IBA Service Logo

Privacy Policy

Last updated: February 20, 2026

1. Controller

IBA Service GmbH

Lise-Meitner-Str. 14, 63457 Hanau

Phone: +49 6181 96 96 206

E-Mail: info@iba-service.de

2. General information

We process personal data only within the scope of applicable legal requirements (in particular GDPR and BDSG). Personal data means any information that can be used to identify you personally.

3. Hosting and server log files

When this website is accessed, our hosting or infrastructure provider processes technically necessary connection data (e.g., IP address, date/time, requested URL, browser information) to ensure secure website operation.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in website security and stability).

4. Contact requests

If you contact us via our contact form, we process the data you provide (e.g., name, email, phone number, message, company, request category) to handle your inquiry.

For abuse prevention, technical metadata such as IP address and user agent are processed, and technical rate limiting is applied.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures/contract performance) or Art. 6(1)(f) GDPR (efficient communication and IT security).

5. Applications

For applications submitted via our careers form, we process the provided application data (including name, contact details, date of birth, message) and uploaded files (e.g., resume).

Processing is carried out to run the application procedure and assess your suitability for advertised positions.

Legal basis: Art. 6(1)(b) GDPR in conjunction with section 26 BDSG.

6. Recipients and service providers

We use technical service providers, especially for hosting and for storing contact requests and applications. Data is transferred only where necessary for website operation and processing your request/application.

Where required, data processing agreements pursuant to Art. 28 GDPR are concluded with external processors.

7. Cookies and consent management

We use essential cookies for core website functions (e.g., security, form protection, technical session features).

Optional categories (e.g., analytics/marketing) are set or activated only if you actively consent (Art. 6(1)(a) GDPR, section 25(1) TTDSG).

You can change your selection at any time via "Cookie Settings" in the footer.

8. Web analytics

We use web analytics only after your explicit consent to the analytics category. Without this consent, no related analytics scripts are loaded.

9. Retention period

We store personal data only as long as necessary for the relevant purposes or as required by statutory retention obligations.

Contact requests and application data are generally deleted once the processing purpose no longer applies, unless legal obligations or legitimate interests require continued storage.

10. Your rights

You have the following rights in particular:

  • Access to your stored data (Art. 15 GDPR)
  • Rectification of inaccurate data (Art. 16 GDPR)
  • Erasure of your data (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to specific processing activities (Art. 21 GDPR)
  • Withdrawal of consent with effect for the future (Art. 7(3) GDPR)

11. Right to lodge a complaint

You have the right to lodge a complaint with a data protection supervisory authority. For Hesse, the competent authority is the Hessian Commissioner for Data Protection and Freedom of Information.

12. Security (SSL/TLS)

This website uses encrypted transmission (HTTPS) to protect transferred content from unauthorized access.

13. Legal information

This privacy policy reflects the current technical implementation of this website. It will be updated accordingly if functions or integrated services change.

Further legal information is available in the Legal Notice.