigate and correct the issue.
Below we list your legal rights pertaining to your personally identifying information under the DSGVO and §4 Section 2 BDSG (German Federal Data Protection Act).
1. Your right to revoke your consent
If you have previously given us your consent to store and use your data, and you’d like to revoke your consent, you may do so at any time. Simply email us at [email protected] and notify us of your decision.
2. Your right of access and rectification
You may request a full record of your personally identifying information from us, and request the correction of faulty or missing data at any time. To do so, please email us at [email protected].
3. Your right to limitation of data processing
We principally use your data only for the purposes you have requested of us at the time of collection, or in the course of your mandate. You may at any time restrict our use of your data to certain purposes, or exclude it for certain purposes. To do so, please email us at [email protected].
4. Your right to deletion
You may request the deletion of your personal data at any time. To do so, please email us at [email protected].
5. Your right of appeal to a supervisory authority
If you are dissatisfied with our treatment of your information, you have the right to file a complaint with a data protection agency.
Data transfer to clients and applicants
In the course of fulfillng the purpose of personnel consulting, personal data about applicants may be transferred to our clients, and personal data about clients may be transferred to applicants, as part of and within the scope of the respective mandate.
Data transfer on legal order
If we receive a legally binding order to transmit data, for example by court order or from a law enforcement agency, we are obliged to provide the relevant data if we hold it.
Data transfer to other countries
Depending on the mandate, data may be transferred to other countries within the scope of fulfilling the purpose of the personnel consultancy.
Third-party websites that we link to on our website
Our website may feature links to websites provided by third parties. We generally review the privacy policies of each linked site before we link to it, however, we can assume no responsibility for their accuracy or compliance, or for the safety of visitors. We recommend that you check the privacy statements of the respective websites yourself.
Any questions?
We’re happy to answer any questions you may have left. You’ll find all the ways to contact us here.