The present information pursuant to Art. 13 et seq. DSGVO on data protection serve the duty to inform when collecting personal data.

Name and contact details of the person responsible:

Nayoki GmbH
Birkenleiten 41
D-81543 Munich

(hereinafter "Nayoki", "we", "us").



2. contact details of the data protection officer:

We have appointed a data protection officer in our company. You can reach him under the following contact options:

Nextwork GmbH


3. purposes for which the personal data are to be processed and the legal basis for the processing:

3.1 Data processing for the fulfilment of the contract concluded between you and us (Art. 6 para. 1 lit. b) DS-GVO).

In the case of a contract concluded with us, the following applies: In order to fulfil the existing contractual relationship, to provide services owed and to send you contractual documents, we, as well as third parties or order processors commissioned by us, process the following data from you, insofar as you have provided us with this data when concluding the contract or in the course of the contractual relationship:

Personal details (name, address, telephone, fax number, e-mail address and homepage, if applicable),

Bank details (IBAN, bank, account holder) and payment information.


3.2 Data use based on your consent (Art. 6 para. 1 lit. a) DS-GVO)

In the event of a promotional approach, we will only contact you via the communication channels to which you have consented, subject to the sending of mail. For this purpose, we use your data for the following purposes:

Quality assurance: In order to continuously improve our performance, our products and our services for you, we conduct surveys on your satisfaction, as well as your experiences from your contractual relationship.


3.3 Data use based on legitimate interests (Art. 6 para. 1 lit. f) DS-GVO)

We may use your personal data in order to pursue our legitimate interests, provided that your interests or fundamental rights and freedoms are not overridden. Insofar as the data processing is based on a balancing of interests and thus on legitimate interests, further information regarding the balancing of interests is available upon request.


4 Obligation to provide the data

In the event of a contract being concluded, the provision of name and address is obligatory.  If you do not provide us with this information, a contract will not be concluded with us. All other data is voluntary.


5 Automated decision making including profiling

Naoyoki does not carry out any profiling measures.


6. data transfer to a third country

Data transfers to countries outside the EU and the European Economic Area ("third countries") occur in the context of the administration, development and operation of IT systems. The transfer only takes place in the following cases:

The transfer is generally permissible because a legal permissible circumstance is fulfilled or you have consented to the data transfer and

The special requirements for a transfer to a third country are met.


7 Recipients of data and data sources


7.1 Categories of data recipients

To the extent permitted by law, we disclose personal data to external service providers:

Credit agencies and scoring providers for creditworthiness information, for the assessment of credit risk.  - Credit institutions and providers of payment services for settlements as well as processing of payments.

IT service providers to maintain our IT infrastructure.

Collection service providers and lawyers to collect receivables and enforce claims in court. If personal data (customer and contact data, payment data and data on the claim) is transferred to a debt collection service provider in the event of collection, we will inform you in advance of the intended transfer.


7. 2 Data sources

We process personal data that we have received from you in the course of our business relationship. Insofar as it is necessary for the provision of our service, we process personal data which we have obtained from publicly accessible sources (debtors' registers, land registers, commercial and association registers, press, Internet) or which we have been legitimately provided with by other third parties (a credit agency or an address service provider).


8. storage period and criteria for determining the duration

We store your data for the period of the existing contract and, after termination of the contract with you, for a period until the completion of the tax audit of the last calendar year in which you were our customer.  If there are statutory retention periods, we are obliged to store the data until these periods expire. After expiry of the statutory retention periods, which primarily result from commercial and tax law (in particular §§ 147 AO and 257 HGB), we delete this data again. We store your data for advertising purposes until you object to its use, you revoke your consent or it is no longer legally permissible to contact you.  We store your other data for as long as we need it to fulfil the specific purpose (e.g. to fulfil or process a contract) and delete it when the purpose no longer applies.


Cookies/Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc ("Google"). Google Analytics uses cookies, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States . In addition, Google Analytics on this website has been extended by the code "gat._anonymizeIp();" provided by Google to ensure anonymised collection of IP addresses. Before transmission, the last two digits of the IP address are shortened so that identification of the user is not possible.

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Google will not associate your IP address with any other data held by Google. You can prevent the installation of cookies simply by setting your browser software accordingly. You can object to the collection and use of your IP address by Google Analytics at any time with effect for the future. To do this, you have the option of installing a browser plug-in provided by Google. The plug-in and more detailed information can be found on the Google website at //


Links to other websites

This data protection declaration applies to the website of Nayoki. The web pages under this appearance can contain links to other offerers within and outside of, to which the data security explanation does not extend. When you leave Nayoki's website, please be aware of and read the privacy statements of each and every website that collects personally identifiable information.


9. information on your data protection rights

Nayoki GmbH, Birkenleiten 41, D-81543 Munich is responsible for the processing of your data, unless otherwise stated. You can request information from us at any time about the data stored about you and its correction in the event of errors. Furthermore, you can demand the restriction of processing, the transferability of the data provided to us by you in a machine-readable format or the deletion of your data - insofar as it is no longer required.


You also have the right to object at any time to the use of your data based on public or legitimate interests.

Insofar as we process your data on the basis of consent given by you, you can revoke this consent at any time with effect for the future. From the time we receive your revocation, we will no longer process your data for the purposes stated in the consent. Please address your revocation or an advertising objection to:


Nayoki GmbH
Birkenleiten 41
D-81543 Munich


Data protection information for applicants

We are pleased that you are interested in us and would like to apply for a position in our company. We would like to provide you with the following information on the processing of your personal data in connection with your application. We process the data you send us in connection with your application in order to assess your suitability for the position (or other open positions in our companies, if applicable) and to carry out the application process. The processing may also take place electronically. This is the case in particular when applicants submit relevant application documents to the controller, for example by e-mail.

The legal basis for the processing of your personal data in this application procedure is primarily Art. 6 para. 1 lit. b) (fulfilment of our (pre)contractual measures). In Germany, Section 26 of the BDSG also applies. According to this, the processing of data required in connection with the decision on the establishment of an employment relationship is permissible. Should the data be required for legal prosecution after the application process has been completed, data processing may be carried out on the basis of the requirements of Art. 6 DSGVO, in particular to safeguard legitimate interests pursuant to Art. 6 para. 1 lit. f) DSGVO. Our interest then consists of asserting or defending claims under the General Equal Treatment Act (AGG).


Applicants' data will be deleted after 6 months in the event of rejection.

In the event that you have agreed to further storage of your personal data, we will transfer your data to our talent pool. After 12 months, you will be asked again whether your data should continue to be stored in the talent pool. If you do not respond to this request within 14 days, your documents will be deleted. If you have been accepted for a position during the application process, your data will be transferred from the applicant data system to our personnel information system.

We use a specialised software provider HRworks for the application process. This provider acts as a service provider for us and may also become aware of your personal data in connection with the maintenance and servicing of the systems. We have concluded a so-called order processing agreement with this provider, which ensures that the data processing is carried out in a permissible manner.

After receiving your application, your applicant data will be viewed by the HR department. Suitable applications are then made available for inspection by the internal department heads for the respective open position. In principle, only those persons in the company have access to your data who require this for the proper conduct of our application procedure.


The data is stored exclusively in the European Union.

No automated decision-making or profiling takes place within the application process.


10. right of complaint to a supervisory authority


You can also lodge a complaint with a supervisory authority at any time. The Bavarian State Office for Data Protection Supervision, Postfach 606, 91511 Ansbach, is generally responsible for us. Alternatively, you can approach the supervisory authority locally responsible for you.


Group: Essential

Essential cookies are required for basic website functions. This ensures that the website functions properly.




Stores the cookie settings chosen by the user.

Storage period

365 days


Oliver Pfaff - Olli does it

Group: Marketing

Marketing cookies include tracking and statistics cookies


_ga, _gid, _gat, __utma, __utmb, __utmc, __utmd, __utmz


These cookies are used by Google Analytics to collect various types of usage information, including personal and non-personal information. For more information, please see the Google Analytics privacy policy at Collected non-personal information is used to create reports about website usage that help us improve our websites / apps. This information is also shared with our customers / partners.

Storage period

Multiple - vary from 2 years to 6 months or even shorter.


Google LLC




Used to display YouTube videos and store user settings.

Storage duration

Current browser session