When you use our website, your personal data (hereinafter referred to as "data") is processed. The data may include, for example, your name, address, e-mail address and other personal details. Processing is basically any way in which this data is handled.

Below you will therefore find information on the processing of your data when using www.isax.com on the basis of the provisions of the General Data Protection Regulation (GDPR) and the applicable federal and state data protection laws.

Purposes and legal basis of our data processing

  1. Contact form

The website provides a contact form for making contact. The data entered here, insofar as it is personal data, is stored on the hosting provider's server and then forwarded via e-mail to the designated receiving mailbox. The forwarding takes place exclusively within the server, so that any risk to the confidentiality of the data is effectively excluded. The legal basis for the processing is Art. 6 para. 1 sentence 1 b) GDPR. By way of derogation, the legal basis for the collection of the name and the company name is Art. 6 para. 1 sentence 1 f) GDPR. The legitimate interest for this is a more personalized approach to the inquirer.

  1. E-mail contact

It is possible to contact us at various points on the website via the e-mail address provided. The personal data transmitted, in particular the e-mail address itself, is stored. This data is not passed on to third parties. The data is used exclusively for processing the request. The legal basis for the processing of the data is Art. 6 para. 1 sentence 1 f) GDPR. The legitimate interest in processing the data lies in carrying out the contact. The data will be deleted once the purpose no longer applies or the communication has ended. If an offer process takes place in the course of the communication, the processed data will be deleted after expiry of the retention periods provided for this purpose.

  1. Customer support

To simplify service requests from our customers, we provide you with a customer portal via our subdomain support.isax.com. Insofar as personal data is transmitted to us via this portal, this data is processed on the basis of the contract existing between us and you. The legal basis is Art. 6 para. 1 sentence 1 b) GDPR.

4. Application form

If you apply to us electronically, i.e. by e-mail or via our web form, we will collect and process your personal data for the purpose of handling the application process and implementing pre-contractual measures.
By submitting an application on our recruiting page, you express your interest in taking up employment with us.
In this context, you provide us with personal data that we use and store exclusively for the purpose of your job search/application, in particular the following data is collected:

Name (first and last name)
E-mail address
Willingness to travel
Salary expectations

You also have the option of uploading informative documents such as a cover letter, your CV and references. These may contain further personal data such as date of birth, address etc.
Only authorized employees from the HR department or employees involved in the application process have access to your data.
Personal data is stored exclusively for the purpose of filling the vacant position for which you have applied.
Your data will be stored for a period of 180 days after the end of the application process. This is usually done to fulfill legal obligations or to defend against any claims arising from legal regulations. We are then obliged to delete or anonymize your data. In this case, the data will only be available to us as so-called metadata without direct personal reference for statistical evaluations (e.g. proportion of women or men in applications, number of applications per period, etc.).

In addition, we reserve the right to store your data for inclusion in our "talent pool" for 6 months after the end of the application process in order to identify any other interesting positions for you. This also applies, for example, to applications for an apprenticeship or internship. By accepting the privacy policy, you consent to any further storage of your data and inclusion in our "talent pool." If you receive an offer of employment with us during the application process and accept it, we will store the personal data collected during the application process for at least the duration of the employment relationship.

Disclosure of data to third parties
The data transmitted as part of your application will be transferred using TLS encryption and stored in a database. This database is operated by Personio GmbH, which offers personnel administration and applicant management software (https://www.personio.de/impressum/). Personio is our processor in this context in accordance with Art. 28 GDPR. The basis for the processing is an order processing contract between us as the controller and Personio.

Rights of data subjects
If personal data is processed by us as the controller, you as the data subject have certain rights under Chapter III of the EU General Data Protection Regulation (GDPR), depending on the legal basis and purpose of the processing, in particular the right of access (Art. 15 GDPR), the right to rectification (Art. 16 GDPR), the right to erasure (Art. 17 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to data portability (Art. 20 GDPR) and the right to object (Art. 21 GDPR). If the processing of personal data is based on your consent, you have the right to withdraw this data protection consent in accordance with Art. 7 III GDPR.
To assert your rights as a data subject in relation to the data processed in this online application process, please contact our data protection officer (see section 2).

Final provisions
We reserve the right to amend this privacy policy at any time to ensure that it always complies with current legal requirements or to reflect changes to the application process or similar. If you visit this recruiting page again or submit a new application, the new privacy policy will apply.

  1. IT security

Finally, we also process data in your and our interest in order to ensure the integrity, confidentiality and availability of the data processing systems, i.e. in particular the security and availability of your data at www.isax.com. It is not possible to use our website and our app without processing data for this purpose. The legal basis for the processing of this data is Art. 6 para. 1 sentence 1 f) GDPR; our legitimate interest lies in the maintenance and secure provision of our services.


Data transfer beyond the borders of the EU

The data we collect is stored exclusively on servers in the European Union. Data will not be transferred to companies outside the European Union without your express consent. This also applies to service providers commissioned by us to process data.

Data recipients

So that we can offer you all the functions at www.isax.com, we also use selected service providers who process data on our behalf and in our name. We only pass on data to service providers carefully selected by us and commissioned in writing within the scope of legally permissible order processing. These service providers only receive the data that is necessary for the fulfillment of the order.

These include the following categories of contractors: identification service providers, software developers, hosters of servers, newsletter senders, customer support, web analysis service.

Duration of data storage

The data you provide to establish contact will be stored by us for as long as the contact between you and us exists. If a contractual relationship subsequently arises, the data required for this will continue to be stored. Otherwise, your data will be deleted once the purpose for which it was processed no longer applies. The legal basis for the storage of your data for contacting you is Art. 6 para. 1 sentence 1 f) GDPR, as we have a legitimate interest in being able to contact you personally and individually. If a contract is subsequently concluded, Art. 6 para. 1 sentence 1 b) GDPR is the legal basis for the further storage of your data for the execution of the contract.

Use of cookies

The website uses cookies. Cookies are small text files that are stored in the browser on your end device and allow you to be recognized on a subsequent visit. At the beginning of your visit to this website, you will be asked whether you agree to the use of cookies. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser.

However, if you do not agree to the use of cookies or have deactivated them in your browser, the functionality of the website may be restricted.

If you allow us to use cookies through your browser settings or consent, the following cookies may be used on our websites:

Various plug-ins on this site use cookies. You can find out how to prevent the individual plug-ins from using cookies in the respective plug-in descriptions in this declaration.

Data processing for web analysis and other purposes

  1. Google Maps

This site uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

If you do not agree to this processing, you have the option of deactivating the "Google Maps" service and thus preventing the transfer of data to Google. To do this, deactivate the Java Script function in your browser.

For more information on Google Maps and the data protection settings, please refer to the data protection information (https://policies.google.com/privacy?hl=de) and the terms of use (https://www.google.com/intl/de_de/help/terms_maps.html) of Google Inc.

  1. Piwik/Matomo

This website uses the open source software Matomo (formerly Piwik) for the statistical analysis of visitor access.

Cookies are used to analyze user access. These text files, which are stored on the user's computer, make it possible to analyze the use of the website. The information and data generated by cookies are stored on a server in Germany. The IP address is anonymized before it is saved. You can deactivate the use of cookies in your browser settings. However, this may mean that our website can no longer be used to its full extent.

The data will not be passed on to third parties. Piwik uses user data in anonymized form so that we can optimize our website and our services. IP addresses are stored by Piwik without the last digits. This enables us to determine the network from which a request originates. It is therefore not possible to assign the IP address to a computer.

  1. Mautic

The purpose of this tool is to store usage data (e.g. browser used, last page visited, duration of visit). The software uses this information to individualize our marketing measures and better align them with the interests of each individual user. The software also helps us to better evaluate the success of individual marketing measures.
mautic is hosted by us on our own servers. Data is not passed on to third parties. We collect and process data with mautic only to the extent that it is necessary to achieve the business objectives of iSAX GmbH & Co. KG with you. You can find more information on data protection at: https://mautic.com/privacy-policy/

  1. Consent manager

We use the cookie/consent management tool of Objectis Ltd. on our website (Objectis Ltd., Laisves st. 60, LT-05120 Vilnius, Lithuania; www.cookie-script.com; "Consentmanager").

The tool enables you to give your consent to data processing via the website, in particular the setting of cookies, and to exercise your right to withdraw consent you have already given.

The purpose of data processing is to obtain and document the necessary consent for data processing and thus to comply with legal obligations. Cookies may be used for this purpose. The following information may be collected and transmitted to the consent manager: Date and time of the page view, information about the browser you are using and the device you are using, anonymized IP address, opt-in and opt-out data. This data is not passed on to other third parties.

The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR and our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

You can find more information on the data protection of the consent manager at: https://cookie-script.com/privacy-policy.html

Data security

All data stored by us or any contract processors is protected against unauthorized access, loss and alteration using current security standards. For this purpose, extensive technical and organizational security precautions are applied with a standard that at least meets the legal requirements.

Your rights and complaint options

You have the following rights with regard to the data concerning you:

  • right of access,
  • right to rectification or erasure,
  • right to restriction of processing,
  • right to withdraw your consent,
  • right to object to processing,
  • right to data portability.

You can assert all of these rights by contacting our data protection officer/us at dsb@isax.com.

(2) You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.


Responsible for data processing within the meaning of data protection law is

iSAX GmbH & Co. KG
Weinbergstraße 15
D-01129 Dresden
E-mail: kontakt@isax.com

Data protection officer

If you have any questions about data protection, please contact our data protection officer at

Robert Schmock
IfDDS GmbH - Institute for Data Protection and Data Security
Dresdner Str. 58a
D-01156 Dresden
Phone: +49 351 27579057
E-mail: dsb@isax.com