Welcome to Flink! In the following we would like to inform you about the data we process from you when you visit this website.
.
1. responsible party and contact details of the data protection officer
2. purposes and legal basis of data processing
2.1 Automatically collected access data
2.2. contacting
2.3. applications
3. passing on of data
4. data transfer to third countries
5. storage period
6. your rights
7. change of the privacy policy
1. Responsible party and contact details of the data protection officer
Responsible for all processing of personal data via this website is us, Flink SE. We are located at Brunnenstraße 19-21 in 10119 Berlin. You can reach us by email at contact@goflink.com. You can reach our data protection officer at gdpr@goflink.com.
2. Purposes and legal basis of data processing
All data that we collect from you is collected for a specific purpose. Below you will find all purposes and categories of data that we collect for the respective purpose.
2.1 Automatically collected access data
When you visit our website, we collect the access data that your browser automatically transmits to enable you to visit the website. The access data includes, in particular, the IP address of the requesting device, the date and time of the request, the address of the requested website and the requesting website, technical information about the browser and operating system used, and online identifiers (e.g. device identifiers, session IDs).
The processing of this access data is based on our legitimate interests: To enable the visit of the website, to ensure the permanent functionality and security of our systems, as well as to generally administratively maintain our website.
2.2 Contact
You have the opportunity to contact us through various channels. In this context, we process your personal data exclusively for the purpose of communicating with you. Either to fulfill or initiate a contract with you, or to be able to answer your inquiry based on our legitimate interest.
2.3 Applications
You can apply to us online via the application page for bike couriers (https://riders.goflink.com/) or on our job page (https://careers.smartrecruiters.com/Flink3/) for open positions. The purpose of the data collection is the selection of applicants for the possible establishment of an employment relationship. Further information can be found in our privacy policy for applicants.
3. Passing on of data
The data we collect will only be passed on if you have given your express consent, the transfer is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not having your data passed on, we are legally obligated to pass on your data or this is legally permissible and necessary for the processing of contractual relationships with you or for the implementation of pre-contractual measures that take place at your request.
Part of the data processing may be carried out by our service providers. This may include, in particular, data centers that store our website and databases, software providers, IT service providers that maintain our systems, agencies, market research companies, other Flink companies and consulting companies. If we pass on personal data to our service providers, they may only use the data to perform their tasks. The service providers have been carefully selected and commissioned by us. They are contractually bound to our instructions, have suitable technical and organizational measures in place to protect the rights of the data subjects and are regularly monitored by us.
In addition, data may be disclosed in connection with official inquiries, court orders and legal proceedings if this is necessary for legal prosecution or enforcement.
4. Data transfer to third countries
In some cases, we use services whose providers are located in so-called third countries (outside the European Union or the European Economic Area) or process personal data there, i.e. countries whose data protection level does not correspond to that of the European Union. Where this is the case and the European Commission has not issued an adequacy decision (Article 45 GDPR) for these countries, we have taken appropriate precautions to ensure an adequate level of data protection for any data transfers. These include, among others, the so-called standard contractual clauses of the European Union or binding internal data protection regulations. Where this is not possible, we base the data transfer on exceptions of Art. 49 DSGVO, in particular on your expressly given consent or the necessity of the transfer for the performance of the contract or for the implementation of pre-contractual measures.
5. Storage Period
In principle, we store personal data only as long as necessary to fulfill the purposes for which we collected the data. Thereafter, we delete the data immediately, unless we still need the data until the expiry of the statutory limitation period for evidence purposes for civil law claims or because of the existence of statutory retention obligations.
For evidentiary purposes, we must retain contractual data for three years from the end of the year in which the business relationship with you ends. Any claims become statute-barred at this point at the earliest in accordance with the standard statutory limitation period.
Even after this, we still have to store some of your data for accounting reasons. We are obliged to do so because of legal documentation obligations, which may arise in particular from the German Commercial Code, the German Fiscal Code, the German Banking Act, the German Money Laundering Act and the German Securities Trading Act. The periods specified there for the retention of documents range from two to ten years.
6. Your Rights
If the legal requirements are met, you have the right to request information from us about which of your personal data we process. You can also request the correction, deletion and/or restriction of the processing of your personal data and have the right to receive your personal data in a structured, common and machine-readable format.
If we process your personal data on the basis of overriding legitimate interests, you have the right to object to the processing of your personal data. on grounds relating to your particular situation. If it is a matter of objecting to data processing for direct marketing purposes, you have a general right to object, which will also be implemented by us without giving reasons.
You have the right to revoke a consent once granted at any time vis-à-vis us. This has the consequence that we no longer continue the data processing based on this consent for the future. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
If you believe that we are processing your data unlawfully, you have the right to complain to a supervisory authority. The supervisory authority responsible for us is the Berlin Commissioner for Data Protection and Freedom of Information, Alt-Moabit 59-61 10555 Berlin.
Any inquiries regarding the assertion of data protection rights and our responses to them will be stored for documentation purposes for a period of up to three years and, in individual cases, for the assertion, exercise or defense of legal claims even longer. The legal basis for this is our interest in defending against any civil claims, avoiding fines and fulfilling our accountability obligations.
7. Modification of the Data Protection Declaration
We occasionally update this privacy statement, for example, when we adapt our website or when legal or regulatory requirements change.
April 2023