Terms and Conditions

No liability can be assumed for completeness, editorial and technical errors, omissions, etc. or for the correctness of the entries. However, no guarantee can be given for the completeness and accuracy of information obtained via hyperlinks. The providers are responsible for the content they provide. Cross-references (links) to content already provided by other providers, can be distinguished from our own content. The hyperlinks to the contents of external websites are for information purposes only. The responsibility for this external content lies solely with the provider of the content. Before setting up the corresponding link, the web pages of the other providers have been checked with great care and to the best of our knowledge and belief. However, no guarantee can be given for the completeness and accuracy of information obtained via hyperlinks. The content of other websites may be changed at any time without the knowledge of OTHEB GmbH. For all links on these pages: we emphasise that we have no influence on the design and contents of the pages of other providers accessible by link from our homepage and do not own the contents. This declaration applies to all pages of this homepage and the links provided there. If OTHEB GmbH refers to pages whose content gives cause for complaint, we ask you to inform us. OTHEB GmbH reserves the right to change, supplement or remove the information provided without prior notice.


The web pages of OTHEB GmbH are protected by copyright. Texts, text parts, graphics, tables or image materials made available on the web pages of OTHEB GmbH may not be duplicated, distributed or exhibited without prior consent.

© 2015 Copyrights reserved.

Sources for the images and graphics used

Legal validity of this liability disclaimer

This disclaimer is to be regarded as part of the Internet offer from which a link was provided to this page. Insofar as sections of this text or individual terms within it are not, or are no longer or not fully, applicable to the legal situation, the content and validity of the remaining parts of the document shall remain unaffected.

Privacy Statement

The content was last updated on 12th May 2022.

OTHEB takes the protection of your personal data very seriously. We assure you that we handle your data carefully, in accordance with legal regulations. The use of our EAP service is generally possible without providing personal data. Should personal data become necessary in the course of our consultation or should we become aware of it, it will be collected and stored exclusively within the framework of the statutory provisions. This is based on the EU Data Protection Regulation (DSGVO), the Federal Data Protection Act (BDSG) and social secrecy (§35 SGB I).


The following statement gives an overview of how we guarantee this protection and what kind of data is collected and for what purpose.

1. Designation of Responsible Body

The following body is responsible for data processing of our service including our websites:

CEO: Manuela Görcke, Michael A. Dirks
Norwegenkai 1
24143 Kiel, Germany

Office phone: +49 431/99075-0
e-mail: info@otheb.de



If we are acting on behalf of another EAP provider, OTHEB is a processor bound by instructions within the scope of the applicable data protection provisions. The responsibility under data protection law lies with the respective client pursuant to Art. 4 No. 7 DSGVO.

2. Use of e-mail addresses

If you send us an e-mail, your e-mail address will only be used for correspondence with you. No other use or disclosure to third parties will take place.

We point out that data transmission by e-mail can have security gaps.

3. Data transfer and user rights

You have the right to request information free of charge about the personal data stored about you. In addition, you have the right to correct incorrect data, blocking and deletion. Your collected personal data will not be passed on except due to possible legal obligations and will not be used for any other purposes than those mentioned below.

Insofar as we are acting on behalf of another EAP provider, data may be transferred to the respective EAP provider (see 6. Telephone Counsultation).

You have the right to revoke your consent to the future use of your data at any time. The data processing carried out by the consent up to this point is not affected by this.

In addition, you have the right to object to the processing of your data on the basis of Art. 6 para.1 p.1 lit. f DSGVO (Art. 21 para.1 DSGVO). The controller will no longer process it unless it can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing is for the assertion, exercise or defense of legal claims.

4. Encryption of communication

If you access pages and files within this website and are requested to enter data about yourself, the data transmission via the Internet is encrypted using SSL and protected against unauthorized access.

If you want to send us an e-mail with content worthy of protection, we strongly recommend that you encrypt it in order to prevent unauthorized access and falsification on the transmission path.

5. Website

IP addresses and log files

Your IP address is only processed in a technically necessary manner to provide the content and is temporarily stored for the duration of the data transmission.

Our website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us.

These are:
• Browser type / browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer (IP address)
• Time of the server request

This data cannot be assigned to specific persons. A combination of this data with other data sources is not made.

Server log files are stored for 14 days to prevent misuse and attack scenarios and then completely deleted. No other use, such as the creation of statistics, the display of personalized advertising or the creation of personal profiles, takes place.

This data is stored in our server-based software and on our web server. The web server is operated for OTHEB GmbH by Hetzner Online GmbH, with which an order processing agreement has been concluded.


Our public-facing website does not use cookies.

Our password-protected login area uses cookies. These are small text files that your web browser or terminal device stores. Cookies help us to make our offer more user-friendly, effective and secure. By logging in via your internet browser, you agree to the use of cookies. The cookies used are "session cookies". Such cookies are deleted automatically at the end of your browser session. With a modern web browser, you can monitor, restrict and prevent the setting of cookies. Many web browsers can be configured so that cookies are deleted automatically when you close the program. The deactivation of cookies may result in limited functionality of our websites. If other cookies are set (e.g. for analysis functions), these are dealt with separately in the data protection declaration.

Purpose and legal basis

The purpose of data processing is the technical provision of our website. The legal basis results from Art. 6 para.1 p.1 lit. f DSGVO.

For the further purposes and legal bases of the other procedures, please refer to the respective subsections of this privacy policy.

6. Telephone consultation

All data is initially collected anonymously when you make use of our telephone counseling services. If you disclose your identity, this is done voluntarily.

Your personal data will be processed exclusively for the purpose of the consultation you have requested. The legal basis for this is Art. 6 para.1 p.1 lit. a DSGVO. A data transfer to an on-site consultant will only take place after your written consent. The legal basis for this is Art. 6 para. 1 p.1 lit. a DSGVO. Consents can be revoked at any time.

Due to legal requirements, personal data may be disclosed if there is an acute risk of danger to self or others. The legal basis for this is Art. 6 para. 1 p.1 lit. d DSGVO.

If we are acting on behalf of another EAP provider, data may be transferred to the respective EAP provider (responsible party).

If the latter is based in a third country for which there is no adequacy decision by the EU Commission pursuant to Art. 45 DSGVO (e.g. the USA), the data transfer will take place on the basis of the validity of the EU standard contractual clauses agreed between the respective EAP provider and OTHEB. Standard Contractual Clauses are model contracts adopted by the EU Commission in which the applicability of EU data protection standards is contractually agreed between the contracting parties -OTHEB and the respective EAP provider.

Metadata of the consultation are recorded in an anonymous statistic. This does not allow any conclusions to be drawn or restored about individuals or personal data.

A written record of the contents of the consultation is kept in electronic form. The IT systems used for this purpose are secured with regard to access control, access control, transfer control, input control, order control, availability control and the separation requirement in accordance with the current state of the art.

Order processors for the provision of technical services are Google Ireland Limited ("Google") and Twilio Germany GmbH.

7. Data protection during applications and the application process

We collect and process the personal data of applicants for the purpose of processing the application procedure. The legal basis for this is Art. 6 para. 1 lit. a, b DSGVO. The processing can take place electronically or in writing. Particularly in the case of electronic transmission of the application (e.g. by e-mail), special data protection conditions apply.

We would like to point out once again that data transmission on the Internet (e.g. by e-mail) can have security gaps.

If we conclude an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the data controller does not conclude an employment contract with the applicant, the application documents will be deleted no later than six months after the rejection, provided that no other legitimate interests of the data controller oppose deletion. Other legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

8. Right of complaint

You have the right to complain to a supervisory authority if you believe that your data is being collected unlawfully or there is another breach of the EU General Data Protection Regulation (EU GDPR).

9. Amendment of this privacy policy

We may update this Privacy Policy from time to time. However, this will not limit your rights under this Privacy Policy. The updated Privacy Policy will always be posted on our website. Please read it (with "last updated" we indicate when we last changed this Privacy Policy).

Contact partner for data security

If you have questions to our data security & protection, please refer to our Data Protection Officer :

DSS IT Security GmbH
Beethovenstraße 2A • 23617 Stockelsdorf (Germany)


Phone: +49 451 4900180
E-mail: otheb@it-security.gmbh