• English
  • German
  • Russian
  • Spanish

Privacy policy

Name and contact data of the people in charge acc. to art. 4 par. 7 GDPR (DGSVO)

Company: MH Sprachkurse und Personalvermittlung für medizinische Berufe
Address: Dachauer Str. 237, 80637 München
Phone: +49 151 431 989 85
Email: m.holzer@mh-sprachkurse.com

Security and protection of your personal data.

We consider as our overriding tasks to protect your personal data and handle such with the strictest confidence. Therefore we apply utmost care and highest modern security standards in order to safeguard the best possible protection of your personal data.

As a company under private law we are subject to the stipulations of the General Data Protection Regulation (GDPR/ DSGVO) and the regulations acc. to the Federal Data Protection Act (BDSG). We applied technical and organizational measures in order to safeguard the highest compliance to the regulations for data protection by us as well as by external service providers.


Legislation requires that personal data is processed along the principle of fair and lawful processing in a transparent manner (lawfulness, fairness, transparency). In order to guarantee this we inform you about the special legal terms and definition, which are used in these regulations.


  • Personal data

“Personal data” is all information regarding identified or identifiable natural persons (in the following “affected person”); identifiable persons are natural individuals who are, directly or indirectly, are identifiable by means of an assignment to an identifier such as name, identification number, location, online identification or by other special attributes, which are representative for a physical, physiological, genetic, psychic, economic, cultural or social identity of a natural person.

  • Processing

“Processing” is any automated or non-automated process or any process series regarding personal data such as data collection, data recording, data organization, data arrangement, storage of data, data adaption or data change, reading data, query data, its usage, disclosure due to transfer, dissemination or a different form of data provision, matching or linking of data, data restriction, deletion or destruction.

  • Restriction of processing

“Restriction of processing” is marking of saved, personal data with the aim to restrict its procession.

  • Profiling

“Profiling” is any way of automated processing of personal data which consists in the use of such, in order to evaluate personal aspects relating to a natural person, foremost in order to analyze or predict aspects relating to work performance, economic situation, health, individual preferences, interests, reliability, way of behavior, location or change of location of that natural person.

  • Pseudonymization

“Pseudonymization” is the processing of personal data in such form that personal data, regardless of additional information, is not able to be attributed to the individual affected person, as long as the additional information is saved separately while underlying technical or organizational measurements which safeguard that saved information is not attributable to an identified or identifiable natural person.

  • Filing system

“Filing system” is any structured collection of personal data, which are accessible according to special criteria, irrespectively of the fact if that data is saved centralized, decentralized, or according to functional or geographic aspects.

  • Accountability

“Accountable” is a natural or legal person, authority or institution which solely or jointly decides about purposes and means of processing personal data; if the purposes and means of processing are predefined by the legislation of the European Union or by the laws of member states of the EU, the responsible person or respectively the special criteria of the nomination can be treated according to legal regulations of the European Union or the specific member state.

  • Processor

“Processor” is a natural or legal person, authority or institution which is processing personal data on behalf of the responsible person.

  • Recipient

“Recipient” is a natural or legal person, authority or institution, whose personal data is disclosed, irrespectively if that person is member of a a third party or not. Authorities, which receive personal data alongside a special authorization mandate according to the legislation of the European Union or by the laws of member states of the EU are not considered as recipient; the processing of such data by administrative entities in conformity with the legislation and regulations applicable is executed according to the purposes of the processing.

  • Third party

“Third party” is a natural or legal person, authority or institution except the person concerned, the responsible individual, the processor and the persons who are authorized to process personal data by direct authority of the of the responsible or authorized person.

  • Consent

A “consent” of the affected person is any declaration of intention which was declared voluntarily for the special case, in an informed manner and unequivocally, given in a form of declaration or another unambiguous affirmative action, where the affected person makes clear that he or she consents with the processing of the personal data respectively.

Lawfulness of processing

The processing of personal data is only lawful, if there is a legal basis for this processing. According to art.6 par.1 (a-f) GDPR legal basis for such processing can be especially the following:

  • The affected person as consented to the processing of his*her personal data for a special or several specific purposes.
  • The processing is necessary in order to meet the contract’s criteria of which the contracting party is the affected person, or in order to execute the pre-contractual measures which are conducted by request of the affected person.
  • The processing is necessary in order to fulfil legal obligations which the responsible party is underlying
  • The processing is necessary in order to protect vital interests of the affected person or another natural person
  • The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
  • The processing is required for the safeguarding of legitimate interest of the controller or a third party as long as interests, basic rights, fundamental freedom of the affected person may not be outweighed by the protection of the personal data, especially if the affected person is not yet of legal age.


Information on the collection of personal data

  1. In the following we offer information on the collection of personal data when using our website. Personal data are e.g. name, address, email-addresses, user behavior.
  2. When contacting us via email your personal data you disclosed (your email, name, telephone number) is saved in order to answer your request. The incoming data in this respect is deleted after the record is not necessary any longer, or the data processing is limited, if there are retention requirements.

Data acquisition of personalized data when visiting our website

When using our homepage solely for acquiring information, if you don’t register or don’t transfer information in another way, we only acquire the personal data which is transferred by your browser to our server. If you want to view out homepage we acquire the following data which is necessary in order to display the website and to safeguard stability and security (legal basis is art. 6 par. 1 (a-f) GDPR)

  • IP-address
  • Date and time of request
  • Time zone difference to Greenwich mean time (GMT)
  • Content of requirement (concrete webpage)
  • Access status/ http status code
  • Transmitted data volume respectively
  • Website the request came from
  • Browser
  • Operation system and its interface
  • Language and version of browser software


Use of cookies

  1. In addition to the data listed above cookies are saved on your computer when using our website. Cookies are small text-files, which are saved by your browser and are assigned to that, and which provide information to the party which placed the cookie. Cookies cannot run programs or transfer viruses on your computer. They are applied in so far as to make the online offer more user-friendly and more effective in general.
  2. This website uses the following kinds of cookies, the extent and the operating principle of those will be described in the following:
  • Transient cookies (a)
  • Persistent cookies (b)
  • Transient cookies are deleted automatically when you close the browser. Those are especially the session cookies. Those save a so-called session-ID which enable to match different tasks performed during your session with a special session. By that your computer can be recognized when you return to our homepage. The session cookies are deleted when you log out our when you close your browser.Persistent cookies are deleted automatically after a special period of time which differs according to the type of the cookie. You can delete cookies n the security settings of your browser at any time.
  • You can configure the settings of your browser according to you requirements and, for example, reject third-party-cookies or all cookies. These so-called third-party-cookies are cookies applied by a third party and not only by the provider of the visited webpage. We emphasize that possibly you might not be able to use all functions of our homepage if cookies are deactivated.
  • We use cookies in order to identify you in following visits if you have an account at our website. Otherwise you have to log-in at any time you visit our homepage.
  • The used flash-cookies are not recorded by the browser but by the flash-plug-in. Moreover we use HTML5 storage objects, which were stored on your terminal device. Those applications save the required data independent from your browser and have no automated expiry date. If you don’t want a processing of your flash cookies, you have to install the appropriate add-ons such as “Better Privacy” for Mozilla (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the adobe flash killer cookie for google chrome. You can prevent the use of HTML5 storage objects by using private mode in our browser. Additionally we recommend to delete cookies and the browser history regularly.

Further functions and offers on our homepage

  1. Besides the informational use of or homepage we offer diverse services which you can use when interested. Therefore you usually have to insert additional personal data which we use to provide the relevant service and to which the aforementioned principles for data processing apply.
  2. For data processing we partly use the services of external providers. Those were carefully selected, they are bound by our instructions and they are regularly inspected.
  3. Moreover we can pass personal data to third parties, if active participation, competitions, conclusions of contracts or similar services are offered by us together with partners. You obtain further information when entering your personal data or under the description of the offer.
  4. As far as our service providers or partners are based in a state outside the European Economic Area (EEA) we inform you about the consequences of this circumstance in the description of our offer.



Our offer concerns only adults. Persons under the age of 18 should not submit any personal data to us without the consent of their parents or legal guardians.

Rights of the person concerned

1. Revocation of consent

If the processing of the personal data is based on a given consent, you have the right to revoke your consent at any time. By revoking your consent the legitimacy of the data processing, the legality of the processing effected on the basis of the consent until the revocation is not affected.

You can contact us at every time in order to execute your right of withdrawal.

2. Right to confirmation

You have the right to call for a confirmation by the responsible party, if we have processed personal data concerned. You can request confirmation at any time using the contact details above.

3. Right to information

As far as personal data is processed, you can request information about these personal data and about the following information at any time:

  • Processing purposes
  • Categories of processed personal data
  • The recipients or categories of recipients against which the personal data was disclosed or will be disclosed, especially against recipients third countries or international organizations
  • If possible, the planned duration for which the personal data are stored, or, if that is not possible, the criteria for the determination of that duration
  • The existence of the right for rectification or cancellation of personal data concerning you or for restriction of processing of the responsible party or for the right to object tis processing
  • The existence of a complaint right with a supervisory authority
  • If the personal data are not collected from the data subjected, you can ask for any information on the sources of the processed data
  • The existence of an automated decision making process including profiling acc. to art. 22 par. 1 and 4 BDSG and – at least in those cases – expressive information on the involved logic as well as the scope and the intended effects on the affected person by such processing

If personal data are transmitted to a recipients in third countries or an international organization, you have the right to be informed about the appropriate guarantees acc. to art. 46 BDSG referring to data transfer. We offer a copy of the personal data which are subjected to processing. For any further copy you ask for we can demand a reasonable fee on the administrative costs. If there is an electronic request we provide the required information in a common electronic format, unless it isn’t stated otherwise. The right to receive a copy acc. to par. 3 shall not affect the rights and freedoms of others.

4. Right to rectification

You have the right to demand the rectification of incorrect personal data without delay. Taking into account the purpose of the processing you have the right to demand the completion of incomplete personal data, also by means of a supplementary explanation.

5. Right to erase

You have the right to demand from the person in charge to delete personal data without delay. We are committed to delete all personal data without delay, if one of the following reasons is valid:

  • The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  • The data subject revokes their consent the processing was based on acc. to art. 6 par. 1 (a) BDSG or art. 9 par. 2 (a) BDSG and there is no other legal basis for processing
  • The affected person submits contradiction to processing acc. to art 21 par 1 BDSG and the affected person doesn’t provide overriding legitimate reasons, or the affected person contradicts the processing according to art.21 par 2 BDSG.
  • The personal data was processed unlawfully.
  • The deletion of personal data is necessary to fulfil a legal obligation under Union or national law, the responsible person is underlying.
  • The personal data was collected concerning services offered by the information society acc. to art. 8 par. 1 BDSG.
  • If the personal data was made public by the responsible person and if the responsible person is obligated to delete the data according to BDSG, the responsible person will take appropriate action, also of technical kind, taking into account available technology and implementation costs, in order to inform the person in response of data processing that an affected person has demanded the deletion of all links to the information on the person data or of copies or replications of that personal data.

The right of deletion (“right to forgotten”) doesn’t exist, as long as processing is necessary:

  • to exercise the right on freedom of expression and information;
  • for compliance with a legal obligation, which makes the processing necessary according to the law of the European Union or member states which the responsible person is underlying, or for the performance of a task which is in the public interest or in the exercise of official authority, which is attributed t the responsible person;
  • according to considerations of public interest in the field of public health acc. to art. 9 par. 2 lt. h and I as well as art. 9 par. 3 BDSG;
  • for archiving purposes of the public interest, scientific or historical research purposes or for statistical purposes acc.to art. 89 par. 1 BDSG, as long as the right mentioned in par. 1 makes the realization of the aims of this processing expectedly impossible or if it affects it seriously, or
  • for the establishment, exercise or defence of legal claims.


6. Right on restriction of processing

You have the right to demand the restriction of the processing of personal data, f one of the following preconditions is fulfilled:

  • the correctness of the personal data of the affected person is denied, in fact for a period of time which enables the responsible person to check the correctness of the personal data
  • the processing is unlawful and the affected person onjects to the deletion of the personal data and demands the restriction of using personal data instead
  • the responsible person doesn’t need the personal data for processing any longer, however, the affected person requires them to assert, exercise or defend legal claims, or
  • the affected person objects to the data processing acc. to art 21 par. 1 BDSG, as long as it is not clear whether the legitimate reasons of the responsible person prevail over those of the affected person
  • If processing has been restricted in accordance with the above conditions, such personal data shall – apart from its storage – only be processed with the consent of the data subject or to assert, pursue or defend rights or protect the rights of another natural or legal person or for reasons of significant public interest of the Union or of a Member State. In order to exercise the right to limit processing, the affected person may contact us at any time using the contact details provided above.


7. Right to data portability

You have the right to receive the personal data you have provided to us in a structured, common and machine-readable format and you have the right to transfer this data to anther responsible person without hindrance from the responsible person to whom the personal data was provided, as long as:

  • the processing is based on consent acc. to art. 6 par. 1 lt. b BDSG and
  • the processing is done using automated procedures

When exercising the right on data portability acc. to art. 6 par. 1 you have the right to demand that the personal data is transferred directly from one responsible person to another responsible person, as long as this is technically feasible. The exercise of the right to data portability is without prejudice to the right of cancellation (‘the right to be forgotten’). This right is not valid for processing, which is necessary for the performance of a task, which is in the public interest or in the exercise of public authority, which has been entrusted to the controller.

8. Right of objection

  • You have the right to object the processing of your personal data at any time for reasons that arise from your particular situation, according to art. 6 par. 1 lt. e or f BDSG; this also applies to profiling based on these provisions. The responsible person processes the personal data no longer, except he or she can prove compelling, legitimate reasons for processing, which overweight the interests, rights or freedom of the affected person, or the processing serves the assertion, exercise or defence of legal claims.
  • If personal data is processed for reasons of direct mail, you have the right to object the processing of your personal data for the purpose of such advertising at any time; that also applies to profiling, as far as it is associated with such direct mail. If you contradict the processing for direct marketing purposes, the personal data will not be processed for such reasons any longer.
  • In connection with the use of information society’s services you can exercise the right of opposition by using automated procedures regardless of the guideline 2002/58/EG, where technical specifications are used.
  • You have the right to file an objection against the processing of your personal data, which is done for purposes which result from your individual situation, for scientific or historical research purposes acc. to art. 89 par. 1, unless the processing is necessary to fulfil a task of public interest.
  • The right of objection can be exercised at any time by contacting the respective responsible person.

9. Automated decisions on a case-by-case basis, including profiling

You have the right to not being subject to decisions which are solely based on automated processing – including profiling – which unfolds legal effect over you or significantly affects you in a similar way. This only applies, if the decision:

  • required for the conclusion or performance of the contract between te affected person and the responsible person,
  • is legally permitted by the legislation of the EU or member states the responsible person is underlying and such legislation contains appropriate measures to safeguard the rights and freedoms and the legitimate interests of the affected person,
  • happens with the explicit consent of the affected person.
  • The responsible person meets appropriate measures in order to uphold right, freedoms and legitimate interests of the affected person, which includes at least the right to obtain the intervention of a person on the part of the person responsible, to express one's own position and to contest the decision.
  • This right can be exercised by the affected person at any time by addressing himself to the responsible person.


10. Right to complain at a supervisory

You also have, without prejudice to any other administrative or judicial remedy, the right to complain to a supervisory authority, in particular in the member state of your residence, the place of work or the place of the alleged infringement, if the affected person considers that the processing of personal data concerning him/ her violates this regulation.

11. Right to effective judicial remedy

Without prejudice to an available administrative or extrajudicial remedy, including the complaint at a supervisory acc. to art. 77 BDSG, you shall have the right to an effective judicial remedy, if you consider that your right under this regulation have been infringed as a result of the processing of your personal data in reach of this regulation.


Application of Google Analytics

  1. This homepage uses Google Analytics, a web analysis service of Google Inc. (Google). Google Analytics uses so-called ‘cookies’, text files which are saved on your computer which enable an analysis of your individual use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In the event of activation of IP anonymization on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the agreement on the European economic area. Only in exceptional cases the full IP address will be sent to a server in the US and shortened there. Google will use this information in behalf of the operator of this website in order to evaluate your use of the webpage to compile reports on webpage service and internet related services to the website operator.
  2. The IP address provided to Google Analytics by your browser will not be merged with other Google data.
  3. You can prevent cookies from being stored by setting your browser software accordingly: please note that, by doing that, you may not be able to use all the features of this webpage to the fullest extent possible. Additionally you may prevent the collection of the data generated by the cookie and related to the use of the webpage (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available with this link: tools.google.com/dlpage/gaoptout.
  4. This website uses google with the extension ‘anonymizeIP()’. By that IP addresses are processed shortened, a person relatedness can be excluded. As far as the data collected about you has a personal reference, such is excluded and the personal data is deleted immediately.
  5. We use Google Analytics to analyse and regularly improve the use of our website. With this statistics we can improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the US, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. Legal basis for the use of Google Analytics is art. 6 par. 1 s. 1 lt. f BDSG.
  6. Information on the third-party: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User conditions:





7. This website also uses Google for cross-device analysis of visitor traffic, which is conducted through a user-ID. You can disable the cross-device analysis of your usage under ‘my data’, ‘personal information’ in your customer account.