Data Protection in the Application Process


We provide you with this data protection declaration, which refers exclusively to the data collected during the online application process, to inform you about how we handle your personal data collected during the application process at itdesign GmbH.

By submitting your application, you agree to these data protection regulations.

Personal Data within the Application Process

Personal data is information about personal or factual circumstances of an identified or identifiable natural person. This includes information such as your name, your address, your telephone number and your date of birth, but also data about your specific career, etc., which can be assigned to a specific person with reasonable effort. Information that is not directly associated with your real identity, however, is not personal data.

Collection and Processing of Personal Data

Our data protection regulations are in accordance with the BDSG or the EU DSGVO and BDSG (new) as well as the Telemediengesetz (TMG).

If you apply for an open position or make an unsolicited application via the application system on our website, you voluntarily submit personal data and information (first name, last name, e-mail address, telephone number, as well as any attachments such as CV, cover letter, etc.).

These transmitted data are stored in our HR software Personio.

If you send a speculative application directly by e-mail to, the encryption depends on your email service provider.

Responsible employees of our company can access the mentioned database in order to fill vacant positions with suitable candidates.

Storage of Personal Data

Personal data is stored exclusively for the purpose of filling the vacant position for which you have applied. In the event of employment, your personal data will be stored for the duration of the employment relationship. In the event of a rejection, we will delete your personal data 3 months after the rejection. Joining our applicant pool and storing it for 2 years is only done with your voluntary consent. You can revoke your consent at any time with effect for the future (see also “Information Right”).

Deletion of Personal Data

You can contact us at any time via to arrange for the deletion of your data.

Disclosure of Personal Data

In this context, Personio is our processor according to Art. 28 DS-GVO. The basis for the processing in this case is a contract for order processing between us as the controller and Personio GmbH, Rundfunkplatz 4, 80335 Munich, Germany. Beyond this, your personal data will only be disclosed if itdesign GmbH is legally obliged to do so or if it is necessary in the event of misuse or for clarification purposes. However, this requires concrete indications of illegal or abusive behavior. By order of a competent authority, we may provide information about this data (inventory data) in individual cases, in particular for the purposes of criminal prosecution.

Security of Your Personal Data

Both we as a company and any employees involved in the application process are instructed to take appropriate organisational and technical measures to protect personal data from misuse, unauthorised publication and loss. These measures meet at least the requirements of § 9 BDSG and § 64 BDSG (new).

Information Right

You have the right to request information about your stored data from us in accordance with § 34 BDSG or Art. 15 DSGVO and § 57 BDSG (new). In addition, you have the right to request information to the extent of § 20 BDSG or Art. 16ff. DSGVO and § 58 BDSG (new), you also have the right to demand that we correct, delete and block your personal data. To exercise these rights, please contact itdesign GmbH, attn. Andreas Günzel, Friedrichstraße 12, 72072 Tübingen, Germany, or by e-mail to

Questions and Suggestions

If you have any questions about our information on data protection and the processing of your personal data, you can contact our data protection officer directly. Please write to:

itdesign GmbH
Friedrichstrasse 12
72072 Tübingen

or send an e-mail to: office ( at )

Validity and Changes to the Data Protection Regulations for the Applicant System

The privacy policy is currently valid and dated 25.05.2018. Due to the further development of our application process or the implementation of new functions or technologies it may become necessary to change this privacy policy. We reserve the right to make appropriate changes at any time.

Akku fast leer.