Legal Disclaimers & Data Protection

Legal and Privacy Notice

Data Privacy

General Information

The protection of your personal data is a high priority for Detecon. It is important to us to inform you what personal data we collect, how your data is used, and how you can influence the process.

Who is responsible for data processing? Whom should I contact if I have any questions about data privacy at Detecon?

The data controller is, unless stated otherwise, Detecon International GmbH, Bayenwerft 12-14, 50678 Cologne. If you have any questions regarding data protection you can contact or our data protection officer at the aforementioned postal address or at

Note that where you have a business relationship with any Detecon entity other than Detecon International GmbH (including without limitation as a client, service provider, applicant, or if you have signed up for a newsletter at any Detecon entity other than Detecon International GmbH), such other Detecon entity is the controller of that data. If you have any questions regarding protection of your data controlled by any such Detecon entity, you can find contact details here.

What rights do I have?

With respect to any of the activities listed below you have the right 

  • To request information about the categories of personal data processed, the purposes of the processing, any recipients of the data, and the envisaged storage period (Art. 15 GDPR);
  • To request that incorrect or incomplete data be rectified or supplemented (Art. 16 GDPR); 
  • To withdraw consent at any time with effect for the future (Art. 7 (3) GDPR);
  • To object to the processing of data on the grounds of legitimate interests, for reasons relating to your particular situation (Art. 21 (1) GDPR);
  • To request the erasure of data in certain cases under Art. 17 GDPR – especially if the data is no longer necessary in relation to the purposes for which it was collected or is unlawfully processed, or if you withdraw your consent according to (c) above or object according to (d) above; 
  • To demand, under certain circumstances, the restriction of data where erasure is not possible or the erasure obligation is disputed (Art. 18 GDPR);
  • To data portability, i.e. you can receive the data that you provided to us in a commonly used and machine-readable format such as CSV, and can, where necessary, transfer the data to others (Art. 20 GDPR);
  • To file a complaint with the responsible supervisory authority regarding data processing (for telecommunications contracts: the German Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragter für den Datenschutz und die Informationsfreiheit); for any other matters: State Commissioner for Data Protection and Freedom of Information, North Rhine-Westphalia (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Nordrhein-Westfalen)).
  • If you have a business relationship with a company of the Detecon Group other than Detecon International GmbH, you have the rights vis-à-vis that company set forth in part three ("Data Subject Rights") of the Binding Corporate Rules Privacy, in addition to the rights to which you are entitled by law.

Note that where you have a business relationship with any Detecon entity other than Detecon International GmbH, you have – in addition to any rights you may have under applicable local law – the rights set out in Part Three (“Rights of Data Subjects”) of the Binding Corporate Rules Privacy in relation to that Detecon entity.

Whom does Detecon pass my data on to?

To processors, i.e., companies we engage to process data within the legally defined scope, Art. 28 GDPR (service providers, agents). In this case, Deutsche Telekom also remains responsible for protecting your data. We engage companies particularly in the following areas: IT, marketing, finance, HR, logistics, and printing.

To cooperation partners who, on their own responsibility, provide services for you or in conjunction with your Deutsche Telekom contract. This is the case if you order services from these partners through us, if you consent to the involvement of the partner, or if we involve the partner on the basis of legal permission.

Owing to legal obligations: In certain cases, we are legally obliged to transfer certain data to a state authority that requests it. 

Where will my data be processed?

As a general rule, your data will be processed in Germany and other European countries. If, in exceptional cases, your data is also processed in countries outside the European Union (i.e., in third countries), this is done only if you have explicitly given your consent, if it is necessary for us to provide you with services, or if it is prescribed by law (Art. 49 GDPR). Furthermore, your data is processed in third countries only if certain measures ensure a suitable level of data protection (e.g., EU Commission's adequacy decision or suitable guarantees, Art. 44 et seq. GDPR). 

Notice for all visitors of this Website

Collection of technical characteristics in the provision of the website

When you visit our web pages, the web server temporarily records the domain name or your computer’s IP address, date/time of request, HTTP request header data, especially user agent, the file requested (file name and URL) by the client, the http response code, and the website from which you are visiting us.

The recorded data is used solely for data security purposes, particularly to protect against attempted attacks on our web server. We do not use it to create individual user profiles. Nor do we share this information with third parties. It is erased after seven days at the latest. We reserve the right to statistically analyze anonymized data records. We have a legitimate interest in that (Art. 6 (1) f GDPR).

We do not collect personal data in excess of that, such as your name, address, telephone number or e-mail address, unless you provide this information voluntarily (see below our information for newsletter subscribers, applicants and freelancers).

Social media plug-ins

Some web pages include buttons for social media networks (such as Facebook, Twitter, YouTube, Xing, and LinkedIn) that you can use to recommend the services of Deutsche Telekom AG to others. 

To ensure you retain full control of the data, the used buttons provide direct contact between the respective social network and the visitor only once you actively click on the button (one-click solution).

When the social media plug-in is activated or links in the pictogram are used, also for the purpose of sharing content (Art. 6 (1) a GDPR), the following data can be forwarded to the social media provider: IP address, browser information, operating system, screen resolution, installed browser plug-ins (such as Adobe Flash Player), previous website if you followed a link (referrer), URL of the current website, etc. The next time you visit the website, the social media plug-ins are again provided in the default disabled mode, thus ensuring that no data is transferred during a repeat visit to the website. For more information about social media plug-ins and about the purposes for which data is processed, along with other privacy-relevant information, please refer to the data privacy statements of the companies responsible and to one-click solution.

Will my usage habits be evaluated, e.g., for advertising purposes or tracking?

We would like you to enjoy using our web pages and take advantage of our content and services. We have an economic interest in this. We analyze your usage habits on the basis of anonymized or pseudonymized data so you can find the contents that interest you and so we can make our web pages user-friendly. We, or companies commissioned by us to process data, create usage profiles to the extent permitted by law. This information cannot be traced back to you directly. Below, you can find more information about the different purposes.

When the cookie prompt appears when you visit our website, you have the option of accepting or denying the use of cookies. Please note, however, that cookies that are required to deliver the web service (see further explanation below) cannot be denied.

Please include your consent ID and date when contacting us regarding your consent:

Market research / reach measurement (cookie-free / cookies with opt-in)

Reach measurement provides statistics on a website’s usage intensity and the number of users, along with comparable figures for all the connected services. Individual users are not identified at any time. Your identity is always protected. 

In any case, when you visit our website, the web server temporarily records the domain name or IP address of your computer, information on the device, operating system and browser used, geo-information down to a maximum of city level; the URL called up with the associated page title and optional information on the page content; the website from which the called individual page was reached (referrer site); the subsequent pages that were called from the called web page within an individual web page; the time spent on the web page; further interactions (clicks) on the web page such as entered search terms, downloaded files and videos viewed. This information is pseudonymized or anonymized. Pseudonymized data is deleted after 24 hours although we reserve the right to evaluate anonymized data even beyond this period. We have a legitimate interest in this (Art. 6 (1) f GDPR).

You can find more details about the range measurement with the help of cookies (after your opt-in) in the corresponding section below.

Required cookies
These cookies are required to enable you to navigate through the web pages and use key functions. They enable basic functions. They are also used for anonymized evaluation of user behavior, which helps us to continuously further develop our website for you. The legal basis for processing is Art. 6 (1) b GDPR.

NameCompanyPurposeStorage periodInvolved as
CookieConsentDeteconSaves cookie preferences5001 dayscontroller
SSESS#DeteconSession identification.23 dayscontroller

Analysis cookies
These cookies help us to improve our understanding of user behavior. Analysis cookies enable inquiries of usage and identification possibilities through initial and third-party suppliers in pseudonymous user profiles. We use analysis cookies, for example, to determine the number of unique visitors to a web page or service or to collect other statistics relevant to the operation of our products, as well as to analyze – based on anonymous and pseudonymous information – how visitors interact with the website. This information cannot be traced back to a person. The legal basis for processing is your opt-in (Art. 6 (1) a GDPR).

NameCompanyPurposeStorage periodInvolved as
TBCetrackerReach maesurement5 yearsProcessor

Services by other companies (independent third-party providers)
Our web pages include third-party providers who deliver services independently. If you opt to use those services, when you visit our website data is recorded using cookies or similar technologies and sent to those third parties. Some data is also used for Deutsche Telekom's own purposes. The legal basis for processing is Art. 6 (1) a GDPR. The scope, purpose and legal basis on which further processing is carried out for the third party’s own purposes can be found in the third party’s privacy notice. Information on the independent third-party providers can be found below. 

To show you videos on our websites, we use the service YouTube, provided by Google Ireland Limited with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). When playing videos, cookies are stored, and information (including your IP address) is transmitted directly to Google. We also use the same provider’s services Google Analytics and Google Tag Manager for reach measurement and tag management, respectively. The information generated by the cookies about your use of our website (including your IP address) is transferred to Google's computers and stored there. Data processing may take place outside the jurisdiction of the EU. Learn more about and object to Google's data processing at

To provide you with audio content on our websites, we use the service SoundCloud, provided by SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin ("SoundCloud"). When playing SoundCloud audio content, cookies are stored, and information (including your IP address) is transmitted to Soundcloud computers and stored there. Data processing may take place outside the jurisdiction of the EU. To ensure the lawful transfer of your personal data outside the scope of EU law, SoundCloud uses appropriate safeguards, such as standard contractual clauses approved by the European Commission or other legally approved mechanisms. Learn more about and object to data processing by SoundCloud at


The use of Detecon’s websites is, as a general rule, possible without providing personal data. Before you can download certain documents (e.g. product information and studies), however, you may be required to enter certain personal data. If you click on "send" that data will be transmitted to us. By doing so, you also give us your consent (Art. 6 (1a) GDPR) to contact you in individual cases in order to better understand how we can help you and to send you other materials which we believe may be of interest to you. We store your data for a maximum of two years after you last contacted us. If you do no longer agree with the use of your data, you can inform us at any time by sending an e-mail to We will then delete the data.

Note for newsletter subscribers

We invite you to subscribe to our free newsletter. For registration, you will be asked to provide certain information. We use this data only to send you the newsletter and, if applicable, other related information (e.g., current studies, surveys).

After registration for newsletters, mailings, or downloads on Detecon Websites, a user receives confirmation to the e-mail address provided (so-called double opt-in procedure). The registration process is only complete once the user has clicked the link contained in this e-mail.

We may use the service “maatoo” for our newsletter. E-mails sent with maatoo use tracking technologies. We use such data primarily to find out which topics are of interest to you by tracking whether our e-mails are opened, and which links you click on. We then use this information to improve the e-mails we send you and the services we provide.

The legal basis for the processing of your data is your consent, Art. 6 (1) a GDPR.

Accordingly, your data will be stored for the term of your subscription to the newsletter. If you do no longer agree to the use of your data or if you wish to receive the newsletter no longer, you can inform us at any time by sending an e-mail to We will then delete the data immediately.

Note for Visitors of our Facebook, Instagram or LinkedIn Pages

We use the “Facebook Insights” functions of Facebook Ireland Limited (“Facebook”) on our Facebook and Instagram pages and the “Page Insights” function of LinkedIn Ireland Unlimited Company (“LinkedIn”) on our LinkedIn page (the providers collectively called the “Social Networks”) to obtain anonymized statistical data about the use of and visitors to our Facebook, Instagram and, respectively, LinkedIn pages. The legal basis is our legitimate interest (Art. 6 (1) f GDPR) in public relations and communication in general and, in particular, the optimization of our Facebook, Instagram and, respectively, LinkedIn presences, and to select groups that we want in particular to see our communication.

Via “Facebook Insights”, we receive information about the use of our Facebook and Instagram pages, in particular anonymized information about visitor profiles including demographic and geographic evaluations. These usage statistics may also be created by Facebook across devices if you use Facebook or Instagram on multiple end devices (e.g., in the browser and in the app). When you are a LinkedIn member and you visit, follow or engage with our LinkedIn Page, LinkedIn creates similar statistics, in particular with data that was provided by you to LinkedIn, such as job function, country, industry, seniority, company size, and employment status data from your profile. Additionally, LinkedIn will process information on how you have interacted with our company page, e.g., whether you are a follower.

With respect to our Facebook and Instagram pages, Detecon and Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for these statistics under applicable data protection law. We have concluded an agreement pursuant to Art. 26 GDPR with Facebook on such joint controllership. The essence of this agreement and more detailed information on Facebook Insights can be found here. With respect to our LinkedIn page, Detecon and LinkedIn Ireland Unlimited Company, Gardner House, Wilton Plaza, Wilton Place, Dublin 2, Ireland, are jointly responsible for these statistics under applicable data protection law. We have concluded an agreement pursuant to Art. 26 GDPR with LinkedIn on such joint controllership. The essence of this agreement and more detailed information on Page Insights can be found here. Facebook and LinkedIn, respectively, assume essential obligations on the basis of those respective agreements, in particular to inform data subjects and to safeguard data subject rights. Under the above links, you can also find out how to assert your data subject rights under the GDPR, in particular the right to request information and the right to object processing of the Insights data.

Independently of this, please note that the Social Networks may process further data from you on their own sole responsibility, e.g., through cookies. Whether and to what extent this is generally the case can be seen for Facebook here, for Instagram here and for LinkedIn here.

You can set the extent to which Facebook collects data on your user behavior when visiting Facebook and Instagram pages as a registered user of Facebook here and as a registered user of Instagram here. You can also find more options for managing data processing by Facebook and Instagram, including an objection form, here and under the options for general settings for Facebook and Instagram. LinkedIn provides choices about the collection, use and sharing of a member’s data, from deleting or correcting data a member includes in its profile and controlling the visibility of its posts to advertising opt-outs and communication controls. LinkedIn offers a member settings to control and manage the personal data it has about the member.

All Social Networks may transfer personal data to countries outside the EU, including the United States, and rely on either a European Commission’s decision that the country has an adequate level of data protection or on standard contractual clauses approved by the European Commission to achieve such an adequate level of data protection.

Please note that communication via all Social Networks is potentially insecure. You can always contact us via other means, e.g.,

Note for applicants

We process applicants’ data only for the application procedure and its administrative handling. The legal basis for this is § 26 I 1 BDSG (German Federal Data Protection Act, decision on the establishment of an employment relationship). We delete your data at the latest 6 months after the end of the application procedure.

Data security

All personal data on this website will only be transmitted in encrypted form. The identity of the server is known, and it is secured against unauthorized access by third parties. Effective algorithms check whether the data reaches its respective recipient completely and unchanged.

If you wish to contact us by e-mail, please note that due to the technical conditions of the Internet, confidentiality cannot be guaranteed for these messages. E-mails can also be changed or lost by third parties.

Worldwide, data protection and data security within the Detecon Group are subject to the Binding Corporate Rules Privacy (BCRP) of the Group Deutsche Telekom AG, which have been approved by the German Federal Commissioner for Data Protection and Freedom of Information.

This privacy notice was last updated: January 27, 2023.

Legal notice


We make information available on our websites which we select and check carefully and on a regular basis. However, we expressly point out that we do not assume any warranties for the correctness, completeness or up-to-dateness of the information offered on those websites. In particular, Detecon assumes no liability for content which is expressly or impliedly identified as third-party content. Detecon is not responsible for ensuring that such content is complete, correct, current, and lawful and that it does not inadmissibly interfere with the legal interests of any third parties. This applies in particular to any external links on the websites - we cannot accept any responsibility for their content.

We reserve the right to change, add to or remove any information on our websites without prior notice.

Detecon is not liable for any loss of data in connection with the use of documents, of information, of our websites or any services accessible on those websites. Detecon is also not liable if you cannot use or access such documents, information, our websites or any services accessible on those websites.

Intellectual property

The content of our websites is protected by copyright, as is the design or the “look & feel” of our websites. None of the retrievable contents here may be reproduced, printed, translated, processed in digital form, included in archives, or made accessible to third parties under a different URL without the express written consent of Detecon International GmbH. A link to our websites may be set only if the displayed Detecon website becomes the sole content in the browser window.

The Detecon symbol is a registered trademark of Detecon International GmbH. Other application, product, or company designations may be trademarks or business references of third parties. The use of such trademarks and business references is not permitted without express prior permission of Detecon or the respective owner.

  • ITIL® is a Registered Trade Mark of the Cabinet Office in the United Kingdom and other countries.
  • IT Infrastructure Library® is a Registered Trade Mark of the Cabinet Office in the United Kingdom and other countries.
  • ISO® is a Registered Trade Mark of the International Organization for Standardization (ISO).
  • COBIT® is a Registered Trade Mark of the Information Systems Audit and Control Association (ISACA).
  • TOGAF® is a registered trademark of The Open Group in the United States and other countries.
  • ISACA® is a registered trademark of Information Systems Audit and Control Association.

Compliance and Code of Conduct

The key to company success lies in a Group-wide company culture that is characterized by integrity, ethics and personal responsibility. The ethical requirements that pertain to business operations and the workplace are becoming increasingly complex. Our Code of Conduct is the framework for guiding our behavior.

Compliance means to adhering legal provisions, the Company's internal policies and ethical principles and is crucial for us. Detecon is integrated into the Compliance Management System of the Deutsche Telekom Group. Find more information in:

Information concerning violations of legal obligations or Detecon rules and regulations can be reported to the Deutsche Telekom Group Compliance Management through the Tell me! whistleblower portal.:

General Terms of Contract (Allgemeine Vertragsbedingungen)

The General Terms of Contract (Allgemeine Vertragsbedingungen) of Detecon International GmbH can be found here: AVBs