Data Protection Statement
l. Name and contact details of the controller and the data protection officer, responsible for handling all matters related hereto
The current data protection statement applies to protected data processing by:
Partnerschaft von Rechtsanwälten mbB
with registered office in Munich
Residenzstr. 12, 80333 Munich
Telephone: +49 (0)89 29033 - 0
Fax:+49 (0)89 29033 - 100
The data protection officer for SEUFERT RECHTSANWÄLTE may be contacted at the above detailed address under reference "Datenschutzbeauftragter" (Data Protection Officer) as well as under firstname.lastname@example.org.
2. Collection, Retention, and Use of Personal Data
a) When accessing our Website
When accessing our website www.seufert-law.de, the end user's browser automatically sends information to the server of our website. This information is temporarily stored in a so-called Logfile. The following listed information is collected without any action on the data subject's part and stored in the server's log for three days, after which it is automatically deleted:
• IP-address of the enquiring provider;
• date and time of the access;
• accessed domain;
• access status/status code;
• transferred data volume;
• information regarding the browser type and version used, as well as regarding the user's operating system;
• websites via which the user's system has accessed our website;
• websites accessed by the user's system when present on our website.
The collecting of the aforementioned data is necessary for technical reasons, specifically, to ensure that connections can be established smoothly, to allow easy use of the website and to guarantee system security and stability. Data processing activities thus occur in accordance with the stipulations of the General Data Protection Regulation (GDPR), specifically in line with its Article 6 (1) (f) GDPR. Our legitimate interest follows from the above detailed purpose.
The collected data shall in no case be used to draw conclusions regarding your identity.
You have the possibility of contacting us under the following e-mail address: email@example.com. In such a case, all personal data transferred via your e-mail will be stored and processed in order to answer your e-mailed request. By voluntarily sending your data you are automatically giving consent to the processing of said data as far as this is necessary in order to comply with your request. All data will be deleted at a time when it is considered that the request in question has been conclusively dealt with. Such data processing occurs in line with the stipulations of GDPR, including its Article 6 (1) (a).
Cookies store information produced in connection with the specific user device. This, however, does not mean that we are able to find out your identity.
a) Transient Cookies
Our Website uses so-called session cookies. The „PHPSESSID" Cookie assigns the user's device an anonymised ID (session ID) for the duration of the user's visit to our website in order to pool several interrelated requests with the server and to be able to assign them correctly within one session. This type of cookie is necessary to ensure the smooth operation of our website and to make the visit to our website as user-friendly as possible for all users. The session cookie is automatically deleted when the user closes our browser.
b) Persistent Cookies
All data processed via cookies are necessary to safeguard our legitimate interest in line with Article 6 (1) (f) GDPR.
Most browsers accept cookies automatically. However, you may configure your browser settings to opt out from cookies being stored in your computer or to ensure that a message is generated before any new cookie is stored. A full exclusion of cookies may, however, result in restricted access to all functions of our website online content.
4. Google Web Fonts, Libraries and Frameworks
We use Google Web Fonts in our website to ensure a uniform display and to likewise enable us to integrate the font Opens Sans + Abel used on our website.
When accessing our website, your browser will download the necessary Google Font onto your browser cache in order to be able to display texts and fonts correctly. By so doing, a connection is built to a Google server, which is, as a rule, located in the USA, and via which Google gains knowledge of the data included in paragraph 2.a) above as well as on all subpages visited while on our website.
Further information regarding the aim and scope of data collection and its processing by Google can be found under Google's Privacy Statement, which likewise includes further information regarding your privacy rights and available settings for the protection of your private sphere: https://www.google.de/intl/de/policies/privacy, https://www.google.com/webfonts, https://developers.google.com/fonts/faq?hl=de-DE&csw=1. Google is certified under the EU-US Privacy Shield framework: https://www.privacyshield.gov/EU-US-Framework.
The use of Google Web Fonts, Libraries and Frameworks is necessary to safeguard our legitimate interest in line with Article 6 (1) (f) GDPR and to allow a uniform display in and ease of use of our website.
5. Transfer of Data
A further transfer of your personal data to third parties shall only occur if you have given your explicit consent in this sense, in line with Article 6 (1) (a) GDPR, if that is necessary in line with Article 6 (1) (f) GDPR for the assertion, exercise or defence of legal claims. Further, the transfer of personal data may likewise only occur when there are no grounds to suppose that an overriding legitimate interest exists that would obstruct said disclosure in case of the existence of an obligation in line with Article 6 (1) (c) GDPR or that such disclosure would be permissible in line with Article 6 (1) (c) GDPR to meet our contractual obligations towards you.
Furthermore, we commission the services of external providers for web hosting, e-mail correspondence and IT maintenance. Our external service providers shall not transfer your personal data to any third party.
6. Rights of the Data Subject
a) Right of Access by the Data Subject, Article 15 GDPR
The data subject shall have the right to obtain confirmation as to whether or not personal data concerning him or her are being processed. Should this be the case, the data subject shall have the right to gain access to the personal data and the following information: the purpose of processing; the categories of personal data concerned; the recipients or categories of recipient to whom the personal data have been or will be disclosed; the envisaged period for which the personal data will be stored; the existence of the right to request the rectification or erasure of personal data or restriction of processing of personal data or the right to lodge a complaint with a supervisory authority; the source of the data collected as well as the existence of automated decision-making, including profiling and, as the case may be, meaningful information about the details thereon.
b) Right to Rectification, Article 16 GDPR
The data subject shall have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning him or her stored by us.
c) Right to Erasure ("right to be forgotten"), Article 17 GDPR
The data subject shall have the right to obtain from us the erasure of personal data concerning him or her stored by us without undue delay, insofar as said data processing is not necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.
d) Right to Restriction of Processing, Article 18 GDPR
The data subject shall have the right to obtain a restriction of processing of his/her personal data where the accuracy of the personal data is contested by the data subject, for a period enabling us to verify the accuracy of the personal data, when processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead or when we no longer need the personal data for the purposes of the processing, but said data are nevertheless required by the data subject for the establishment, exercise or defence of legal claims or when the data subject has objected to processing pursuant to Article 21 (1) GDPR.
e) Right to Data Portability, Article 20 GDPR
The data subject shall have the right to receive the personal data concerning him or her in a structured, commonly used and machine-readable format; he/she shall also have the right to request the transmission of said data to a third party.
f) Right to Withdrawal of Consent, Article 7 (3) GDPR
The data subject shall have the right to withdraw his or her consent at any time with effect for the future. For this purpose, please send an e-mail to firstname.lastname@example.org. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
g) Right to Lodge a Complaint with a Supervisory Authority, Article 77 GDPR
The data subject shall have the right to lodge a complaint against our processing of his/her personal data with a supervisory authority.
h) Information on your Right of Objection
Insofar as we process your personal data in line with legitimate interests as set out in Article 6 (1) (f) GDPR, you have the right at any time to file an objection against the processing of your personal data in line with Article 21 GDPR.
Should you wish to make use of the right to file an objection, please send an e-mail to the address: email@example.com. We shall examine the admissibility of the objection filed and shall abstain from any further processing of your personal data, unless we can demonstrate that compelling reasons for the continued processing exist that outweigh your interests, rights and freedoms or if the processing serves the purpose of asserting, exercising or defending legal claims.
7. Data Privacy and Security
We use state of the art HTTPS encryption. We likewise make use of the appropriate technical and organisational safety measures to protect your personal data against accidental or intentional manipulation, total or partial loss, destruction or against unauthorised access by third parties. Our safety measures are duly updated at all times to keep pace and keep up standards that comply with technological advances.
8. Validity and Modifications to this Data Protection Statement
The current data protection statement enters into force in May 2018 and is currently valid in its present form.
The current data protection statement may have to be modified due to changes in our website or to altered mandatory statutory requirements or requirements of the authorities. A valid version of the current data protection statement may be accessed and printed at all times, under https://www.seufert-law.de/datenschutz.