Privacy Policy

01

Overview of Data Protection

General Information
The following information provides a concise summary of what happens to your personal data when you visit our website. Personal data includes all data that can be used to personally identify you. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Data Collection on This Website

Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in the section „Note on the Responsible Entity” in this privacy policy.

How do we collect your data?
Your data is collected on the one hand by you providing it to us. This could be, for example, data entered in a contact form. Other data is automatically collected by our IT systems when you visit the website, either automatically or with your consent. This primarily includes technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you access this website.

For what purposes do we use your data?
Part of the data is collected to ensure the error-free provision of the website. Other data may be used to analyse your user behaviour.

What rights do you have regarding your data?
You have the right to receive information about the origin, recipients, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can withdraw this consent at any time for the future. Additionally, you have the right to request the restriction of the processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time regarding these rights or any other questions about data protection.

02

Hosting und Content Delivery Networks (CDN)

External Hosting
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated through a website.

The use of the hoster is for the purpose of fulfilling contracts with our potential and existing customers (Art. 6 (1) lit. b GDPR) and in the interest of providing our online offer securely, quickly, and efficiently by a professional provider (Art. 6 (1) lit. f GDPR).

Our hoster will only process your data to the extent necessary to fulfil its service obligations and follow our instructions regarding this data.

We use the following hoster:

Strato AG
Otto-Ostrowski-Straße 7
10249 Berlin, Germany

03

General Information and Mandatory Disclosures

Data Protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data is collected. Personal data is information that can personally identify you. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We would like to point out that data transmission over the internet (e.g., communication by email) can have security gaps. A complete protection of data against access by third parties is not possible.

Note on the Responsible Entity
The responsible entity for data processing on this website is:

Pacifico Energy Partners GmbH
Leopoldstraße 20
80802 Munich, Germany

Telefon: +49 (0) 89 215370400
E-Mail: info@pacifico-energy.com

The responsible entity is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Retention Period
Unless a more specific retention period is mentioned within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in such cases, the deletion will occur after these reasons no longer apply.

Statutory Data Protection Officer
We have appointed a data protection officer for our company.

Mr. Marcel Heintz
Davedo GmbH
Robert-Koch-Str. 35
55129 Mainz, Germany

Telefon: 06131 3278420
E-Mail: marcel.heintz@davedo.de

Note on Data Transfer to the USA
Our website includes tools from companies based in the USA. When these tools are active, your personal data may be transferred to the US servers of the respective companies. We point out that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without the possibility for you as the data subject to take legal action against this. Therefore, it cannot be ruled out that US authorities (e.g., intelligence services) may process, analyze, and permanently store your data located on US servers for surveillance purposes. We have no influence over these processing activities.

Withdrawal of Your Consent to Data Processing
Many data processing operations are only possible with your explicit consent. You may revoke consent that you have already granted at any time. The legality of the data processing carried out up until the point of revocation remains unaffected by the withdrawal.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)
If data processing is based on Art. 6 (1) lit. E or f GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to any profiling based on these provisions. The respective legal basis on which the processing is based can be found in this privacy policy. If you file an objection, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims (Objection under Art. 21 (1) GDPR).

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (Objection under Art. 21 (2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority
In the event of violations of the GDPR, the data subject has the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or the place of the alleged violation. This right to lodge a complaint is without prejudice to other administrative or judicial remedies.

Right to Data Portability
You have the right to receive data that we process based on your consent or in the fulfillment of a contract, in a commonly used, machine-readable format, either to yourself or to a third party. If you request the direct transfer of data to another controller, this will only be done to the extent that it is technically feasible.

SSL or TLS Encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the website operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the address line of the browser from „http://” to „https://” and by the lock symbol in your browser bar.

When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Right to Information, Deletion, and Correction
Within the framework of the applicable legal provisions, you have the right at any time to obtain free information about your stored personal data, its origin, recipients, and the purpose of the data processing, and, if necessary, the right to have this data corrected or deleted. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time.

Right to Restriction of Processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restriction of processing applies in the following cases:

• If you dispute the accuracy of your personal data stored with us, we generally need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.

• If the processing of your personal data was/is unlawful, you may request the restriction of data processing instead of deletion.

• If we no longer need your personal data, but you require it for the exercise, defense, or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of its deletion.

• If you have filed an objection under Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it has not been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If the processing of your personal data has been restricted, this data—apart from being stored—may only be processed with your consent or for the establishment, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.

04

Data Collection on This Website

Cookies
Our websites use so-called „cookies.” Cookies are small text files that do not cause any harmto your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted after your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.

Some cookies from third-party companies may also be stored on your device when you enter our site (third-party cookies). These cookies allow us or you to use certain services provided by third-party companies (e.g., cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., the shopping cart function or displaying videos). Other cookies are used to evaluate user behavior or display advertisements.

Cookies that are necessary for carrying out the electronic communication process (essential cookies) or for providing certain functions you desire (functional cookies, e.g., for the shopping cart function) or for optimizing the website (e.g., cookies to measure web audience) are stored based on Art. 6 (1) lit. f GDPR unless another legal basis is mentioned. The website operator has a legitimate interest in storing cookies to ensure a technically error-free and optimized provision of its services. If consent has been requested for the storage of cookies, the storage of the relevant cookies is based solely on this consent (Art. 6 (1) lit. a GDPR); consent can be revoked at any time.

You can set your browser to inform you about the use of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are disabled, the functionality of this website may be restricted.

Insofar as third-party cookies are used or cookies for analytical purposes, we will inform you separately within this privacy policy and may ask for your consent.

05

Social Media

LinkedIn Plugin
This website uses features of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Each time you access a page of this website that contains LinkedIn features, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited this website with your IP address. If you click the „Recommend” button of LinkedIn and are logged into your LinkedIn account, LinkedIn can associate your visit to this website with your user account. We point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data and how it is used by LinkedIn.

The use of the LinkedIn plugin is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in maximizing its visibility in social media. If consent has been requested, the processing is based solely on Art. 6 (1) lit. a GDPR; consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.linkedin.com/help/linkedin/answer/a1343190/eu-eea-and-swiss-data-transfers?lang=en

More information can be found in LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy

06

Analytics Tools and Advertising

Google Analytics
This website uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, duration of visit, operating systems used, and the user’s origin. This data may be compiled by Google into a profile that is assigned to the respective user or their device.

Google Analytics uses technologies that enable the recognition of users for the purpose of analysing user behaviour (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the USA and stored there.

The use of this analysis tool is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour to optimize both its web offering and advertising. If consent has been requested (e.g., consent to store cookies), the processing is based solely on Art. 6 (1) lit. a GDPR; consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

Browser Plugin
You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

More information on how Google Analytics handles user data can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Retention Period
Data stored by Google on user and event levels that are linked to cookies, user IDs, or advertising IDs (e.g., DoubleClick cookies, Android advertising ID) will be anonymized or deleted after 14 months. Details can be found at the following link: https://support.google.com/analytics/answer/7667196?hl=en.

LinkedIn Insight Tag
This website uses the LinkedIn Insight Tag. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Data Processing by LinkedIn Insight Tag
With the help of the LinkedIn Insight Tag, we receive information about the visitors of our website. If a visitor is registered on LinkedIn, we can, among other things, analyze the professional details (e.g., career level, company size, country, location, industry, and job title) of our website visitors and thus better tailor our site to the relevant target groups. Additionally, we can use LinkedIn Insight Tags to measure whether visitors to our websites make a purchase or take any other action (conversion tracking). Conversion tracking can also occur across devices (e.g., from PC to tablet). LinkedIn Insight Tag also offers a retargeting feature, allowing us to show visitors to our website targeted advertising outside the website, without identifying the ad recipient according to LinkedIn.

LinkedIn also collects so-called log files (URL, referrer URL, IP address, device, and browser characteristics, and access times). IP addresses are shortened or, if used to reach LinkedIn members across devices, hashed (pseudonymized). The direct identifiers of LinkedIn members are deleted by LinkedIn after seven days. The remaining pseudonymized data is then deleted within 180 days.

The data collected by LinkedIn cannot be assigned to specific individuals by us as the website operator. LinkedIn stores the personal data of website visitors on servers in the USA and uses it for its own advertising purposes. For details, see LinkedIn’s privacy policy at: https://www.linkedin.com/legal/privacy-policy.

Legal Basis
The use of LinkedIn Insight is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in effective advertising, including social media. If consent has been requested (e.g., consent to store cookies), processing is based solely on Art. 6 (1) lit. a GDPR; consent can be revoked at any time.

The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

Opt-Out from LinkedIn Insight Tag Usage
To object to LinkedIn’s analysis of your usage behavior and targeted advertising, use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Furthermore, LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To avoid the association of data collected on our website with your LinkedIn account, you must log out of your LinkedIn account before visiting our website.

07

Applications / "Career"

If you apply for a position on this website, the personal data contained in your application will be processed by Pacifico Energy Partners GmbH (the responsible entity) based in Leopoldstraße 20, 80802 Munich. The data protection officer of the responsible entity is Marcel Heintz (Davedo GmbH), reachable at marcel.heintz@davedo.de.

Your personal data will be processed for managing recruitment-related activities, including scheduling and conducting interviews and assessments, evaluating and reviewing results, and performing other necessary activities during the recruitment process.

The legal basis for this processing is Art. 6(1)(f) GDPR, as it is necessary for the legitimate interests of the responsible entity, specifically recruiting, evaluating, and selecting applicants for a job.

Your personal data will be shared with Recruitee GmbH, a SaaS provider engaged by the Data Controller for digital recruitment and staffing purposes. You can find more information about Recruitee’s privacy policy here: https://recruitee.com/de/privacy-policy

You can request a copy of the standard clauses by contacting us at info@pacifico-energy.com. Your personal data will be retained for as long as the responsible entity deems it necessary for processing your application and to contact you for future job opportunities. You have the right to access, correct, delete, and restrict the processing of your personal data, and the right to data portability. You can also lodge a complaint with an EU supervisory authority.

08

Potential Analysis – Areas / "Area Analysis Tool"

When you request an analysis of potential areas on this website, the data you enter will be processed using the platform „Heyflow” by Heyflow GmbH. More information can be found in their privacy policy at https://heyflow.app/de/datenschutz.

 

Further information on our data protection 

Documentation of technical and organisational measures