Privacy Policy for our Social Media Channels

This privacy policy applies to the following social media presences

https://de.linkedin.com/company/salzgitter-ag/
https://www.instagram.com/salzgitterag/
https://www.youtube.com/@salzgitterag
https://www.facebook.com/salzgitterag.official/
https://www.xing.com/pages/salzgitterag
https://x.com/szag_karriere 

I. Data processing by social networks

We — Salzgitter AG — maintain publicly accessible profiles on social networks. The specific social networks we use are listed below.

Social networks such as LinkedIn, Xing, Instagram, Facebook, etc. can usually analyze your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners).

Visiting our social media pages triggers numerous data processing operations that are relevant to data protection. Specifically: If you are logged into your social media account and visit our social media page, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.

With the help of the data collected in this way, the operators of social media portals can create user profiles that store your preferences and interests. In this way, interest-based advertising can be displayed to you both within and outside the respective social media presence. If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are or were logged in. Please also note that we cannot track all processing operations on social media portals. Depending on the provider, additional processing operations may therefore be carried out by the operators of social media portals. For details, please refer to the terms of use and privacy policies of the respective social media portals.

II. Legal basis

Our social media presence is intended to ensure the most comprehensive presence possible on the internet. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. The analysis processes initiated by social networks may be based on different legal grounds, which must be specified by the operators of the social networks (e.g., consent within the meaning of Art. 6(1)(a) GDPR).

III. Controller and assertion of rights

When you visit one of our social media sites (e.g., Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. You can assert your rights (access, rectification, erasure, restriction of processing, data portability, and lodging a complaint) both against us and against the operator of the respective social media portal (e.g., against Facebook).

Please note that despite our joint responsibility with social media portal operators, we do not have full control over the data processing operations of social media portals. Our options are largely determined by the corporate policy of the respective provider.

IV. Retention period

The data collected directly by us via our social media presence will be deleted from our systems as soon as the purpose for data storage no longer applies, or you request us to delete it, or you revoke your consent to storage. Stored cookies remain on your device until you delete them. Mandatory legal provisions — in particular retention periods — remain unaffected.

We have no influence on the storage period of your data, that is retained by the operators of social networks for their own purposes. For details, please refer directly to the information provided by the operators of social networks (e.g., in their privacy policy, see below).

V. Your rights

You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time and free of charge. You also have the right to object, the right to data portability, and the right to lodge a complaint with the competent supervisory authority. Furthermore, you can request the rectification, blocking, deletion, and, under certain circumstances, the restriction of the processing of your personal data.

VI. Social networks in detail

1. LinkedIn

We maintain a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.

If you would like to deactivate LinkedIn advertising cookies, please use the following link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://www.linkedin.com/legal/l/dpa and
https://www.linkedin.com/legal/l/eu-sccs

For details on how they handle your personal data, please refer to LinkedIn's privacy policy:
https://www.linkedin.com/legal/privacy-policy

The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5448

2. Instagram

We maintain a profile on Instagram. This service is provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.

Data transfer to the US is based on the standard contractual clauses of the EU Commission. Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum and
https://de-de.facebook.com/help/566994660333381.

For details on how they handle your personal data, please refer to Instagram's privacy policy:
https://privacycenter.instagram.com/policy/.

The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/4452

3. YouTube

We maintain a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

For details on how they handle your personal data, please refer to YouTube's privacy policy: 
https://policies.google.com/privacy

The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780

4. Facebook

We maintain a profile on Facebook. This service is provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter referred to as Meta). According to Meta, the data collected is also transferred to the US and other third countries. We have entered into a joint processing agreement (Controller Addendum) with Meta. This agreement specifies which data processing operations we or Meta are responsible for when you visit our Facebook page. You can view this agreement at the following link:
https://www.facebook.com/legal/terms/page_controller_addendum

You can adjust your advertising settings yourself in your user account. To do so, click on the following link and log in:
https://www.facebook.com/settings?tab=ads

Data transfer to the US is based on the standard contractual clauses of the EU Commission. Details can be found here:
www.facebook.com/legal/EU_data_transfer_addendum and
https://de-de.facebook.com/help/566994660333381.

For details, please refer to Facebook's privacy policy:
https://www.facebook.com/about/privacy/

The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/4452

5. XING

We have a profile on XING. The provider is New Work SE, Am Strandkai 1, 20457 Hamburg, Germany. Details on how they handle your personal data can be found in XING's privacy policy:
https://privacy.xing.com/de/datenschutzerklaerung

6. X (formerly Twitter)

We use the short message service X (formerly Twitter). The provider is the parent company X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. The Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland, is responsible for data processing for individuals living outside the USA.

You can adjust your X privacy settings yourself in your user account. To do so, click on the following link and log in:
https://x.com/settings/account/personalization

Data transfers to the US are based on the EU Commission's standard contractual clauses.
Details can be found here:
https://gdpr.x.com/en/controller-to-controller-transfers.html.

For details, please refer to the privacy policy of X (formerly Twitter):
https://x.com/de/privacy

7. Google Business Profile (formerly Google My Business)

We use the Google Business Profile service, operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, to make our company discoverable via Google Search and Google Maps.

When you search for our company on Google or visit our GMB page, Google processes personal data such as your IP address, location data (if enabled), and information about your interaction with our listing.

For more information about how Google processes your data, please refer to Google's privacy policy: https://policies.google.com/privacy

We do not have complete control over the processing of data by Google and act here within the framework of joint responsibility for data protection in accordance with Art. 26 GDPR.

Teaser with link to data protection notice for www.salzgitter-ag.com

Data protection notice of the Salzgitter Group for
www.salzgitter-ag.com

Image with link to information on data protection for applicants

Applicants

Privacy Data Information for Applicants

Imgae with link to data privacy information for business partners

Business partners

Data privacy information for business partners

Image with link to privacy whistleblower system

Whistleblower system

Privacy policy for our whistleblower system