Date: May 2018

Data protection

We take the protection and security of your personal data, as well as compliance with provisions under data protection law, very seriously. We will inform you about what data is collected when you use our website and how we use this below.

Controller for data collection and data processing:


facts and fiction GmbH

Anna-Schneider-Steig 2/Rheinauhafen

50678 Cologne


process your data as the controller.

Data protection officer

Our data protection officer is Mr Hannes Oenning,, WPP Deutschland Holding GmbH & Co KG, Darmstädter Landstr. 112, 60598 Frankfurt.

Purpose of collecting, processing and using personal data

We collect, process and use your personal data as outlined in this privacy policy, in compliance with applicable data protection laws. Personal data is information that can be used to determine your identity.

If you simply visit our website, i.e. if you don’t send us an application by email, we only collect personal data that your browser sends to our server. If you want to view our website, we collect the following data, which is required from a technical perspective to display our website to you and to guarantee stability and security.

- IP address

- date and time of request

- time zone difference to Greenwich Mean Time (GMT)

- content of the request (specific page)

- access status/HTTP status code

- respective volume of data transferred

- the website the request comes from the browser

- the operating system and its interface

- the browser software language and version.

Your data is not shared with third parties unless we are legally obligated to do so (e.g. if requested to do so by authorities or a court), or if you have given us your consent for this.

We therefore only use your data for the purposes you have provided the data for, e.g. to process your request sent to us by email or by post.

Legal bases of collecting, processing and using personal data

The legal basis for processing your personal data is our legitimate interests. Our legitimate interests include the functionality of our website and in this respect, of course, the ability to respond to your requests.


We use the open source software Matomo to analyze and statistically evaluate the use of the website. Browser fingerprinting technology is used for this purpose. The information obtained about website usage is transmitted exclusively to our servers and summarized in pseudonymous usage profiles. We use the data to evaluate the use of the website. The data collected is not passed on to third parties.

The IP addresses are anonymized (IP masking) so that they cannot be assigned to individual users.

Email applications

Collected data and purpose of processing:

When applying, we process your data that we require as part of the application process. This may include contact details, all data relating to the application (e.g. CV, certificates, qualifications, responses to questions, etc.) and possibly also any bank details (to reimburse travel costs). The legal basis for this is Section 26 of the new Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG).

Of course, your data is treated confidentially. We do not share it with third parties. Where applicable, we use strict service providers that are bound to instructions that, as an example, support us in the areas of IT or archiving and destroying documents, and with which we have concluded separate contracts for processing in order to ensure that your data is handled securely and in compliance with the law.


With your consent, you can subscribe to our newsletter, which informs you about our current interesting offers. The advertised goods and services are named in the declaration of consent.

To register for our newsletter, we use the so-called double opt-in procedure. This means that after you have registered, we will send you an e-mail, to the e-mail address specified, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and times of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to inform you of any possible misuse of your personal data.

The only requirement for sending the newsletter is your e-mail address. The specification of additional, separately marked data is voluntary and will be used to address you personally. After your confirmation, we will save your e-mail address for the purpose of sending you the newsletter. The legal basis is Art. 6 Para. 1 Sent. 1 lit. a of the GDPR.

You can revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can declare the cancellation by clicking on the link provided in each newsletter e-mail, via this form on the website, by e-mail to or by sending a message to the contact details stated in the company information.

We would like to point out that we evaluate your user behavior when sending the newsletter. For this evaluation, the emails sent include so-called web beacons or tracking pixels that represent one-pixel image files stored on our website. For the evaluations, we link the data mentioned in Section 3 and the web beacons with your e-mail address and an individual ID. The data are collected exclusively encrypted, so the IDs are not linked to your other personal data, a direct personal reference is excluded. You can object to this tracking process at any time by clicking on the separate link provided in each e-mail or informing us via another channel of communication. The information will be stored as long as you have subscribed to the newsletter. After logging out, we store the data anonymously and purely for statistical reasons.

Erasing data

Your data is erased as soon as it is no longer required to fulfil the purpose for which it was collected (when your visit to our website ends or if your email/postal/telephone request has been processed) and erasure is not subject to any statutory retention periods.

Your rights

You may assert the following rights against us with respect to your personal data:

- the right of access

- the right to rectification or erasure

- the right to restrict processing

- the right to object against processing

- the right to data portability.

You also have the right to lodge a complaint with a data protection supervisory authority about how we process your personal data.


We have taken a number of technical and organisational measures to ensure that the data collected and processed by us is protected against unauthorised access, loss, destruction and manipulation. Legal data protection provisions are of course complied with. However, please note that no data transfer over the internet is 100% secure. As a consequence, we cannot guarantee that the data and information sent by you via our website is completely protected.

We reserve the right to change or adapt this privacy policy. We therefore ask that you review it occasionally to ensure that you are informed of the current version when accessing the website.

Links to other websites

For your convenience, this website may include links to other websites and our social media accounts on Facebook, LinkedIn, Xing, Instagram, Pinterest, Vimeo and YouTube. This privacy policy does not apply to any other websites. We recommend that you read the respective privacy policies for information about data collection and data processing.