Data protection at Samdock

Data protection

Introduction and general information 

Thank you for your interest in our website. The protection of your personal data is very important to us. In the following, you will find information on the handling of your data that is collected through your use of our website. Your data will be processed in accordance with the legal regulations on data protection. 

Person responsible within the meaning of the GDPR 

Samdock GmbH
Walter-Gropius-Str. 17
80807 Munich
[email protected]

Contact details of the data protection officer 

cyber complete GmbH /
Weststrasse 4
57392 Schmallenberg


Our privacy policy is intended to be simple and understandable for everyone. In this privacy policy, the official terms of the General Data Protection Regulation ( GDPR) are used as a rule. The official definitions are explained in Art. 4 GDPR.


When you access our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your internet browser and our web server: 

  • Date and time of the request
  • Name of the requested file
  • Page from which the file was requested
  • Access status
  • Web browser and operating system used
  • (Complete) IP address of the requesting computer
  • Amount of data transferred

We collect the listed data to ensure a smooth connection setup of the website and to enable a comfortable use of our website by the users. In addition, the log file is used to evaluate system security and stability as well as for administrative purposes. The legal basis for the temporary storage of the data or the log files is Art. 6 para. 1 lit. f GDPR.  

For reasons of technical security, in particular to defend against attempted attacks on our web server, we store this data for a short period of time. It is not possible for us to draw conclusions about individual persons on the basis of this data. After 60 days at the latest, the data is anonymised by shortening the IP address at domain level, so that it is no longer possible to establish a link to the individual user.  

In addition, the data is processed in anonymised form for statistical purposes, if necessary. This data is never stored together with other personal data of the user, compared with other data or passed on to third parties.


Our website uses cookies, which are stored by the browser on your device and which contain certain settings for the use of the website (e.g. for the current session). Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called session cookies, which are automatically deleted after you close your browser. Other cookies remain stored on your terminal device until you delete them or the storage period expires. These cookies enable us to recognise your browser on your next visit.

In part, the cookies serve to simplify website processes by storing settings (e.g. providing already selected options). If personal data is also processed by individual cookies implemented by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b GDPR either for the execution of the contract or in accordance with Art. 6 para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit. 

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. The cookie settings can be managed under the following links for the respective browsers.

You can also individually manage the cookies of many companies and functions that are used for advertising.

To do this, use the corresponding user tools, available at or

Most browsers also offer a ‘do-not-track’ feature that allows you to indicate that you do not want to be ‘tracked’ by websites. When this feature is enabled, the browser tells ad networks, websites and applications that you do not want to be tracked for behavioural advertising and the like. For information and instructions on how to edit this feature, please see the links below, depending on your browser provider:  

Google Chrome: 

Mozilla Firefox: 

Internet Explorer: 



In addition, you can prevent the loading of so-called scripts by default. NoScript only allows JavaScripts, Java and other plug-ins to run on trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: 

Please note that if you disable cookies, the functionality of this website may be limited. 

Web form for request for quotation

A web form is provided on our website which you can use to contact us to request a free quotation for our services by e-mail and telephone. The transmission of personal data via the web form is exclusively encrypted. If you take advantage of this option, the data entered in the input mask will be transmitted to us and stored. These data are: E-mail address of the user, first and last name, title, telephone number and postal address. The following data is also stored at the time the message is sent: Date and time.  

In this context, the data will not be passed on to third parties. The data will be processed exclusively within the scope of the stated purpose – to send an offer and to contact you by telephone. The legal basis for the processing of data transmitted in the course of sending an e-mail is the implementation of pre-contractual measures or a contract pursuant to Art. 6 para. 1 lit. b GDPR or your consent given to us pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR.  

Your personal data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. The personal data collected for the purpose of obtaining a quotation will be deleted as soon as the quotation has been sent and a prompt telephone contact with you has taken place or been unsuccessful. Continued processing only takes place if it is necessary within the framework of the resulting initiation and processing of a contract or for the fulfilment of the resulting contractual purposes.

Contact form and contact by e-mail 

If you send us enquiries via the contact form or by e-mail, your details from the enquiry form or your e-mail, including the title you gave there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up enquiries. The specification of an e-mail address is required for contacting us, the specification of your name as well as your telephone number is voluntary. Under no circumstances will we pass on this data without your consent.

The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f GDPR and, if applicable, Art. 6 (1) lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after your request has been processed, provided that there are no legal obligations to retain data. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f GDPR. 

Web form for sending applications 

If you apply to us via our web form, we collect personal data. This includes, in particular, your contact details (such as first and last name, title, telephone number, user’s e-mail address and postal address) and other data you provide about your background (e.g. curriculum vitae, qualifications, degrees and work experience) and yourself (e.g. covering letter, personal interests). This may also include special categories of personal data (e.g. information on a severe disability). As a rule, your personal data will be collected directly from you as part of the application process and encrypted during electronic transmission. The data originates from the application form to be completed online and from the uploaded files.  

The data processing serves to initiate an employment relationship. The primary legal basis for this is Art. 6 para. 1 b GDPR in conjunction with § 26 para. 1 BDSG. In addition, consent pursuant to Art. 6 Para. 1 lit. a, 7 GDPR in conjunction with § 26 Para. 2 BDSG can be used as a data protection permission provision. If the processing of your data is based on consent, you have the right to revoke your consent at any time with effect for the future.  

Within our company,

…only those persons and departments (e.g. Human Resources) have access to your personal data that absolutely need it to carry out the application process or to fulfil our legal obligations. If necessary, your applications will be forwarded to the relevant responsible persons for examination. Under no circumstances will your personal data be passed on to third parties without authorisation.  

Your data relating to an application for a specific job advertisement will be stored and processed by us during the current application process. After completion of the application process (e.g. in the form of an acceptance or rejection), the application process including all personal data will be deleted from the system 90 days after completion of the application process. In the event of an acceptance, we reserve the right to retain your application for a longer period, provided that the date of entry is more than six months in the future.


You have the option of registering for certain services provided on our website and thus creating a user profile. As part of the registration and set-up process, we collect and use the following personal data: 

  • E-mail address
  • First and last name
  • Salutation
  • Postal address
  • Date and time of registration
  • Telephone number 
In addition,

…voluntary information may be provided (e.g. telephone number etc.). Mandatory information provided for the purpose of registration is marked with an asterisk in the input mask. With your user account, you are given the opportunity to use further parts of our website and to log in for the offers you have purchased. The legal basis for data processing is Art. 6 para. 1 lit. a GDPR in the case of consent or Art. 6 para. 1 lit. b GDPR if processing is necessary to provide the requested services.

Your data will be deleted as soon as the user account on our website is deleted and insofar as no legal retention obligations exist. You can usually make a change and/or delete your user account, including the data you have provided, directly in your user account after logging in or by sending a message to the responsible person mentioned at the beginning.   

Google Analytics 

Our website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. (“Google”). Google Analytics uses so-called cookies. These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

We only use Google Analytics with IP anonymisation activated. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area, which means that a personal reference can be excluded. Google is certified for the US-European data protection agreement “Privacy Shield”, which ensures compliance with the level of data protection applicable in the EU. 

Insofar as you have given your consent to this in accordance with Art. 6 Para. 1 Sentence 1 lit. a GDPR, the processing on this website is carried out for the purpose of website analysis.  

On behalf of the operator of this website,

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. The terms of use of Google Analytics and information on data protection can be accessed via the following links: and at

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at URL  

Clicking on the following link…

… prevents the collection by Google Analytics by setting a so-called opt-out cookie: 

Deactivation of Google Analytics  

Information on how Google Analytics handles user data can be found in Google’s privacy policy:


Our website uses the web analytics service Hotjar provided by Hotjar Ltd. Hotjar Ltd is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe, Tel: +1 (855) 464-6788). 

With this tool, movements on the websites on which Hotjar is used can be tracked (so-called heat maps). For example, it is possible to see how far users scroll and how often they click on which buttons. Furthermore, with the help of the tool it is also possible to obtain feedback directly from the users of the website. Most importantly, Hotjar’s services can improve the functionality of the Hotjar-based website by making it more user-friendly, more valuable and easier to use for end users. 

We take special care to protect your personal data when using this tool. For example, we can only track which buttons are clicked, mouse history, how far scrolled, device screen size, device type and browser information, geographic location (country only) and preferred language to display our website. Areas of the websites in which personal data of you or third parties are displayed are automatically hidden by Hotjar and are therefore not traceable at any time. In order to exclude the possibility of direct personal references, IP addresses are only stored and processed anonymously.


Hotjar uses various third-party services such as Google Analytics and Optimizely. It may therefore be the case that these services collect data transmitted by your browser as part of web page requests. This would be, for example, cookies or your IP address. In these exceptional cases, this processing is carried out in accordance with Art. 6 Para. 1 lit. a GDPR on the basis of your consent for the purpose of statistical analysis of user behaviour for optimisation and marketing purposes. 

Hotjar offers every user the option of using a “Do Not Track header” to prevent the use of the Hotjar tool so that no data about the visit to the respective website is recorded. This is a setting that is supported by all common browsers in current versions. To do this, your browser sends a request to Hotjar with the information to deactivate the tracking of the respective user. If you use our websites with different browsers/computers, you must set up the “Do Not Track header” separately for each of these browsers/computers. 

When visiting a Hotjar-based website,

you can prevent Hotjar from collecting your data at any time by going to our opt-out page at and clicking Disable Hotjar. 

For more information about Hotjar Ltd and the Hotjar tool, please visit:

The privacy policy of Hotjar Ltd can be found at:

Google Analytics Remarketing/DoubleClick 

Our website uses the functions of Google Analytics Remarketing in conjunction with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. 

This function makes it possible to link the advertising target groups created with Google Analytics Remarketing with the cross-device functions of Google AdWords and Google DoubleClick. In this way, interest-related, personalised advertising messages that have been adapted to you depending on your previous usage and surfing behaviour on one end device (e.g. mobile phone) can also be displayed on another of your end devices (e.g. tablet or PC). 

If you have given your consent, Google will link your web and app browsing history to your Google account for this purpose. In this way, the same personalised advertising messages can be displayed on every device on which you log in with your Google account. 

To support this feature,

Google Analytics collects user authenticated IDs that are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad targeting. 

You can permanently opt out of cross-device remarketing/targeting by disabling personalised advertising in your Google Account; follow this link: 

The aggregation of the collected data in your Google account is based solely on your consent, which you can give or withdraw at Google (Art. 6 para. 1 lit. a GDPR). 

The information collected about users may be transmitted to Google and stored on Google’s servers in the USA. Google is certified for the us-European data protection agreement “Privacy Shield”, which ensures compliance with the level of data protection applicable in the EU. 

Further information and the data protection provisions can be found in Google’s data protection declaration at:

Facebook Pixel 

We use “Facebook Pixel” on our website, a service of Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA (hereinafter referred to as: “Facebook”). Facebook Pixel enables Facebook to display our ads on Facebook, so-called “Facebook Ads”, only to those Facebook users who have been visitors to our internet presence, in particular who have shown interest in our online offer. Facebook Pixel also makes it possible to check whether a user was redirected to our website after clicking on our Facebook Ads. Facebook Pixel uses, among other things, cookies, i.e. small text files that are stored locally in the cache of your web browser on your end device.

If you are logged into your Facebook user account,

your visit to our website will be recorded in your user account. The data collected about you is anonymous for us, so it does not allow us to draw any conclusions about the identity of the user. However, this data can be linked by Facebook to your user account there. If you have a user account with Facebook and are registered, Facebook can assign the visit to your user account. 

(2) We use Facebook Pixel for marketing and optimisation purposes, in particular to place relevant and interesting ads for you on Facebook and thus improve our offer, make it more interesting for you as a user and avoid annoying ads. 

(3) Insofar as you have given your consent for the storage of Facebook Pixel, this is done on the basis of Art. 6 Para. 1 lit. a GDPR. 

(4) You can object to the aforementioned collection by Facebook Pixel and the use of your data for the display of Facebook Ads. You can make the relevant settings as to which types of advertisements are displayed to you within Facebook on the following Facebook website:

Please note…

… that this setting will be deleted when you delete your cookies. In addition, you can deactivate cookies that are used for range measurement and advertising purposes via the following websites: 

Please note that this setting will also be deleted when you delete your cookies. 

(5) In addition, Facebook has submitted to the Privacy Shield Agreement concluded between the European Union and the USA and has certified itself. This means that Facebook undertakes to comply with the standards and regulations of European data protection law. You can find more information in the entry linked below:

(6) Information from the third-party provider: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. 

Further information from the third-party provider on data protection can be found on the following Facebook website: 

Information on Facebook Pixel can be found on the following Facebook website:


Our website uses plugins from the YouTube site operated by Google. The operator of the pages is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. 

If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account. 

For more information on the handling of user data, please refer to YouTube’s privacy policy at:

The extended data protection mode…

… is used here, which, according to the provider, only triggers the storage of user information when the video(s) is/are played. If the playback of embedded YouTube videos is started, the provider “YouTube” uses cookies to collect information about user behaviour. According to YouTube, these cookies are used, among other things, to collect video statistics, to improve user-friendliness and to prevent abusive behaviour. If you are logged in to Google, your data will be directly assigned to your account when you click on a video.

If you do not wish to have your data associated with your YouTube profile, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. Such an evaluation is carried out in particular in accordance with Art. 6 para. 1 lit.f GDPR on the basis of Google’s legitimate interests in the insertion of personalised advertising, market research and/or the needs-based design of its website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. 


… of a playback of the embedded videos, a connection to the Google network “DoubleClick” is established each time this website is called up, which may trigger further data processing operations without our influence. 

Google is certified for the us-European data protection agreement “Privacy Shield”, which ensures compliance with the level of data protection applicable in the EU. 

Data transfer and recipients 

Your personal data will not be transferred to third parties unless 

  • if we have explicitly pointed this out in the description of the respective data processing.
  • if you have given your express consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR,
  • the disclosure is necessary for the assertion, exercise or defence of legal claims pursuant to Art. 6 (1) sentence 1 lit. f GDPR and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
  • in the event that a legal obligation exists for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
  • insofar as this is necessary for the processing of contractual relationships with you in accordance with Art. 6 Para. 1 Sentence 1 lit. b GDPR. 

We also use external service providers for the processing of our services, which we have carefully selected and commissioned in writing. They are bound by our instructions and are regularly monitored by us. If necessary, we have concluded order processing contracts with them in accordance with Art. 28 GDPR. These are service providers for web hosting, sending e-mails as well as maintenance and care of our IT systems, etc. The service providers will not pass this data on to third parties. 

Data security 

We take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.

Duration of storage of personal data 

The duration of the storage of personal data is determined by the relevant statutory retention periods (e.g. from commercial law and tax law). After expiry of the respective period, the corresponding data is routinely deleted. If data is required for the fulfilment or initiation of a contract or if we have a legitimate interest in continuing to store it, the data will be deleted when it is no longer required for these purposes or you have exercised your right of revocation or objection. 

Your rights 

In the following, you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data: 

The right to request information about your personal data processed by us in accordance with Article 15 of the GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details. 

The right, in accordance with Art. 16 GDPR, to demand the immediate correction of inaccurate or incomplete personal data stored by us. 

The right to request the erasure of your personal data stored by us in accordance with Article 17 of the GDPR, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims. 

The right to request the restriction…

… of the processing of your personal data in accordance with Art. 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 GDPR. 

The right, pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller.  

The right to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.  

The right to revoke consent given in accordance with Art. 7 (3) GDPR: You have the right to revoke consent to the processing of data once given at any time with effect for the future. In the event of revocation, we will immediately delete the data concerned unless further processing can be based on a legal basis for processing without consent. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until the revocation;

Right of objection 

Insofar as your personal data is processed by us on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, insofar as this is done for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement to specify a particular situation. 

If you wish to exercise your right of withdrawal or objection, simply send an e-mail to [email protected]

External links 

Social networks (Facebook, Twitter and Xing) are only integrated on our website as links to the corresponding services. After clicking on the embedded text/image link, you will be redirected to the page of the respective provider. User information is only transferred to the respective provider after the forwarding. For information on the handling of your personal data when using these websites, please refer to the respective data protection regulations of the providers you use. 

Subject to change 

We reserve the right to adapt or update this data protection declaration if necessary in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take into account changes to our services, e.g. when introducing new services. The most current version applies to your visit. 

Status of this data protection declaration: 20.01.2020

Go back to the Samdock-Homepage