DATA PROTECTION

GDPR, BDSG

& CO.


I. RESPONSIBILITY FOR THE WEBSITE ACCORDING TO THE GDPR

Frommer Attorneys at Law PartG mbB
Beethovenstraße 12
80336 Munich
T +49 89 520 572 0
M datenschutz@frommer.legal 
 

II. ACCESSING OUR WEBSITE

When you visit our website frommer.legal, the browser used on your terminal device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

  • IP address,
  • Date and time of access,
  • Name and URL of the website/file accessed,
  • website from which the access was made (referrer URL),
  • browser used and, if applicable, the operating system of your computer.
     

The aforementioned data is processed by us for the following purposes:

  • Ensuring a smooth connection setup of the website,
  • Ensuring a comfortable use of our website as well as
  • Evaluation of system security and stability.
     

The legal basis for the above data processing is Art. 6 para. 1 p. 1 lit. f) GDPR. Our legitimate interest follows from the purposes for data collection and processing listed above.

The aforementioned personal data is stored and processed by our web hoster, who may access it as part of maintenance activities. A third country transfer does not take place.

We store your personal data for only as long as is necessary to achieve the respective purpose, and usually for no longer than 7 days. After the respective purpose has ceased to exist or this period has expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.

There is neither profiling nor automated decision-making.

The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address in particular, the functionality of our website cannot be guaranteed.

With regard to your right to object under Art. 21 GDPR, please refer to Section VIII of our data protection information.

III. CONTACTING US

In addition to the purely informational use of our website, we offer you various ways of contacting us and obtaining information about our services. For this purpose, you will usually be required to provide additional personal data: 

CONTACT FORM

If you send us an inquiry via our contact form, the information and personal data you provide will be processed exclusively for the purpose of handling and responding to your respective inquiry.

For security reasons and to protect the transmission of confidential content that you send to us as website operator, our website uses SSL or TLS encryption. You can recognize this by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

E-MAIL

If you contact us via any e-mail address of our law firm, including the personalized e-mail addresses of our employees, the information and personal data you provide will be processed exclusively for the purpose of handling and responding to your respective inquiry.

Specifically, for the email addresses listed on our website:

  • When contacting us via anfrage@frommer.legal, we will process the data you have provided for correspondence purposes as well as for initiating and establishing a mandate agreement with you. 
  • If you contact us via web@frommer.legal, we will process the data you provide for correspondence with you and for processing your general inquiry.
  • If you contact us via post@frommer.legal, we will process the data you have provided for the purpose of corresponding with you, clarifying the facts of your case, taking into account your personal and financial circumstances, and further asserting and exercising legal claims on behalf of our client.
  • If you contact us via presse@frommer.legal, we will process the data you provide for correspondence with you as well as for processing your respective press inquiry.

We would like to point out that when transmitting information via unencrypted e-mail, there is a fundamental risk that the data may be intercepted and (co-)read by third parties. If you wish to communicate with us via encrypted e-mail, you can download and install our S/MIME certificates for the respective e-mail address(es) at frommer.legal/contact.

TELEPHONE/FAX

The same applies if you contact us by telephone or fax via the numbers provided on our website.

The processing of your personal data entered or communicated for contacting us is carried out either for the implementation of pre-contractual measures or for the fulfillment of an already existing mandate contract with you or, in the case of any other inquiry, on the basis of our legitimate interest in successful communication with you. The legal basis for our processing is Art. 6 para. 1 p. 1 lit. b) or f) GDPR

The above personal data is stored and/or processed by our Web Hosting Service. A third country transfer does not take place.

We generally store the personal data that you enter and/or communicate in the course of contacting us for a maximum period of six months after your contact has ended; contact is ended when it can be inferred from the circumstances that your relevant inquiry has been conclusively clarified. A longer storage period will only take place if your contact is made in connection with an already existing mandate contract, leads to a mandate contract with us or is required by law. In these cases, we store the personal data for as long as is necessary to fulfill the contract with you or is required by law.

There is neither profiling nor automated decision-making.

The provision of your personal data in the context of a contact request is voluntary. However, we would like to point out that we may be unable to process your request if you do not provide us with the necessary information.

With regard to your right to object under Art. 21 GDPR, please refer to Section VIII of our data protection information.

IV. REACH MEASUREMENT

1. MATOMO

With the help of the analysis tool Matomo, we evaluate your user behaviour locally on our server. Matomo does not collect your data itself, but uses the data base of our web servers. Before Matomo saves an inquiring IP address in the log file, it is anonymised. This ensures that no conclusions can be drawn about individual persons. 

The legal basis for the processing is Art. 6 I  lit. f DSGVO. Our legitimate interest is to measure the reach of our website and to use the resulting information to adapt it.

This provision of data is neither legally nor contractually required. With regard to your right of objection, please read the information under VIII. 

2. SALESVIEWER TECHNOLOGY

On this website, data is collected and stored for marketing, market research and optimisation purposes using the SalesViewer technology of SalesViewer GmbH on the basis of the legitimate interests of the website operator (Art. 6 para.1 lit.f DSGVO).

For this purpose, a javascript-based code is used to collect company-related data and the corresponding use. The data collected with this technology is encrypted via a non-reversible one-way function (so-called hashing). The data is immediately pseudonymised and not used to personally identify any visitor to this website.
The data stored as part of Salesviewer will be deleted once no longer required for its intended purpose and there are no legal obligations to retain the data.

The provision of data is neither legally nor contractually required.

You can object to the collection and storage of data at any time with effect for the future by clicking on this link in order to prevent the collection by SalesViewer® within this website in the future. This will place an opt-out cookie for this website on your device. If you delete your cookies in this browser, you must click this link again.


V. SOCIAL MEDIA PLATFORMS

1. RESPONSIBLE PARTY IN ACCORDANCE WITH THE GDPR

We have internet presences on the social media platforms of the following providers:

  • LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
  • XING SE, Dammtorstraße 29-32, 20354 Hamburg, Germany

Insofar as your personal data is processed by one of these social media providers when you access our websites there, the social media provider is the responsible party for data processing in accordance with the GDPR. For the assertion of your data subject rights, we therefore note that these can be asserted most effectively with the respective provider, as only this provider has access to your processed data.

How you can contact the data protection officers of the aforementioned socia media providers is described under the following links:

LinkedIn Ireland Unlimited Company: https://www.linkedin.com/legal/privacy-policy
XING SE: https://privacy.xing.com/en/privacy-policy

Insofar as your data transmitted via one of the aforementioned social media platforms is processed by us ourselves, we are also the data controller within the meaning of the GDPR. 

With regard to our contact details, please refer to section I. of our data protection notice. If you have any questions about data processing in connection with social media platforms carried out by us as the data controller, you can also contact our data protection officer directly; you will find his contact details under Section IX.

2. PROCESSING OF YOUR PERSONAL DATA ON SOCIAL MEDIA PLATFORMS

2.1 ACCESSING SOCIAL MEDIA PLATFORMS

If you call up one of our websites on the aforementioned social media platforms via a link on our website, your personal data will only be collected and processed by the respective social media platform when you execute the respective link. No prior data transfer takes place.

As a rule, your personal data is processed on the aforementioned social media platforms for market research and advertising purposes. For this purpose, a cookie is set in your browser, which enables the respective social media provider to recognize you when you call up the social media platform again. Based on the collected data, usage profiles can be created, which are used to display advertisements within and outside the social media platform that presumably correspond to your interests. Furthermore, usage profiles may also store data regardless of the devices you use. This is regularly the case when you are logged in as a member of the respective social media platform.

Please note that by using the aforementioned social media platforms, data processing may take place outside the EU and the European Economic Area, so that the European level of data protection is not necessarily guaranteed.

Furthermore, please note that we have no influence on the processing of your personal data by the respective social media provider nor on the storage period of your data. For more information on data processing by the respective social media provider, please check the privacy policy of the respective provider:

LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy
Opt-Out: linkedin.com/psettings/guest-controls/retargeting-opt-out

XING privacy policy/opt-out:  https://privacy.xing.com/en/privacy-policy

2.2 CONTACTING US VIA A SOCIAL MEDIA PLATFORM

We will collect your personal data if you contact us via one of the aforementioned social media platforms, e.g. via a messenger service. The data collected depends largely on the information you provided in the context of the respective contact. 

The processing of your personal data provided for contacting us is carried out either for the implementation of pre-contractual measures or for the fulfillment of an already existing contract with you or, in the case of any other inquiry, on the basis of our legitimate interest in successful communication with you. The legal basis for our processing is Art. 6 para. 1 p. 1 lit. b) or f) GDPR. 

It may be possible that we store the personal data you provide in cloud-based CRM systems and process it there. In this case, a third party transfer does not take place. Furthermore, we will never pass on your personal data to third parties without your prior consent.

Generally, we store the personal data that you provide in the course of contacting us for a maximum of six months after your contact has been terminated; the contact is terminated when it can be concluded from the circumstances that your relevant enquiry has been conclusively resolved. Longer storage only takes place if contact is made in connection with an existing contract, leads to a contract with us (e.g. employment relationship) or is required by law. In these cases, we store the personal data for as long as this is necessary to fulfil the contract with you or is required by law.

No automated decision-making is performed.

Provision of your personal data in the course of contacting us is voluntary. However, we should note we may not be able to process your request if you do not provide us with the necessary information.

With regard to your rights as a data subject and your right to object, please refer to Sections VII. and VIII. of our data protection information.

VI. INTERNAL RECIPIENTS

Within our company, only the employees responsible for the above-mentioned purposes have access to your data.
 

VII. DATA SUBJECT RIGHTS

You have the right:

  • In accordance with Art. 15 GDPR, to request information about your personal data processed by us;
  • pursuant to Art. 16 GDPR, to request without undue delay the correction of inaccurate or the completion of your personal data stored by us;
  • pursuant to Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defense of legal claims;
  • pursuant to Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
  • revoke any consent you have given us at any time in accordance with Art. 7 (3) GDPR. This has the consequence that we may no longer continue the data processing based on these consents for the future. An informal e-mail to datenschutz@frommer.legal is sufficient for your revocation;
  • complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose. A list of contact options for the supervisory authorities for the non-public sector can be found at: bfdi.bund.de/DE/Infothek/Anschriften_Links/­anschriften_links-node.html
     

VIII. RIGHT OF OBJECTION

Insofar as your personal data are processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f) GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, insofar as there are grounds for doing so that arise from your particular situation. 

If you wish to exercise your right of objection, an informal e-mail to datenschutz@frommer.legal will suffice.
 

IX. QUESTIONS TO THE DATA PROTECTION OFFICER

If you have any questions regarding data protection, please contact our data protection officer directly:

activeMind AG 
z. For the attention of the data protection officer Frommer Rechtsanwalts PartG mbB
Potsdamer Straße 3 
80802 Munich
M dsb@frommer.legal

CHANGES TO OUR DATA PROTECTION INFORMATION

We reserve the right to adapt this data protection information at any time so that it always complies with the current legal requirements and/or to describe changes or additions to our services, e.g. when introducing new services. The current data protection information will then apply to your next visit.