We take the protection of your personal data very seriously and would therefore like to ensure that your privacy is protected when you visit our website and contact our law firm. For this purpose we have created this data protection declaration.
In the following data protection declaration you will find an illustration of how this protection is guaranteed by us and we will explain to you as a user about the type, scope and purpose of the collection and use of personal data by us, the lawyers Borgmann, Sydow, Bothe Partnerschaft mbB, Alboinstr . 36-42, 12103 Berlin, as the responsible provider of this website.
By using our website, you agree to the collection, processing and use of data as described below.
Bernd Borgmann, Olav Sydow, Anja Bothe Partnership mbB
phone 0049 30 2537710
If you have any questions about how we use your personal data, please do not hesitate to contact us. You can contact us via the above email address or via the contact form .
Types of data processed:
– Inventory data (e.g. names, addresses).
– Contact details (e.g. e-mail, telephone numbers).
– Content data (e.g. text input, photographs, videos).
– Data usage (e.g. websites visited, interest in content, access times).
– Meta/communication data (e.g. device information, IP addresses)
Categories of data subjects
Visitors and users of the online offer (hereinafter referred to as “users”).
Purpose of Processing
– Provision of the online offer, its functions and content.
– Answering contact requests and communicating with users.
– Safety measures.
– Reach measurement / marketing.
The legal basis of data protection can be found in the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG). With regard to the terms used, such as “processing” or “person responsible”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR) .
Relevant legal bases
In accordance with Art. 13 GDPR , we will inform you of the legal basis for our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies:
The legal basis for processing to fulfill our services and carry out contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b GDPR.
The legal basis for processing is to comply with our legal obligations Art. 6 para. 1 lit. c GDPR, and the legal basis for processing is to safeguard our legitimate interests Art. 6 para. 1 lit. f GDPR.
In the event that vital interests of the data subject or another natural person require the processing of personal data Art. 6 para. 1 lit. d GDPR as a legal basis.
Cooperation with processors and third parties
If, as part of our processing, we disclose data to other people and companies (contract processors or third parties), transmit it to them or otherwise grant them access to the data, this is only done on the basis of legal permission (e.g. if the data is transmitted to third parties, as to payment service providers, acc. Art. 6 para. 1 lit. b GDPR is required to fulfill the contract), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties to process data on the basis of a so-called “order processing contract”, this is done on the basis of Art. 28 DSGVO .
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or this happens as part of the use of third-party services or disclosure or transmission of data to third parties, this only takes place if it is to fulfill our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the special requirements of Art. 44 et seq. GDPR are met. This means that the processing takes place, for example, on the basis of special guarantees, such as the officially recognized determination of a data protection level corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).
Rights of data subjects
According to Art. 15 GDPR , you have the right to request confirmation as to whether the data in question is being processed and information about this data as well as further information and a copy of the data.
According to Art. 16 GDPR , you have the right to request the completion of the data concerning you or the correction of incorrect data concerning you.
In accordance with Art. 17 GDPR , you have the right to demand that the data in question be deleted immediately, or alternatively, in accordance with Art. 18 GDPR, to demand a restriction of the processing of the data.
You have the right to request that you receive the data that you have provided to us in accordance with Art. 20 GDPR and to request that it be transmitted to other responsible parties.
You also have the right under Art. 77 GDPR to lodge a complaint with the competent supervisory authority.
The data protection supervisory authority responsible for us is:
Berlin Commissioner for Data Protection and Freedom of Information
right of withdrawal
You have the right to revoke your consent Art. 7 para. 3 GDPR revoked with effect for the future.
Right to object
You can object to the future processing of data relating to you at any time in accordance with Art. 21 GDPR . The objection can be made in particular against processing for direct marketing purposes.
deletion of data
The data processed by us will be deleted or their processing restricted in accordance with Art. 17 GDPR and Art. 18 GDPR . Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage requirements. If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.
According to legal requirements in Germany, storage takes place in particular for 6 years in accordance with § 257 Para. 1 HGB (books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with § 147 para. 1 AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant to taxation, etc.).
Provision of contractual services
We process inventory data (e.g. names and addresses as well as contact details of users), contract data (e.g. services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. Art. 6 para. 1 letter b. GDPR. The entries marked as mandatory in online forms are required for the conclusion of the contract.
In addition, we process
– Contract data (e.g. subject of the contract, term, customer category).
– Payment data (e.g. bank details, payment history)
from our customers, prospects and business partners for the purpose of providing contractual services, service and customer care, marketing, advertising and market research.
The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purpose of operating this online offer.
In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data from customers, interested parties and visitors to this online offer on the basis of our legitimate interests in making this online offer available efficiently and securely in accordance with Art. Art. 6 para. 1 lit. f GDPR in conjunction with Art. 28 GDPR (conclusion of an order processing contract).
Access data / server log files
Our website can generally be visited without registration. Data such as the pages called up or the name of the file called up, the date and time are stored on the server for statistical purposes, without this data being directly related to your person.
When you visit our websites, this is always done anonymously. We do not create user profiles and do not assign the IP address transmitted by your computer to the people behind it.
We, or our hosting provider, collect data based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR Data about each access (so-called server log files).
Access data includes:
Name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
We only use the log data for statistical evaluations for the purpose of operation, security and optimization of the offer. However, we reserve the right to subsequently check the log data if there is a justified suspicion of illegal use based on specific indications.
Log file information is stored for a maximum of 9 weeks for security reasons (e.g. to investigate misuse or fraud) and then deleted. Data whose further storage is required for evidence purposes are excluded from deletion until the respective incident has been finally clarified.
When contacting us (e.g. via contact form, e-mail, telephone or via social media), the information provided by the user is used to process the contact request and its processing Art. 6 para. 1 lit. b) GDPR processed. User information can be stored in a customer relationship management system (“CRM system”) or comparable inquiry organization.
We store and use the data you enter in the contact form, such as name, e-mail, subject and message text, for the purpose of individual communication with you. The transmission of messages via the contact form to the web server and from the web server to us is encrypted.
We delete the requests if they are no longer necessary. We review necessity annually; in addition, the statutory archiving obligations apply.
For this website we use Google Analytics, a web analysis service provided by Google Llc. (“Google”). Google Analytics uses so-called “cookies”, ie text files that are stored on your computer and with which an analysis of the use of our website by you is possible. The information generated by the cookie about your use of our website is usually transmitted to a Google server in the USA and stored there.
Google Analytics is used on the basis of our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR)
Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law ( https://www.privacyshield.gov/ ).
Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and internet usage. Pseudonymous user profiles can be created from the processed data.
We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
The IP address transmitted by the user’s browser is not merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; In addition, users can prevent the data generated by the cookie and related to their use of the online offer being collected by Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de .
You can find more information on data use by Google, setting and objection options on the Google websites: https://policies.google.com/technologies/partner-sites?hl=de (“Data use by Google when you use our partners’ websites or apps”), https://policies.google.com/technologies/ads?hl=de (“Use of data for advertising purposes”), https://adssettings.google.de/anonymous (“Manage information that Google uses to show you advertising”).
We use maps from the Google Maps service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection declaration: https://policies.google.com/privacy?hl=de , Opt-Out: https://adssettings.google.com/anonymous .
The communication between your browser and our server is SSL encrypted (see https in the address bar of your browser).
Communication via unencrypted emails is insecure. Use an email provider that uses the transmission protocol “SSL” (“Secure Sockets Layer”) or its successor TLS (“Transport Layer Security” – “Transport Layer Security”). Since we use this procedure via our email provider, you can send encrypted emails to us and receive them from us in this way. However, this is not an end-to-end encryption that offers greater security. Please feel free to contact us by phone (phone number see above) if you would like to contact us by email with end-to-end encryption.