Privacy policy
This privacy policy informs you about the type, scope and purpose of the processing of your personal data by the data controller in accordance with Art. 13 and 14 of the General Data Protection Regulation (GDPR).
This privacy policy applies to the website belonging to Lillian Care GmbH (LillianCare), which can be accessed under the domain https://lillian-care.de and its various subdomains.
1) Definitions
The definitions set forth in Art. 4 of the GDPR apply to this privacy policy.
2)Responsible for data processing
Responsible for data processing is
Lillian Care GmbH
Augustaanlage 54–56
68165 Mannheim
Germany
3) Data Protection Officer
The controller has appointed a data protection officer.
The data protection officer can be contacted at:
4) Verarbeitung Ihrer Daten auf unserer Webseite
How is your data processed in detail?
Below we inform you about the individual processing operations, the scope and purpose of the data processing, the categories of processed data, the categories of recipients, whether a third country data transfer takes place, the storage period or its criteria and the legal basis. Automated decision-making in individual cases, including profiling, does not take place.
4.1 Website presentation
Purpose
We collect your data for the provision of the website, to offer the availability of associated services, for an efficient design of the website and to ensure the security of the website.
Categories of processed data
The IP address, the Internet service provider of the accessing system, the date and time of access to the website, the browser type and version used, the operating system used by the accessing system and the website from which an accessing system accesses our website are stored.
Recipient categories
Your data will be passed on to the employees of the website hoster.
Third country data transfer
There is no transfer to third countries.
Storage period and its criteria
The data is stored for the duration of the website display.
Legal basis
Your data is collected on the basis of Art. 6 para. 1 b) GDPR (fulfillment of contract) and Art. 6 para. 1 f) GDPR (legitimate interest).
4.2 Contact by e‑mail or contact form
Purpose
We collect your data for the purpose of contacting you.
Categories of processed data
Your first and last name, e‑mail address, telephone number and request will be stored.
Recipient categories
Your data will be passed on to employees of LillianCare.
Third country data transfer
There is no transfer to third countries.
Storage period and its criteria
The deletion takes place after the purpose has been fulfilled.
Legal basis
Your data is collected on the basis of Art. 6 para. 1 b) GDPR (fulfillment of contract).
4.3 Handling of applicant data
Purpose
We offer you the opportunity to apply for employment via our online form. If you send us an application, we will process your associated personal data insofar as this is necessary to decide on the establishment of an employment relationship.
Categories of processed data
During the application process, your contact and communication data, CV, references and notes taken during interviews are stored.
Recipient categories
Your data will be passed on to LillianCare employees.
Third country data transfer
There is no transfer to third countries.
Storage period and its criteria
If you are hired, the data collected will be transferred to your personnel file and stored until termination of the employment contract; if your application is declined, the data will be deleted 6 months after rejection.
Legal basis
Your data is collected on the basis of Art. 6 para. 1 b) GDPR (fulfillment of contract).
4.4 Wordfence
Purpose
Wordfence is a security plugin for WordPress that is used to protect our website from malicious attacks, malware and other security threats. Wordfence offers features such as a firewall, malware scanner, login security measures and real-time monitoring.
Categories of processed data
Wordfence collects and stores various data to ensure the security of our website, including visitor IP address, browser type and version, the operating system used, referrer URL (the previously visited website), date and time of access, pages visited on our website, login attempts and user behaviour during login as well as information about malicious activities and security threats.
Recipient categories
Your data will be passed on to Wordfence employees.
Third country data transfer
Data is transferred to third countries with certification in accordance with the EU‑U.S. Data Privacy Framework.
Defiant, Inc.
800 5th Ave Ste 4100
Seattle, WA 98104, USA
Storage period and its criteria
Wordfence stores the data transmitted by you for a period of time that is necessary for the fulfillment of the above-mentioned purposes.
Legal basis
Your data is collected on the basis of Art. 6 para. 1 f) GDPR (legitimate interest).
4.5 Google Fonts
Purpose
Google Fonts are used to ensure a uniform and appealing presentation of our website.
Categories of processed data
When you access a page, your browser loads the required fonts directly from Google’s servers. A connection to Google’s servers is established and your IP address, device information and browser information are transmitted to Google. Google also records which of our websites you have visited.
Recipient categories
Your data will be passed on to Google employees.
Third country data transfer
Data is transferred to third countries with certification in accordance with the EU‑U.S. Data Privacy Framework.
Google LLC
1600 Amphitheatre Parkway
Mountain View, CA 94043 USA
Storage period and its criteria
Google stores the data transmitted by you for a period of time that is necessary for the fulfillment of the above-mentioned purposes.
Legal basis
Your data is collected on the basis of Art. 6 (1) a) GDPR (consent).
5) User Rights
As a user, you have the following rights in terms of data protection:
- Right to information (Article 15 GDPR) and rectification (Article 16 GDPR), updating and completion of personal user data: users have the right to obtain information about the personal data concerning them and to have it corrected or updated.
- Right to erasure of personal user data (Article 17 GDPR) if (i) it is no longer necessary, (ii) the user has withdrawn consent, (iii) the user objects to the processing, (iv) the processing is unlawful or the erasure is necessary for compliance with a legal obligation.
- Right to withdraw consent at any time (Article 13–2c GDPR) if the processing requires consent.
- Right to restriction of processing of personal user data (Article 18 GDPR): This right means that the processing of personal user data is restricted so that we may retain but not use or process the personal data.
- Right to object to the processing of personal user data (Article 21 GDPR): Users can object to the processing of their personal data at any time if the processing is based on our legitimate interest.
- Users have the right to object, on grounds relating to their particular situation, at any time to processing of personal data concerning them which is based on a public interest or a legitimate interest. We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the user, or the processing serves the establishment, exercise or defence of legal claims.
- Right to portability of personal data provided by the user if this personal data is subject to automated processing based on the user’s consent or a contract (Article 20 GDPR). Users have the right to move, copy or transfer the personal data concerning them from us to another database.
As a user, you have the right to lodge a complaint with a data protection supervisory authority. An overview of the supervisory authorities for data protection in the Federal Republic of Germany can be found here.
