Data Protection

Data protection statement

Personal data are information on the personal or factual situation of a specific or identifiable natural person. This for example includes the real name, address, telephone number and date of birth, but also all other data that can relate to an identifiable person.
Given that personal data enjoy special protection, we collect them only to the extent required for providing our website and for rendering our services. In the following we describe what kind of personal information we collect during your visit on our website, and how we use such data.

Provision of the website and creation of Logfiles

Upon every use of our website, our system automatically records data and information of the computer system of the user’s computer. The following data are hereby collected:

Scope of data processing

Upon every use of our website, our system automatically records data and information of the computer system of the user’s computer. The following data are thereby collected:

  1. Information on the browser type and version used
  2. The operating system of the user’s device
  3. The Internet service provider of the user’s device
  4. The IP address of the user’s device
  5. Date and time of access
  6. Websites from which the user’s system accesses our website (referrer tracking)
  7. Websites that are accessed from the user’s system via our website (exit link tracking)

These data are stored in the Logfiles of our system. These data are not stored together with any personal data of a concrete user, so that no identification of individual website users takes place.

Legal basis for the processing of personal data

Art. 6 (1) lit f. GDPR. Our legitimate interest is to ensure that the purpose described below is achieved.

Purpose of data processing

The logging serves to achieve compatibility of our website, if possible for all visitors, to combat abuse and for troubleshooting. This requires to logging the technical data of the user’s computer to be able to respond as early as possible to any display errors, attacks on our IT systems and/or errors in the functionality of our website. Furthermore, the data serve to optimise the website and to generally safeguard the security of our IT systems.

Duration of storage

The aforementioned technical data are deleted as soon as they are no longer needed for ensuring the compatibility of the website for all visitors, but at the latest 3 months after access to our website.

Special functions of our website

Our website offers you various functions which upon use by you collect, process and store your personal data. In the following we explain what happens to your data:

Contact form

  • Scope of the processing of personal data
    The data you enter on our contact form.
  • Legal basis for the processing of personal data
    Art. 6 (1) lit. a GDPR.
  • Purpose of data processing
    The data collected via our contact form(s) will be used only for processing the concrete request submitted with the relevant contact form.
  • Duration of storage
    After your request has been processed, the collected data will be promptly deleted, except in case of statutory retention periods.
  • Objection and removal options
    The objection and removal options depend on the general provisions on the right to object and claim for deletion as described below in this data protection statement.

Statistical analysis of the visits to this website – webtracker

Upon access of this website or individual files on the website, we collect, process and store the following data: IP address, website from which the file was accessed, name of the file, data and time of access, transferred data volume and information about successful access (so- called weblog). We exclusively use these access data in a non-personalized form for consistently improving our Internet offer and for statistical purposes.

Integration of external web services and processing of data outside of the EU

We use active Java Script contents of external service providers, so-called web services, on our website. When you access our website, these external service providers may obtain personal data on your visit to our website. In this context, a processing of data outside of the EU can occur. You can prevent this by installing a Java Script blocker such as, for example, the browser plug-in “NoScript” (www.noscript.net) or by deactivating Java Script in your browser. This can cause restrictions in the functionality of websites you visit.
We use the following external web services:

Google Maps

Our website uses Google Maps API from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google USA”), to display geographical information visually. While using Google Maps, Google also collects, processes and uses data about the use of the map functions by visitors.

Before you use Google Maps, you will be asked for your consent (“I AGREE” button). Without your consent, Google Maps will not be used on you.

To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a Google server in the USA and stored there. We have no influence on this data transmission. If Google Maps is activated, Google may use Google Web Fonts for the purpose of uniform display of fonts. When calling up Google Maps, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

You can find more information about data processing by Google in the Google privacy policy (see below). There you can also change your personal privacy settings in the Privacy Center.

Privacy policy of Google:
https://policies.google.com/privacy?hl=en

myfonts.com (Monotype)

We use the services of the site myfonts.com. These are fonts that are loaded into your browser when you visit our website in order to ensure a uniform typeface when displaying the website. The provider is Monotype Imaging Holdings Inc, 600 Unicorn Park Drive, Woburn, Massachusetts 01801, USA.

In order to verify license compliance and the number of monthly page views, MyFonts transfers your IP address together with the URL of our website and our contractual data to its servers in the USA. According to Monotype, your IP address is anonymised immediately after transmission so that no further reference to a person can be made (anonymisation).

Details can be found in Monotype’s privacy policy:
https://www.monotype.com/legal/privacy-policy/web-font-tracking-privacy-policy

Notification of the use of cookies

  • Scope of the processing of personal data
    On various pages we use cookies to enable the use of specific functions of our website. The so-called cookies are small text files which your browser can store on your computer. These text files contain a characteristic sequence of signs which enable a clear identification of the browser upon repeated access to our website. The process of storing a cookie file is also called “setting a cookie”.
  • Legal basis for the processing of personal data
    Art. 6 (1) lit. f GDPR. Our justified interest lies in maintaining full functionality of our website, in enhancing the user-friendliness of our website and in enabling an individual customer approach. We can identify individual website users by means of the cookie technology only if the website user has beforehand provided us with the corresponding personal data on the basis of separate consent.
  • Purpose of the data processing
    Our website sets the cookies to maintain full functionality of our website and to improve user-friendliness. Furthermore, the cookie technology enables us to recognize individual users by pseudonyms, e.g. any individual ID, so that we can offer more customized services.
  • Duration of storage
    Our cookies are stored until deletion in your browser or, if it is a session cookie, until the session has expired.
  • Objection and removal option
    You can set your browser as you wish so that the setting of cookies is generally prevented, that you are only informed thereof, that you decide on accepting cookies on a case to case basis, or that you generally accept cookies. Cookies can be used for different purposes, e.g. to recognize that your PC has already been connected to our web offer (permanent cookies) or to store the offers last visited (session cookies). We use cookies to make our website more user friendly. To use our comfort functions, we recommend permitting the acceptance of cookies for our website.
    The objection and removal options otherwise depend on the general provisions on the right to object and claim for deletion as described below in this data protection statement.

Data security and data protection, communication via email

Upon collection, storage and processing, your personal data are protected by technical and organisational measures in such manner that they are not accessible for third parties. In case of unencrypted communication via email, we cannot guarantee complete data security during transmission to our IT systems so that we recommend either encrypted communication or postal service for information that requires a high level of secrecy.

Automatic email archiving

  • Scope of the processing of personal data
    We expressly point out to you that our mail system uses an automated archiving procedure. All incoming and outgoing emails are thereby digitally archived in an audit-proof manner.
  • Legal basis for the processing of personal data
    Art. 6 (1) lit. f GDPR. Our legitimate interest is the compliance with the requirements of tax law and commercial law (e.g. Sections 146, 147 German Tax Code).
  • Purpose of data processing
    The purpose of archiving is the compliance with the requirements of tax law and commercial law (e.g. Sections 146, 147 German Tax Code).
  • Duration of storage
    Our mail communication is stored until the expiry of tax law and commercial law record retention obligations. The retention period can be up to 10 years.
  • Objection and removal options
    Exempt from archiving are the emails addressed to us. If you have any questions regarding our mail archiving system, please contact our data protection officer. We furthermore point out that we exclusively consider application documents in pdf-format. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security system and are not delivered. We do not consider job applications sent as word files and other file formats; these are deleted without being read. Please note that any job application documents sent by email without encryption can possibly be opened by third parties before arriving at our IT systems. We presume that our response to any unencrypted job application email may also be unencrypted. If you wish us to proceed otherwise, please state that in your job application mail.

Rights of data subjects

You are entitled

  • according to Art. 15 GDPR to obtain information on your personal data processed by Kanzlei Traut. In particular, you can request information on the purposes of the processing, the categories of personal data concerned, the categories of recipients to whom the personal data have been or will be disclosed, the envisaged period for which the personal data will be stored, the existence of the right to request rectification, erasure, restriction of processing or objection, the right to lodge a complaint, the source of your data if not collected by us, and the existence of automated decision making, including profiling and if applicable meaningful information on details;
  • according to Art. 16 GDPR to request prompt rectification of incorrect or incomplete personal data stored by Kanzlei Traut;
  • according to Art. 17 GDPR to request the erasure of the personal data stored by Kanzlei Traut, unless the processing is required for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the assertion, exercise or defence of legal claims;
  • according to Art. 18 GDPR to request the restriction of processing of your personal data, insofar as 1) you contest the accuracy of the personal data, 2) the processing is unlawful, 3) you oppose deletion, 4) Kanzlei Traut no longer needs the data, and 5) you require them to assert, exercise or defend legal claims, or you objected to the processing according to Art. 21 GDPR ;
  • according to Art. 20 GDPR to request to receive your personal data provided to Kanzlei Traut, in a structured, commonly used and machine-readable format or request transmission of those data to another controller;
  • according to Art. 7 (3) GDPR to withdraw at any time your consent given to Kanzlei Traut. This means that Kanzlei Traut is in the future no longer allowed to process the data based on such consent; and
  • according to Art. 77 GDPR to lodge a complaint with a supervisory authority. Usually, you can for this purpose contact the supervisory authority at your usual place of abode or workplace, or at the seat of the law firm.

To claim your rights as a data subject, it will suffice to send an email to inf o@kanz lei-traut.de or to contact any staff member of the law firm.

Withdrawal of consent – information on data and change requests – deletion and blocking of data

Kanzlei Traut
Taunusstraße 7
65183 Wiesbaden
Germany

Phone: +49 (0)611 335 455 10
Fax: +49 (0)611 335 455 20
Email: inf o@kanz lei-traut.de

Right to lodge a complaint with the regulatory authority according to Art. 77 (1) GDPR

If you suspect that we unlawfully process your data you can of course at any time clarify the issue by court procedure. Irrespective thereof, you can also contact a regulatory authority. You are entitled to lodge the complaint in the EU member state of your place of residency, your workplace, or at the place of the suspected violation, i.e. you can select the regulatory authority you wish to contact at one of the aforementioned locations. The regulatory authority where the complaint was lodged will then inform you about the status and results of your submission, including the option of a judicial remedy according to Art. 78 GDPR.

Data Controller within the meaning of Art. 4 (7) GDPR

The data controller within the meaning of the General Data Protection regulation and other national data protection laws of the member states and other data protection regulations is:

Kanzlei Traut
Taunusstraße 7
65183 Wiesbaden
Germany

Phone: +49 (0)611 335 455 10
Fax: +49 (0)611 335 455 20
Email: inf o@kanz lei-traut.de

Represented by: Herrn Marcus Traut