Welcome to Francotyp-Postalia. Here you can find out more about the processing of your personal data.
Data protection is also a matter of trust and your trust is very important to us. We respect and protect your privacy and personal rights.
Scope and contact details of the controller
This privacy policy applies to the use of our website and all other processing of your personal data.
The controller within the meaning of the General Data Protection Regulation (GDPR) is
Francotyp-Postalia Holding AG
Prenzlauer Promenade 28
13089 Berlin
Phone: +49 30 220 660-0
E-mail: ir@francotyp.com
Appointed as data protection officer is:
Mr Norman Höhling
Francotyp-Postalia Holding AG
Prenzlauer Promenade 28
13089 Berlin
Phone: +49 30 220 660-175
E-mail: datenschutzbeauftragter@francotyp.com
Further information about us can be found in our Imprint.
Purpose
We provide information about our products and services. You have the option of contacting us for further information or using other services.
The purpose of data processing is to provide you with the right information at the right time. We also use your personal data for the technical administration of the websites, for customer management and for marketing purposes, provided that you expressly consent to this by entering your details on our website (one example is the FP newsletter).
Use of personal data
When you contact us by e-mail, fax or telephone, we may ask you for some personal information. We will ask for the data we need to process your contact request in a meaningful way, but at a minimum we will ask for your surname and first name, e-mail address and telephone number. The legal basis for this is our legitimate interest in the effective provision of our services to you in accordance with Art. 6 (1) sentence 1 lit. b) GDPR or the legitimate interest in processing in accordance with Art. 6 (1) sentence 1 lit. f) GDPR.
In addition, you can voluntarily provide us with further data in the context of the contact request. The data will be stored by us and used for the purpose of responding to your contact request. Some services on our portals are offered in cooperation with partner companies. In order to be able to offer this partner service, it may be necessary for us to also share your personal data with these partner companies. In this case, however, the data will also be used exclusively for the purpose of responding to your contact request, including by our partner. The voluntary provision of this data constitutes consent to the use of the data in the above sense. We will record your consent to the collection and use of data. The legal basis for data processing is the consent of the data subject in accordance with Art. 6 (1) sentence 1 lit. a) GDPR.
You have the right to revoke your consent at any time with future effect. To do so, please send an email to datenschutzbeauftragter@francotyp.com.
Inventory data
Your personal data, insofar as it is necessary for the establishment, content or amendment of the contractual relationship (inventory data), will be used exclusively for the purpose of contract processing. The legal basis for the processing of this data can be found in Art. 6 (1) sentence 1 lit. b) and f) GDPR.
Use of LinkedIn
We use functions of the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time you visit one of our pages that contains LinkedIn functions, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the LinkedIn “Recommend” button and are logged into your LinkedIn account, LinkedIn can associate your visit to our website with you and your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by LinkedIn. For more information, please refer to LinkedIn’s privacy policy at: https://www.linkedin.com/legal/privacy-policy
Applications to Francotyp-Postalia
Applicants have the option of applying to Francotyp-Postalia using an application form or by email.
We use the BambooHR applicant management system from Bamboo HR LLC, 335 South 560 West, Lindon, UT 84042, USA, to manage online job advertisements and handle the application process. Your personal data will be processed in connection with your application solely for the purpose of carrying out the application process.
Categories of data processed:
- Master data (e.g. name, address, contact details)
- Application documents (e.g. CV, cover letter, references)
- Communication data (e.g. email correspondence)
- Any other data collected during the application process
During the application process, we are supported by colleagues from the Francotyp-Postalia Group’s Human Resources department, who also have access to your personal data. We process the personal data from the application form solely for the purpose of processing your application, unless longer storage is required due to legal obligations or your consent (e.g. for an applicant pool).
If your application is successful, we will store your data for the duration of the employment relationship and delete your data after its termination and expiry of the retention periods. Otherwise, your transmitted data will be processed exclusively for the purposes of the application process and deleted within 6 months of completion of the application process.
The processing is carried out for the purpose of conducting the application process and, if applicable, for establishing an employment relationship (Art. 6(1)(b) GDPR, Section 26 BDSG). If your data is stored for a longer period (e.g. for an applicant pool), this will only be done with your express consent (Art. 6(1)(a) GDPR).
Your data will be transferred to BambooHR for order processing. BambooHR processes the data on servers in the USA. The transfer is based on standard contractual clauses of the EU Commission in accordance with Art. 46 (2) lit. c) GDPR in order to ensure an adequate level of data protection.
You have the option to revoke your consent to the processing of your personal data at any time. You can exercise your right of revocation by sending an email to personalabteilung2@francotyp.com .
Your right of withdrawal does not apply to data that the provider needs in order to fulfil a contract or take pre-contractual measures. However, you may have further rights (right of objection) on the basis of which you can request the deletion of your data. The legal basis for this is the legitimate interest pursuant to Art. 6 (1) f GDPR for documenting the properly conducted application process.
You have the right to information, correction, deletion, restriction of processing, data portability and objection to processing.
Further information:
Further information on data protection at BambooHR can be found at:
https://www.bamboohr.com/privacy-policy/
Your rights
If you have any questions about your personal data, you can contact us in writing at any time. You have the following rights under the GDPR:
The right to information (sub-section Art. 15 GDPR)
You have the right to obtain information at any time about which categories and information relating to your personal data are processed by us, for what purpose, how long and according to which criteria this data is stored, and whether automated decision-making, including profiling, is used in this context. You also have the right to know to which recipients or categories of recipients your data has been or will be disclosed, in particular to recipients in third countries or international organisations. In this case, you also have the right to be informed about appropriate safeguards in connection with the transfer of your personal data.
In addition to the right to lodge a complaint with the supervisory authority and the right to information about the origin of your data, you have the right to erasure, rectification and the right to restriction or objection to the processing of your personal data.
In all of the above cases, you have the right to request a free copy of your personal data processed by us from the data processor. We are entitled to charge a reasonable administrative fee for any further copies you request or which exceed the data subject’s right to information.
Right to rectification (Art. 16 GDPR)
You have the right to request the immediate rectification of your inaccurate personal data and, taking into account the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary statement. If you wish to exercise your right to rectification, you can contact our data protection officer or the controller at any time.
The right to erasure (Art. 17 GDPR)
You have the right to request the immediate erasure of your data (“right to be forgotten”), in particular if the storage of the data is no longer necessary for the purposes of the processing, you withdraw your consent to the data processing, your data has been unlawfully processed or unlawfully collected, and there is a legal obligation to erase it under EU or national law.
However, the right to be forgotten does not apply if there is an overriding right to freedom of expression or freedom of information, if the storage of data is necessary for the fulfilment of a legal obligation (e.g. retention obligations), if archiving purposes prevent deletion, or if the storage serves to assert, exercise or defend legal claims.
The right to restriction (Art. 18 GDPR)
You have the right to request that the controller restrict the processing of your data if you dispute the accuracy of the data, the processing is unlawful, you oppose the erasure of your personal data and request restriction of processing instead, the processing is no longer necessary for the purposes of the processing, or you have objected to processing pursuant to Article 21(1) GDPR pending the verification whether our legitimate grounds override yours.
The right to data portability (Art. 20 GDPR)
You have the right to the portability of your personal data that you have provided to our company in a commonly used format so that you can have your personal data forwarded to another controller without hindrance, provided, for example, that you have given your consent and the processing is carried out by automated means.
The right to object (Art. 21 GDPR)
You have the right to object at any time to the collection, processing or use of your personal data for the purposes of direct marketing or market and opinion research, as well as general business data processing, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms. Furthermore, you cannot exercise your right to object if a legal provision provides for the collection, processing or use of the data or obliges the collection, processing or use.
Right to lodge a complaint with the data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG)
You have the right to lodge a complaint with the competent supervisory authority if you believe that there has been a breach in the processing of your personal data.
Right to withdraw consent under data protection law (Art. 7(3) GDPR)
You may revoke your consent to the processing of your personal data at any time without giving reasons. This also applies to the revocation of declarations of consent given to us before the EU General Data Protection Regulation came into force.
Legal basis for processing
When processing personal data for which we obtain the consent of the data subject, Art. 6(1), sentence 1(a) GDPR serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is party, Art. 6 (1) sentence 1 lit. b GDPR serves as the legal basis. This provision also covers processing operations that are necessary for the implementation of pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1, sentence 1 lit. c GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 sentence 1 lit. f GDPR serves as the legal basis for processing. The legitimate interest of our company lies in the performance of our business activities and in the analysis, optimisation and maintenance of the security of our online offering.
Transfer of data to third parties
Data will only be transferred to third parties beyond the scope described in this privacy policy if this is necessary for the processing of the respective requested service. Personal data will not be transferred to so-called third countries outside the EU/EEA area.
Legal or contractual requirements for the provision of personal data and possible consequences of non-provision
We hereby point out that the provision of personal data is required by law in certain cases (e.g. tax regulations) or may result from contractual regulations (e.g. information about the contractual partner). For example, in order to conclude a contract, it may be necessary for the data subject/contractual partner to provide their personal data so that their request (e.g. order) can be processed by us. An obligation to provide personal data arises primarily when concluding contracts. If no personal data is provided in this case, the contract with the data subject cannot be concluded. Before providing personal data, the data subject may contact our data protection officer or the controller. The data protection officer or the controller will then inform the data subject whether the provision of the required personal data is required by law or contract or is necessary for the conclusion of the contract, and whether the data subject’s request gives rise to an obligation to provide the personal data or what consequences the non-provision of the requested data will have for the data subject.
Access, rectification, erasure or blocking of your personal data
We process and store your personal data only for the period necessary to achieve the respective storage purpose or as provided for by the various retention periods stipulated by law.
Once the purpose for storage no longer applies or the retention period stipulated by law has expired, the personal data will be routinely blocked or deleted for further processing in accordance with the statutory provisions.
External links
Our websites may contain links to other websites outside our area of responsibility, to which this privacy policy does not extend and for whose content we accept no responsibility.
Use of our website:
When you visit our websites, service providers who are also subject to data protection regulations store the name of your Internet service provider, your Internet protocol data (IP address), the website from which you visit us, the websites you visit on our site, and the date and duration of your visit. We use so-called “cookies” to track visitors’ preferences and make using our website as pleasant as possible for them. We use analysis tools for this purpose. If you do not want your data to be tracked when you visit our website, you can opt out here. Furthermore, personal data is only stored at if you provide it yourself, for example when making a contact enquiry.
Privacy policy for the use of Matomo Analytics
Our website uses Matomo Analytics, an open-source software for statistical analysis of visitor traffic, operated by InnoCraft Ltd., 7 Waterloo Quay, PO Box 625, 6140 Wellington, New Zealand. Matomo uses cookies that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is stored on our server. The following data is processed:
- IP address (anonymised)
- Usage behaviour (e.g. pages visited, length of stay)
- Technical information (e.g. browser type, operating system)
Legal basis: The legal basis for this data processing is your consent in accordance with Art. 6(1)(a) GDPR, Art. 49a GDPR.
You have the option of preventing the actions you take here from being analysed and linked. This will protect your privacy, but will also prevent the owner from learning from your actions and improving usability for you and other users.
Start of form
Your visit to this website is currently being tracked by Matomo web analytics. Deselect this checkbox to opt out.
End of form
Use of our Annual General Meeting portal
If you wish to use our Annual General Meeting portal, you must register by providing your personal details, your email address, a password of your choice and a username of your choice. You must use your real name; pseudonymous use is not possible. The provision of the aforementioned data is mandatory; all other information can be provided voluntarily when using our portal. We use the double opt-in procedure for this service, i.e. you will receive an email in which you must confirm that you are the owner of the email address provided and that you wish to receive notifications. You can unsubscribe from the notifications at any time, e.g. by clicking on the link in the email or using the contact details provided. We store the data you provide, the time of your registration for the service and your IP address until you unsubscribe from the notification service.
If you use our Annual General Meeting portal, we will store the data required for you to participate in the Annual General Meeting until you permanently delete your account at . We will also store the voluntary data you provide for the duration of your use of the portal, unless you delete it beforehand. The legal basis for this is Art. 6 (1) (a) GDPR.
If you use the Annual General Meeting portal, your data may be made available to other participants in the Annual General Meeting under the legal requirements. Unregistered participants will not receive any information about you. Your username will be visible to all registered participants if you have released it or if you make a speech.
To prevent unauthorised access by third parties to your personal data, in particular financial data, the connection is encrypted using TLS technology.
Right of appeal
If you disagree with the way in which we process your personal data, or if you have a concern or enquiry regarding data protection that you have addressed to us, please contact:
Information and contact details for the data protection authority
Berlin Commissioner for Data Protection and Freedom of Information
Alt-Moabit 59-61
10555 Berlin
Tel.: +49 30 13889 0
Fax:
Email: mailbox@datenschutz-berlin.de
Changes and validity of this privacy policy
Any changes to the privacy policy will be announced here on this website and will apply from the date of publication. If Francotyp-Postalia wishes to use your data for other purposes, we will ask for your permission. The purpose of use of this data will only change with your consent.
This privacy policy is currently valid and dated 11 November 2025.