Data Protection

This privacy policy informs you how Brockhaus & Kollegen Rechtsanwaltsgesellschaft mbH, Elisabethstraße 2, 50226 Frechen (hereinafter: “B&K”) handles your personal data (hereinafter: “Data”) and serves to provide you with information, in particular in accordance with Art. 12 ff. of the General Data Protection Regulation (hereinafter: “GDPR”) regarding the acquisition and use of your data in connection with your visit to our website www.brockhaus-kollegen.com (hereinafter: “website”) and the use of the services of B&K available on it (hereinafter: “Services”).
When processing your data, we naturally observe the applicable data protection regulations, in particular the provisions of the GDPR and the Federal Data Protection Act.

I. Contact details of the data protection officer

Brockhaus & Kollegen Rechtsanwaltsgesellschaft mbH
Elisabethstraße 2
D- 50226 Frechen
Tel.: +49 (0) 2234 – 99 68 608

Email: info@brockhaus-kollegen.com

II. Personal data

Personal data are so-called individual details about personal or factual circumstances of a certain or determinable natural person. As such, your personal data includes all data that contains information about your personal or factual circumstances and allows identification of you personally, such as your name, your address, your telephone number or your email address.

III. Purposes and legal bases of data processing

  1. Use of the website for information purposes

You can visit our website without sharing any information about yourself. If you use our website for information purposes only, i.e. you do not send us any information about yourself, we do not process any personal data, with the exception of the data transmitted by your browser to enable you to visit the website.
For the purpose of technically providing the website, we are required to process certain automatically transmitted information from you, in order for your browser to display our website and so that you can use the website. This information is automatically collected each time our website is accessed and stored in our server log files. This information refers to the computer system of the accessing computer. The following information is processed at this time:

Host,
IP address of the user,
(if applicable) also name,
Date and time of access,
Method of access (Get/Post),
Request,
Protocol (e.g. http),
Status (e.g. error messages),
Data volume accessed,
Referrer,
Browser and operating system of the user.

Furthermore, we use cookies to make our website available for your use. Cookies are text files that are stored on your computer system in the internet browser or by the internet browser when you access a website. A cookie contains a characteristic string that enables the unique identification of the browser when the website is accessed again. We use these cookies exclusively to make our website and its technical functions available to you. Some of the functions of our website cannot be offered without the use of cookies. The following information is stored in the cookies and transmitted to us:

ID of a backend user who has logged in, for identification by the content management system
PHP session ID of a backend user who has logged in, for identification by the content management system
Confirmation of the cookie information by clicking on “OK”

Your information that we collect by means of the cookies described above is not used by us to create user profiles or evaluate your surfing behaviour.
We process your personal data for the technical provision of our website on the basis of the following legal principles:

For contract performance or for the implementation of pre-contractual measures in accordance with Art. 6 Section 1 lit. b GDPR, insofar as you visit our website to obtain information about our products and our events; and

To safeguard our legitimate interests in accordance with Art. 6 Section 1 lit. f GDPR, in order to make the website technically available to you. Our legitimate interest lies in providing you with an attractive, technically functioning and user-friendly website and in implementing measures to protect our website against cyber risks and prevent cyber risks for third parties arising from our website.

  1. Active use of the website

In addition to using our website for purely informative purposes, you can also actively use our website to get in touch with us. In addition to the aforementioned processing of your personal data for purely informational purposes, we also process other personal data about you that we require in order to deal with and respond to your inquiry.

Contact request

In order to process and respond to your inquiries submitted to us via the contact form, we process the personal data you provide us with in this context. This always includes your name and email address in order that we can reply to you, as well as any other information you send to us within the framework of your message.
We process your personal data in order to answer user inquiries on the basis of the following legal principles:

To safeguard our legitimate interests in accordance with Art. 6 Section 1 lit. f GDPR; our legitimate interest lies in responding correctly to inquiries.

IV. Links

Some areas of our website contain links to third-party websites, for example links to services such as LinkedIn and Xing. After clicking on the integrated graphic, you will be redirected to the web page of the respective provider, i.e. only then will user information be transferred to the respective provider. If you send information to or via such third-party sites, you should review the privacy policies of these sites before providing them with personally identifiable information. Please refer to the respective privacy policies of these providers for information on how your data is handled when using their websites. We are not responsible for their operations, including data handling.

V. Categories of recipients

Initially, only our employees acquire knowledge of your personal data. We also share your personal data, to the extent permitted or required by law, with other recipients who perform services for us in connection with our website. We limit the disclosure of your personal data to the necessary minimum. In some cases our service providers receive your personal data as processors, whereby they are strictly bound by our instructions when handling your personal data. In some cases, the recipients act independently with your data that we transmit to them.
In the following, we detail the categories of recipients of your personal data:
• IT service providers, for the administration and hosting of our website,

  • Logistics companies within the framework of sending information.

VI. Duration of storage

  1. Use of the website for information purposes

When using our website for purely informational purposes, we store your personal data on our servers exclusively for the duration of your visit to our website. When you leave our website, your personal data are deleted immediately.
Cookies installed by us are generally also deleted after you leave our website. However, this does not apply to ID-cookies of registered backend users. These are stored for a period of one year. You also have the option of deleting installed cookies yourself at any time.

  1. Active use of the website

If you actively use our website, we initially store your personal data until we have responded to your inquiry. Provided that you have granted your consent, until the revocation of this consent.
In addition, we then store your personal data until the expiry of the limitation period for any legal claims arising from the relationship with you, in order to use this as evidence if necessary. The limitation period is usually between 12 and 36 months, although it can also be up to 30 years.
With the commencement of the statute of limitations, we delete your personal data unless there is a legal obligation to retain it, for example, in accordance with the German Commercial Code (§§ 238, 257 section 4 HGB) or due to the German Fiscal Code (§ 147 section 3, 4 AO). These retention obligations can range from two to ten years.

VII. Your rights as a data subject

According to the legal provisions, as a data subject you have the following rights, which you can assert against us:

Right to information:
You are entitled at any time, in accordance with Art. 15 of the GDPR, to request confirmation from us as to whether we are processing personal data relating to you; if this is the case, you are also entitled, in accordance with Art. 15 of the GDPR, to obtain information about this personal data and certain other information (including the processing purposes, categories of personal data, categories of recipients, planned storage period, the origin of the data, the use of automated decision making and, in the case of transfer to third countries, the appropriate guarantees), as well as a copy of your data.

The right to correction:
In accordance with Art. 16 of the GDPR, you are entitled to demand that we correct the personal data stored about you if it is incorrect or inaccurate.

The right to deletion:
You are entitled, in accordance with the conditions of Art. 17 of the GDPR, to demand that we immediately delete personal data relating to you. The right to deletion does not apply, for example, if processing the personal data is necessary in order to (i) exercise the right to freedom of expression and information, (ii) fulfil a legal obligation incumbent on us (e.g. statutory retention obligations) or (iii) assert, exercise or defend legal claims.

Right to restriction of processing:
You are entitled, in accordance with the conditions of Art. 18 of the GDPR, to demand that we restrict the processing of your personal data.

Right to data portability:
You are entitled, in accordance with the conditions of Art. 20 of the GDPR, to demand that we provide you with the personal data relating to you, which you have provided to us, in a structured, common and machine-readable format.

Right of cancellation:
You have the right to revoke your consent to the processing of your personal data at any time with effect for the future.

Right of objection:
You are entitled to object to the processing of your personal data under the conditions of Art. 21 of the GDPR, whereby we are obligated to stop processing your personal data. The right of objection exists only within the limits set out in Art. 21 of the GDPR. Furthermore, our interests may conflict with a termination of the processing, whereby we are entitled to process your personal data despite your objection. (See also point IX).

Right of appeal to a regulatory authority:
You are entitled, in accordance with the conditions of Art. 77 of the GDPR, to lodge an appeal with a regulatory authority, in particular in the Member State in which you are resident, your place of work or the place of the suspected infringement, if you consider that the processing of personal data concerning you is in breach of the GDPR. The right of appeal is without prejudice to any other administrative or judicial remedy.

The regulatory authority responsible for us is:
The Federal Commissioner for Data Protection and Freedom of Information for North Rhine-Westphalia

Kavalleriestr. 2-4
40213 Düsseldorf
Telephone: 0211/38424-0
Fax: 0211/38424-10
Email: poststelle@ldi.nrw.de

However, we would always recommend directing your appeal to our data protection officer in the first instance.

Your requests with regards to exercising your rights should ideally be made in writing to the address cited above, or directly to our data protection officer.

VIII. Scope of your obligations to provide data

You are not obliged to provide us with your personal data as a matter of principle. However, if you refrain from doing so, we will not be able to respond to your inquiries. Personal data that we require for the aforementioned processing purposes are marked as such.

IX. Information about your right of objection, article 21 GDPR

You have the right to register an objection to the processing of your data at any time, arising due to Art. 6 Section 1 f GDPR (data processing on the basis of a balancing of interests) or Art. 6 Section 1 e GDPR (data processing in the public interest) if there are grounds for this due to your particular situation. This also applies to profiling supported by this provision in the sense of Art. 4 No. 4 GDPR.

If you lodge an objection, we will cease the processing your personal data unless we can demonstrate compelling reasons for processing that are worthy of protection and outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims.

In individual cases, we also process your personal data in order to carry out direct advertising. If you do not wish to receive promotional materials, you have the right to register an objection to this at any time. This also applies to profiling insofar as it is used in connection with such direct advertising. We will observe this objection in the future.

Your data will no longer be used for the purposes of direct advertising if you have vetoed processing for this purpose.

The objection may be lodged without any formality and should be addressed, if possible, to:

Brockhaus & Kollegen Rechtsanwaltsgesellschaft mbH
Elisabethstraße 2
D- 50226 Frechen
Tel.: +49 (0) 2234 – 99 68 608

Email: info@brockhaus-kollegen.com