Privacy Information

About this Privacy Information  

General Information 
We hereby inform you about the processing of your personal data at the Saxon State Theatres. The processing of personal data, for example your name, address or e-mail address, is always in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection regulations applicable to the »Saxon State Theatres – Dresden State Opera and Dresden State Theatre«. By means of this privacy information, we would like to inform you about the scope and purpose of the personal data we collect, use and process. The legal basis for this privacy information are in particular Articles (Art.) 12 and 13 of the General Data Protection Regulation (GDPR). You will find concrete information on specific processing in the respective categories (e.g. newsletter, applicant management, supplier management).
The legally binding and leading version of this Privacy Information is the one in German language. With the English translation of relevant contents of our privacy policy, we want to inform you transparently about how we process your data.

A) Definitions
The privacy information is based on the terminology used by the European Directive and Regulation Maker when issuing the GDPR. We use the following terms in this privacy information:

1. Personal Data
Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

2. Data Subject
Data subject is any identified or identifiable natural person whose personal data is processed by the controller.

3. Processing
Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction or erasure.

4. Restriction of Processing
Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

5. Profiling
Profiling is any type of automated processing of personal data that consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person's job performance, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.

6. Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

7. Data Processor
Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

8. Recipient
A recipient is a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law shall not be considered as recipients.

9. Third Party
Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons who are authorized to process the personal data under the direct responsibility of the controller or the processor.

10. Consent
Consent is any expression of will in the form of a declaration or other unambiguous affirmative action made voluntarily by the data subject for the specific case in an informed manner and in an unambiguous manner, by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.

B) Legal Basis for Processing
Art. 6 (1) letter a GDPR serves as the legal basis for us for processing operations in which we obtain consent for a specific processing purpose.

If the processing of personal data is necessary for the performance of a contract to which you are a party, as is the case, for example, with processing operations that are necessary for a delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 (1) letter b GDPR. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services.

If we are subject to a legal obligation by which a processing of personal data becomes necessary, such as the fulfillment of tax obligations, the processing is based on Art. 6 (1) letter c GDPR.

In rare cases, the processing of personal data might become necessary to protect vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were to be injured on our premises and as a result his or her name, age, health insurance data or other vital information had to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 (1) letter d GDPR.

Finally, processing operations could be based on Art. 6 (1) letter f GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our state-owned enterprise or a third party, provided that the interests, fundamental rights and freedoms of the data subject are not overridden.

C) Your Rights as Data Subject
(1) Information to be Provided Art. 15 GDPR
You have the right to receive from us at any time, free of charge, information about the personal data stored about you, as well as a copy of this data in accordance with the legal provisions.

(2) Right to Rectification Art. 16 GDPR
You have the right to request that incorrect personal data concerning you be corrected. Furthermore, you have the right to request the completion of incomplete personal data, considering the purposes of the processing.

(3) Right to Erasure Art. 17 GDPR
You have the right to demand that we delete the personal data concerning you without delay, provided that one of the reasons provided for by law applies and insofar as the processing or storage is not necessary. We refer here to the limited deletability according to Art. 89 GDPR and §§ 5+6 of the Saxon Archive Act (German: SächsArchivG).

(4) Right to Restriction of Processing Art. 18 GDPR
You have the right to request that we restrict processing if one of the legal requirements is met.

(5) Right to Data Portability Art. 20 GDPR
You have the right to receive the personal data concerning you, which has been provided to us by you, in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance from us to whom the personal data has been provided, provided that the processing is based on consent pursuant to Art. 6 (1) letter a or Art. 9 (2) letter a GDPR or on a contract pursuant to Art. 6 (1) letter b GDPR and the processing is carried out with the aid of automated procedures, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us. Furthermore, when exercising your right to data portability pursuant to Art. 20 (1) of the GDPR, you have the right to have the personal data transferred directly from one controller to another controller, to the extent that this is technically feasible and provided that this does not adversely affect the rights and freedoms of other individuals.

(6) Right to Object Art. 21 GDPR
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Art. 6 (1) letter e, f GDPR.

(7) Right to Revocation of Consent
You have the right to revoke consent to the processing of personal data at any time with effect for the future.

(8) Right to Complaint to Supervisory Authorities
You have the right to complain about our processing of personal data to a supervisory authority responsible for data protection.

D) Transmission of Data to Third Parties
We do not transfer your personal data to third parties for purposes other than those listed below. We will only pass on your personal data to third parties if:

1. you have given your express consent to do so in accordance with Art. 6 (1) s. 1 letter a GDPR,

2. the disclosure is permissible under Art. 6 (1) s. 1 letter f GDPR to protect our legitimate interests and if there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,

3. in the event that a legal obligation exists for the disclosure pursuant to Art. 6 (1) s. 1 letter c GDPR, and

4. this is legally permissible and necessary according to Art. 6 (1) s. 1 letter b GDPR for the processing of contractual relationships with you.

In order to protect your data and to allow us to transfer data to third countries (outside the EU/EEA) if necessary, we have concluded commissioned processing agreements based on the standard contractual clauses of the European Commission.

E) Storage, Erasure and Blocking of Personal Data
We process and store your personal data only for the period of time required to achieve the purpose of storage or if this has been provided for by legal provisions. If the storage purpose ceases to apply or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions. The criterion for the duration of storage of personal data is the respective statutory retention period. After expiration of the period, the corresponding data is routinely deleted, provided that it is no longer required for contract fulfillment or contract initiation.

As a public institution of the Free State of Saxony, we are obliged to offer all documents to the Saxon State Archives and have them evaluated. Only after a negative evaluation about the archival value is a deletion of personal data possible. On the other hand, documents that have been evaluated by the Saxon State Archives as being worthy of archiving cannot be deleted. We refer to § 7 of the Saxon Data Protection Implementation Act (German: Sächs. Datenschutzdurchführungsgesetz) and § 5 and § 6 of the Saxon Archives Act (German: SächsArchivG).

F) Other
This Privacy Information is currently valid and has the status: February 2021.
Due to the further development of our websites and offers or due to changed legal or official requirements, it may become necessary to change this Privacy Information. You can access the current Privacy Information at any time on our website at

Despite careful monitoring of content, we accept no liability for the content of external links. The operators of linked sites are solely responsible for their content.

Contact us  

1. Data Controller, Art. 4 (7) GPRD:
Sächsische Staatstheater –
Staatsoper Dresden und Staatsschauspiel Dresden
Staatsbetrieb des Freistaates Sachsen [nach §26 VwVSäHO]
Die Geschäftsführung
Theaterplatz 2, 01067 Dresden

2. Data Protection Officer
DID Dresdner Institut für Datenschutz

3. Contact by e-mail 

1. Use of our website  

1.1 General
Following you will find information about the processing of your personal data when using our website including all sub-pages as well as the page which can be reached from this site. For other data processing outside of the aforementioned websites, this Privacy Information is not applicable, not even accordingly.

1.2 Data Collection
This site uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as orders, login data or contact requests. You can recognize an encrypted connection by the fact that there is a »https://« instead of a »http://« in the address line of the browser and by the lock symbol in your browser line. We use this technology to protect your transmitted data. 

In the case of merely informational use of our website, i.e. if you do not register or otherwise transmit information to us, we only collect data that your browser transmits to our server (in so-called »server log files«). Our website collects a series of general data and information with each call of a page by you or an automated system. This general data and information is stored in the server log files. Collected can be the:

  • IP address (the last subnet is cut away)
  • User ID (optional)
  • Date/time and duration of the visit
  • Title of the page that is displayed
  • Page URL
  • Page URL of the previously visited page
  • Screen resolution
  • Time in the user's time zone
  • Downloaded files
  • Outlinks that lead to leaving the own website
  • Speed in which the entire page is displayed in completeness to the user
  • Location of access with country, region, city and geolocation (latitude, longitude)
  • Main language of the browser
  • End device, brand and model
  • Browser and operating system

When using this general data and information, we do not draw any conclusions about your person. This information is rather required in order to

1. deliver the contents of our website correctly,
2. optimize the contents of our website as well as the advertising for it,
3. ensure the long-term functionality of our IT systems and the technology of our website, and
4. provide law enforcement authorities with the information necessary for prosecution in the event of a cyber-attack.

Therefore, the data and information collected is, on the one hand, statistically analyzed by us and, on the other hand, it is evaluated with the aim of increasing the data protection and data security of our enterprise so as to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from any personal data provided by a data subject. The legal basis for the data processing is Art. 6 (1) s. 1 letter f GDPR. Our legitimate interest follows from the purposes for data collection listed above.

1.3 Cookies
1.3.1 General Information about Cookies
We use cookies on our website. These are small files that are automatically created by your browser and stored on your IT system (laptop, tablet, smartphone or similar) when you visit our site. In the cookie, information is stored that arises in each case in connection with the specific end device used. This does not mean, however, that we thereby gain direct knowledge of your identity.
The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site. In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your terminal device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again. On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These cookies enable us to automatically recognize that you have already been to our site when you visit it again. These cookies are automatically deleted after a defined period of time.

1.3.2 Legal Basis for the Use of Cookies
The data processed by cookies, which are required for the proper functioning of the website, are thus necessary to protect our legitimate interests as well as those of third parties in accordance with Art. 6 (1) s. 1 letter f GDPR. For all other cookies, it applies that you have given your consent to this within the meaning of Art. 6 (1) letter a GDPR via our opt-in cookie banner.

1.4 Registration as a User
You have the option of registering on our website by providing personal data. Which personal data is transmitted to us in the process is determined by the respective input mask used for registration. The personal data you enter is collected and stored exclusively for internal use by us and for our own purposes. We may arrange for it to be passed on to one or more data processors, for example a parcel service provider, who will also use the personal data exclusively for an internal use attributable to us.
By registering on our website, the IP address assigned by your Internet service provider (ISP), the date and the time of registration are also stored. This data is stored because it is the only way to prevent misuse of our services and, if necessary, to enable us to investigate criminal offences that have been committed. In this respect, the storage of this data is necessary for our protection. As a matter of principle, this data is not passed on to third parties unless there is a legal obligation to pass it on or the passing on serves the purpose of criminal prosecution.
Your registration by voluntarily providing personal data also enables us to offer you content or services which, due to their nature, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from our database.
Upon request, we will provide you at any time with information about which personal data we have stored about you. Furthermore, we will correct or delete personal data at your request, insofar as this does not conflict with any legal obligations to retain data. A data protection officer named in this Privacy Information and all other employees are available to the data subject as contact persons in this context.
The processing of your data is carried out in the interest of a comfortable and easy use of our website. This constitutes a legitimate interest within the meaning of Art. 6 (1) letter f GDPR.

1.5 Web Analysis/ Tracking
We have integrated the Matomo component of the provider InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, on this website. Matomo is a software tool for web analysis, i.e. for collecting, collating and evaluating data on the behavior of visitors to websites. Among other things, data is collected about the website from which a data subject has accessed a website (so-called referrer), which subpages of the website have been accessed or how often and for how long a subpage has been viewed. This is used to optimize the website and for cost-benefit analysis of Internet advertising.
The software is operated on the server of the controller, and the log files, which are sensitive under data protection law, are stored exclusively on this server.
Matomo sets a cookie on your IT system. The setting of the cookie enables us to analyze the use of our website. Each time you call up one of the individual pages of this website, the Internet browser on your IT system is automatically prompted by the Matomo component to transmit data to our server for the purpose of online analysis. As part of this technical procedure, we obtain knowledge of personal data, such as the IP address of the person concerned, which we use, among other things, to trace the origin of visitors and clicks.
By means of the cookie, personal information, for example the access time, the place from which an access originated and the frequency of visits to our website are stored. Each time you visit our website, this personal data, including the IP address of the Internet connection you are using, is transmitted to our server. This personal data is stored by us. We do not pass on this personal data to third parties.
You can prevent the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Matomo from setting a cookie on your IT system. In addition, a cookie already set by Matomo can be deleted at any time via an Internet browser or other software programs.
Further, you have the option to object to the collection of data generated by Matomo related to a use of this website and to prevent such a collection. To do this, you must set an opt-out cookie. If your IT system is deleted, formatted or reinstalled at a later time, the data subject must set an opt-out cookie again. However, with the setting of the opt-out cookie, there is the possibility that our Internet pages are no longer fully usable for you.
These processing operations are carried out exclusively when explicit consent is given in accordance with Art. 6 (1) letter a GDPR. Further information and the applicable data protection provisions of Matomo can be found at

2. Customer Management  

2.1 Ticket Sales/ Direct Marketing
(1) At, you have the option of contacting the relevant department/ office using the telephone and fax numbers and e-mail addresses provided for each subject area. We process the personal data you voluntarily provide (e.g. telephone numbers, names, addresses, e-mail addresses, content of the communication) exclusively for the purposes/activities stated (e.g. reservations, box office) or for the purpose of processing the inquiry you have made.
If you order tickets in our online store, we also use the e-mail address you entered during the ordering process to occasionally send you information about performances and services of our house by way of a personalized and targeted direct mailing, which are similar to those you have already ordered from us and could therefore be of interest to you. You can also object to this use of e-mails at any time. To do so, please use the contact options provided above.

(2) If, after completion of the order, there is an obligation to provide us with your payment data (e.g. account number in the case of direct debit authorization), this data will be required for payment processing. Payment transactions via the common means of payment (Visa/ MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from »http://« to »https://« and by the lock symbol in your browser line. We use this technology to protect your transmitted data.

(3) We have integrated components of Sofortüberweisung on this website. Sofortüberweisung is a payment service that enables cashless payment of products and services on the Internet. Sofortüberweisung maps a technical procedure through which the online merchant immediately receives a payment confirmation. This enables a merchant to deliver goods, services or downloads to the customer immediately after the order is placed.
The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany, part of Klarna Bank AB, (publ), Sveavägen 46, 111 34 Stockholm, Sweden.
If you select »Sofortüberweisung« as a payment option during the ordering process in our online store, your data will be automatically transmitted to Sofortüberweisung. By selecting this payment option, you consent to the transmission of personal data required for payment processing.
When making a purchase via Sofortüberweisung, you transmit your PIN and TAN to Sofort GmbH. Sofortüberweisung carries out a transfer to us after technical verification of the account balance and retrieval of further data to check the account coverage. The execution of this financial transaction is communicated to us automatically.
The personal data exchanged with Sofortüberweisung are first name, last name, address, e-mail address, IP address, telephone number, cell phone number or other data necessary for payment processing. The purpose of transmitting the data is payment processing and fraud prevention. We will also transmit other personal data to Sofortüberweisung if there is a legitimate interest for the transmission. The personal data exchanged between Sofortüberweisung and us may be transmitted by Sofortüberweisung to credit reporting agencies. This transmission is for the purpose of checking identity and creditworthiness.
Sofortüberweisung may pass on the personal data to affiliated companies and service providers or subcontractors, insofar as this is necessary for the fulfillment of contractual obligations or the data is to be processed on behalf.
The data subject has the option to revoke the consent to the handling of personal data at any time to Sofortüberweisung. A revocation does not affect personal data that must necessarily be processed, used or transmitted for (contractual) payment processing.
The use of Sofortüberweisung is in the interest of proper and smooth payment processing. This represents a legitimate interest within the meaning of Art. 6 (1) letter f GDPR. The applicable data protection regulations of Sofortüberweisung can be found at

2.2 Ordering Publications
At you have the option of ordering the publications listed there from us using the e-mail address provided.

2.3 Subscriptions
If you are interested in our seasonal subscriptions in various packages, you can send us an inquiry under Subscriptions & Packages using the electronic inquiry form and request a quote from us. For this purpose, we collect the mandatory information you entered, marked with an asterisk, in order to process and respond to your inquiry. In addition, you can voluntarily enter supplementary data in the fields provided, which is not necessary for us but may be helpful.

2.4 Online-Shop 
(1) To use our online store at, you can register with us with your own customer account. Pursuant to Art. 6 (1) letter b GDPR, personal data is collected and processed if you provide it to us for the execution of a contract or when opening a customer account. Which data is collected can be seen from the respective input forms. Deletion of your customer account is possible at any time and can be done by sending a message to the above address of the person responsible. We store and use the data provided by you for the purpose of processing the contract. After complete processing of the contract or deletion of your customer account, your data will be blocked with regard to tax and commercial law retention periods and deleted after expiry of these periods, unless you have expressly consented to further use of your data or a legally permitted further use of data has been reserved on our part, about which we inform you accordingly below.
(2) The personal data collected by us will be passed on to the transport company commissioned with the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. We pass on your payment data to the commissioned credit institution within the framework of payment processing, insofar as this is necessary for payment processing. If payment service providers are used, we inform explicitly about this below. The legal basis for the transfer of data is here Art. 6 para. 1 lit. b GDPR. We are also entitled to pass on personal data for dept collection purposes. 
(3) We transmit personal data to third parties only if this is necessary in the context of the contract, such as to the companies entrusted with the delivery of the goods or the credit institution entrusted with the payment processing. A further transmission of the data does not take place or only if you have expressly agreed to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes. The basis for data processing is Art. 6 (1) letter b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
(4) We reserve the right to transfer the permissibly collected data to reliable service providers (as part of proper commissioned processing pursuant to Art. 28, 29 GDPR) for the purpose of archiving, administration and backup.

2.5 Appeal for Donations
In addition, we reserve the right to use your contact data for the purpose of soliciting donations. This is generally done within the framework of proper order processing in accordance with Art. 28, 29 GDPR.

2.6 Correspondence with Customers and Interested Parties
In order to be able to respond to your correspondence (suggestions, complaints, etc.), we collect your personal data and forward it internally to the relevant departments. Personal data is collected when you contact us (e.g. by contact form or e-mail). Which data is collected in the case of a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of responding to your request or for contacting you and the associated technical administration. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 (1) letter f GDPR. If your contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) letter b GDPR. Your data will be deleted after final processing of your request; this is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.

2.7 Online survey of visitors
We use your name and e-mail address to invite you to participate in an online survey on our website. As part of the survey, we record your answers to the individual questions. Participation in the survey is voluntary, as is answering individual questions. We use the survey results to create anonymous evaluations that have no reference to you personally. We will not use your answers to evaluate you personally and will not store your answers together with data identifying you (e.g. name, e-mail address).

4. Social Media, Plugins and other services  

In order to be able to communicate with you on social networks and inform you about our services, we are represented there with our own pages. If you visit one of our social media pages, we are jointly responsible with the provider of the respective social media platform within the meaning of Art. 26 GDPR with regard to the processing operations triggered thereby which concern personal data.

We are not the original provider of these pages, but merely use them within the scope of the possibilities offered to us by the respective providers. As a precaution, we therefore point out that your data may also be processed outside the European Union or the European Economic Area. Use may therefore pose data protection risks for you, as it may be more difficult to protect your rights, e.g. to information, deletion, objection, etc., and the processing in the social networks is often carried out directly for advertising purposes or to analyze user behavior by the providers, without this being able to be influenced by us. If usage profiles are created by the provider, cookies are often used or the usage behavior is directly assigned to your own member profile of the social networks (if you are logged in here).

The described processing operations of personal data are carried out in accordance with Art. 6 (1) letter f GDPR on the basis of our legitimate interest and the legitimate interest of the respective provider in order to be able to communicate with you in a timely manner or to inform you about our services. If you have to give your consent to data processing as a user with the respective providers, the legal basis refers to Art. 6 (1) letter a GDPR in conjunction with Art. 7 GDPR.

Since we do not have access to the providers’ databases, we would like to point out that it is best to assert your rights (e.g. to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data in the social networks and the possibility of making use of your right of objection or revocation (so-called opt-out), we have listed below at the respective provider of social networks used by us:

4.1 Facebook

4.2 Instagram

4.3 Twitter

4.4 YouTube

4.6 YouTube (videos)
We have integrated YouTube components on this website. YouTube is an Internet video portal that allows video publishers to post video clips free of charge and other users to view, rate and comment on them, also free of charge. YouTube allows the publication of all types of videos, which is why complete film and TV shows, but also music videos, trailers or videos made by users themselves can be accessed via the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Each time you call up one of the individual pages of this website that is operated by us and on which a YouTube component (YouTube video) has been integrated, the Internet browser on your IT system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information on YouTube can be found at Within the scope of this technical procedure, YouTube and Google receive knowledge of which specific sub-page of our website is visited by you.
If the data subject is logged in to YouTube at the same time, YouTube recognizes which specific sub-page of our website you are visiting when you call up a sub-page that contains a YouTube video. This information is collected by YouTube and Google and assigned to your YouTube account.
YouTube and Google always receive information via the YouTube component that you have visited our website if you are logged into YouTube at the same time as calling up our website; this takes place regardless of whether you click on a YouTube video or not. If you do not want this information to be transmitted to YouTube and Google, you can prevent the transmission by logging out of your YouTube account before accessing our website.
These processing operations are carried out exclusively when explicit consent is given in accordance with Art. 6 (1) letter a GDPR. The privacy policy published by YouTube ( provides information about the collection, processing and use of personal data by YouTube and Google

4.7 Vimeo (videos)
Plugins of the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA are integrated on our website. When you call up a page of our website that contains such a plugin, your browser establishes a direct connection to the servers of Vimeo. The content of the plugin is transmitted by Vimeo directly to your browser and integrated into the page. Through this integration, Vimeo receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Vimeo account or are not currently logged in to Vimeo. This information (including your IP address) is transmitted by your browser directly to a Vimeo server in the USA and stored there.
If you are logged in to Vimeo, Vimeo can directly assign your visit to our website to your Vimeo account. If you interact with the plugins (such as pressing the start button of a video), this information is also transmitted directly to a Vimeo server and stored there.
The described data processing operations are carried out in accordance with Art. 6 (1) letter f GDPR on the basis of Vimeo’s legitimate interest in market research and the demand-oriented design of the service.
If you do not want Vimeo to assign the data collected via our website directly to your Vimeo account, you must log out of Vimeo before visiting our website. For the purpose and scope of the data collection and the further processing and use of the data by Vimeo, as well as your rights in this regard and setting options for protecting your privacy, please refer to the privacy policy of Vimeo:
For videos from Vimeo that are embedded on our site, the tracking tool Google Analytics is automatically integrated. This is Vimeo’s own tracking, to which we have no access and which cannot be influenced by our site. Google Analytics uses so-called »cookies« for tracking, which are text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
These processing operations are carried out exclusively when explicit consent is given in accordance with Art. 6 (1) letter a GDPR.

    7. Job Application Management  

    As part of our job application management, we collect your personal data to select suitable external and internal applicants to fill a vacancy.

    17. Employee Information (guests and permanent employees)