Privacy policy

Privacy policy

In the following, we inform you about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behaviour. We have taken extensive technical and operational precautions to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security procedures are regularly reviewed and adapted to technological progress.

1. Person responsible for data processing

The person responsible pursuant to Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is:

SIGNON Germany GmbH
Elisabeth-Schwarzhaupt-Platz 1
D-10115 Berlin

2. How to contact the data protection officer

You can reach our data protection officer at or our postal address with the addition "the data protection officer".

3. Your rights

You have the following rights in relation to personal data relating to you:

3.1 General rights

You have the right of access, rectification, erasure, restriction of processing, objection to processing and data portability. If processing is based on your consent, you have the right to revoke this consent with effect for the future.

3.2 Rights in data processing according to legitimate interest

Pursuant to Article 21 (1) of the GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6 (1) (e) of the GDPR (data processing in the public interest) or on the basis of Article 6 (1) (f) of the GDPR (data processing for the purposes of safeguarding a legitimate interest); this also applies to profiling based on this provision. In the event of your objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

3.3 Rights in the case of direct marketing

If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing pursuant to Article 21 (2) of the GDPR.

In the event of your objection to the processing for the purpose of direct marketing, we will no longer process your personal data for these purposes

3.4 Right to complain to a supervisory authority

You also have the right to complain to a competent data protection supervisory authority about our processing of your personal data.

4. Collection of personal data when visiting our website

In the case of mere informational use of the website, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security.

When you access the website 

  • Internet protocol address (IP address),
  • Web page from which the request comes,
  • Access status/HTTP status code,
  • Date and time of the request,
  • Time zone difference from Greenwich Mean Time (GMT)
  • Browser type,
  • operating system,
  • the website you have visited,
  • data volume transferred
  • Access status (file transferred, file not found, etc.)


The legal basis for this is the legitimate interest according to Art. 6 para. 1 lit. f) DSGVO. The collection of the data for the provision of the website and the storage in the log files is absolutely necessary for the operation of the website and to protect against misuse, so that our legitimate interest outweighs this in the context of the necessary weighing of interests. Consequently, there is no possibility of revocation on the part of the user.

5. Contact us by e-mail or contact form

When you contact us by e-mail or via our contact form, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions. Insofar as we request input via our contact form that is not required for contacting us, we have always marked this as optional.

This information is used to specify your request and to improve the processing of your request. This information is provided expressly on a voluntary basis and with your consent, Art. 6 Para. 1 lit. a) DSGVO. Insofar as this involves information on communication channels (e.g. e-mail address, telephone number), you also consent to us contacting you via this communication channel, if necessary, in order to respond to your request. Of course, you can revoke this consent at any time for the future.

We delete the data accruing in this context after the storage is no longer required or restrict the processing if there are statutory retention obligations.

6. Applications

You can apply to our company electronically, in particular via e-mail. Of course, we will only use your details to process your application and will not pass them on to third parties. Please note that unencrypted e-mails will not be transmitted without access protection.

You can also apply to our company online via our application portal. Your online application will be forwarded directly to the HR department at our parent company TÜV Süd via an encrypted connection and will of course be treated confidentially. We will of course only use your details to process your application and will not pass them on to third parties.

If you have applied for a specific position and it has already been filled or we consider you equally or even more suitable for another position, we would be happy to forward your application within the company. Please let us know if you do not agree to forwarding.

Your personal data will be deleted immediately after completion of the application process, or after a maximum of 6 months, unless you have expressly given us your consent to store your data for a longer period or a contract has been concluded. The legal basis is Art. 6 para. 1 lit. a), b) and f) DSGVO as well as § 26 BDSG.

7. Use of cookies:

When you use our website, cookies are stored on your computer. Cookies are small text files that are stored on your hard drive and assigned to the browser you are using, and through which certain information flows to the body that sets the cookie. Cookies cannot execute programmes or transfer viruses to your computer. They are used to make the website as a whole more user-friendly and effective.

This website uses the following types of cookies, the scope and functionality of which are explained below:

7.1 Transient cookies

These cookies are automatically deleted when you close the browser. These include, in particular, the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close the browser.

7.2 Persistent cookies

These cookies are automatically deleted after a predefined period of time, which may differ depending on the cookie. You can delete the cookies at any time in the security settings of your browser.

7.3 Prevention of cookies

You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or all cookies. Please note that you may then not be able to use all the functions of this website.

8. Matomo Tag Manager

We use the Matomo Tag Manager. Through this service we can manage our website tags. Tags are small code elements on our website that help us to improve our offer. You can find out which tags we use and what data we process with these tags and for what purposes in the following sections of our privacy statement. No personal data is processed by the Tag Manager itself. If you deactivate the individual tags, this will be taken into account by the Tag Manager.

9. Matomo

Our website uses the web analytics service Matomo. Matomo is an open source project and is legally represented by its founder Matthieu Aubry. Matomo uses "cookies", which enable an analysis of the use of the website. For this purpose, the usage information collected in the cookie (including your shortened IP address) is transmitted to our server and stored for usage analysis purposes. Matomo does not transmit any data to servers that are outside our control. Your IP address is immediately anonymised during this process so that you as a user are not identifiable to us. The information collected about your use of this website is not passed on to third parties.

We use the collected data for statistical analysis of user behaviour for the purpose of optimising the functionality and stability of the website and for marketing purposes.

The legal basis for the use of Matomo is your consent pursuant to Art. 6 para. 1 lit. a) DSGVO. Further information from the third-party provider on data protection can be found at

10. Data transmission

As a matter of principle, your data will not be transferred to third parties unless we are legally obliged to do so, or the transfer of data is necessary for the performance of the contractual relationship, or you have previously expressly consented to the transfer of your data.

Insofar as our service providers come into contact with your personal data, we ensure within the framework of commissioned processing pursuant to Art. 28 DSGVO that they comply with the provisions of the data protection laws in the same way. Please also note the respective privacy statements of the providers. The respective service provider is responsible for the content of third-party services, whereby we check the services for compliance with the legal requirements within the scope of reasonableness.

We make a point of processing your data within the EU / EEA. However, we may use service providers who process data outside the EU / EEA. In these cases, we ensure that an adequate level of data protection is established at the recipient before transferring your personal data. This means that a level of data protection comparable to the standards within the EU is achieved via EU standard contracts or an adequacy decision, such as the EU Privacy Shield.

11. Data security

We have taken extensive technical and operational precautions to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security procedures are regularly reviewed and adapted to technological progress.

Status: June 2021