Data protection information

 

Applicant data protection information

Client data protection information

 

Data protection information regarding use of our website

 

Below you will find information about collection of your personal data when using our website. Personal data are any data that can be related to you, e.g. your name, address, email addresses user behaviour. We process your personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR), the revised version of the German Federal Data Protection Act (BDSG) and all other legislation relevant to the processing of personal data.

 

Section 1 – General information

1. Collection of personal data

(1) As a matter of principle, we only collect the data prescribed by law or contract or that are required to conclude a contract. There are no negative consequences associated with not providing those data. In individual cases, failure to provide such information may make communication more difficult, for example, or delay it.

(2) Your personal data are protected at all times against loss or misuse by appropriate technical and organisational measures. They are stored in a secure operating environment which is not accessible to the public. In certain cases, e.g. use of our contact form, your personal data are encrypted during transfer by so-called Transport Layer Security (TLS) technology. This means that the communication between your computer and our servers is carried out using a recognised encryption procedure.

(3) In some cases, your data are transferred by us to third parties and / or commissioned data processors (e.g. IT service providers, computer centres, the post office for sending letters) who support us in carrying out our work. If those third parties are service providers, they have been carefully selected and appointed by us; commissioned data processors are bound by our instructions and are monitored regularly. Your data are transferred only if you have given your prior consent or we are legally or contractually obliged or entitled to do so.

 

2. Data controller for processing

The “data controller” pursuant to Art. 4(7) GDPR is:

reichert & reichert
steuer- und rechtsberatungsgesellschaft mbH
Max-Porzig-Straße 1
78224 Singen, Germany

 

Email: kanzlei@reichert-reichert.de
Telephone: +49 (0)7731 9587-0

 

3. Contact address of our data protection officer

You can contact our data protection officer at:

 

Data Protection Officer
c/o reichert & reichert steuer- und rechtsberatungsgesellschaft mbH
Max-Porzig-Straße 1
78224 Singen, Germany

 

Email: datenschutz@reichert-reichert.de

 

4. Legal bases for our data processing:

The legal bases for data processing emanate from the provisions of Art. 6 GDPR; our processing of data is mainly

  • carried out on the basis of consent, Art. 6(1) sentence 1 point (a) GDPR
  • to fulfil a contract, Art.6(1) sentence 1 point (b) GDPR
  • to fulfil legal obligations, Art. 6(1) point c. GDPR
  • to pursue legitimate interests, Art. 6(1) point (f) GDPR

 

5. Your rights as a data subject

(1) Under the GDPR, you have the following rights in respect of us regarding the personal data concerning you:

  • Right to information, Art. 15 GDPR
  • Right to rectification, Art. 16 GDPR
  • Right to erasure (“right to be forgotten”), Art. 17 GDPR
  • Right to restriction of processing, Art. 18 GDPR
  • Right to data portability, Art. 20 GDPR
  • Right to object to processing, Art. 21 GDPR.

(2) Under Art. 22 GDPR, you also have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or otherwise significantly disadvantages you, unless the decision

  • is necessary for entering into, or performance of, a contract between you as the data subject and us as the data controller,
  • is authorised by Union or Member State law to which we as the controller are subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests as the data subject, or
  • is based on your explicit consent.  

(3) If you consider that the processing of personal data relating to you infringes the provisions of data protection law, you have the right under Art. 77 GDPR to lodge a complaint with a supervisory authority. The right to lodge a complaint may be pursued, in particular, with a supervisory authority in the Member State in which you reside or which is the place of the alleged infringement.

 

6. Your rights to withdraw or object

Your right to withdraw consent

On the basis of Art 6(1) sentence 1 point (a), you have the right to withdraw consent that you have given at any time, without affecting the lawfulness of the processing carried out up to that point. If you withdraw your consent, we stop carrying out the data processing concerned.

 

Your right to object on the basis of legitimate interests

Under Art. 21 GDPR, you have the right to object at any time to processing of personal data concerning you that are collected on the basis of Art. 6(1) point (f) GDPR on grounds relating to your particular situation. We will no longer process the personal data unless there are compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or the processing is necessary for the establishment, exercise or defence of legal claims.

 

Your right to object to direct marketing

Under Art. 21 GDPR, you have the right to object to the processing of personal data concerning you for the purposes of direct marketing; if you exercise that right, the data will no longer be processed for direct marketing purposes or your legitimate interests will be protected.

 

 

Section 2 – Use of our website for information & use of cookies

1.  Data collection during use purely for information purposes

(1) You can visit our website without having to provide details about yourself. If you use our website purely for the purpose of obtaining information, i.e. if you do not use our contact form, for example, or send us information by any other means, we collect only the personal data that your browser transfers automatically to our server and is saved in server logfiles. The following data are collected:

  • IP address
  • Date and time of the request
  • Request line
  • Status code
  • Volume of data temporarily loaded
  • Website from which the request comes (referrer)
  • Type and version of the browser used
  • Operating system

(2) Logfiles are saved to ensure proper functioning of the website. We also use the data to optimise the website and ensure its stability and security.

(3) The legal basis for the temporary storage is Art. 6(1) sentence 1 point (f) GDPR with the legitimate interest of achieving the purposes specified above.

(4) We delete the stored data as soon as it is no longer necessary to store it. This is the case at the latest after 7 days. Longer storage is possible. In this case, the IP addresses of users are erased or anonymised so that they can no longer be associated with them.

(5) Collecting data to deliver the website and storage of data in logfiles is essential to operate the site. There is no opportunity for the user to object.

 

2. Cookies

(1) In addition to the data mentioned previously, cookies are stored on your computer during use of our website. Cookies are text files that we store on your computer. Cookies cannot execute programs or transfer viruses to your computer.

1 a) This website uses technically necessary cookies. Technically necessary cookies are essential for the operation of the website and its basic functions. Without these cookies, it may not be possible to display the website correctly, it may not function properly and we may not be able to offer the service we provide through our website or may not be able to do so in full. Technically necessary cookies cannot be disabled.

 

We use the following technically necessary cookies:

 

Name: csrf_https-contao_csrf_token

Provider: reichert & reichert

Purpose: Used to protect the website against cross-site request forgery attacks

Lifetime: Session

 

1 b) In addition, we use analytical cookies. They are used to measure our reach. They collect information about how the website is used so that we can improve its appeal, content and functionality. We use the following analytical cookies: Matomo (further information under III. Matomo).

 

(2) We use cookies to facilitate accessibility and correct presentation of the website and make its use easier and more effective. We also use cookies to improve the quality of our website and its content. Through analytical cookies, we discover how the website is used and we are, therefore, able to optimise it continually. Some functions of our website cannot be offered without using cookies.

(3) The legal basis for the use of cookies is Art. 6(1) sentence 1 point (f) GDPR with the legitimate interest of achieving the purposes specified under (2) above. When you access our website, you are informed about the use of cookies for analytical purposes by a banner. If you click on the banner to remove it, we also place a cookie on your computer so that we can prove the action that you have taken. A reference to this information about data protection is also provided in this context.

(4) The session cookies expire after 30 minutes and are then erased. In addition, you can usually configure your browser settings to your wishes and e.g. stop accepting cookies in general. You can disable the storage of cookies or set your browser so that it asks you before downloading cookies. You can find further information about this in the help option of the browser you are using. Use the links below to find out how to manage and disable cookies in the most common browsers:

Chrome browser: https://support.google.com/accounts/answer/61416?hl=en

Internet Explorer: https://support.microsoft.com/en-en/help/17442/windows-internet-explorer-delete-manage-cookies

Mozilla Firefox: https://support.mozilla.org/en-US/kb/block-websites-storing-cookies-site-data-firefox

Safari: https://support.apple.com/en-en/guide/safari/manage-cookies-and-website-data-sfri11471/mac

 

3. Matomo

(1) On our website we use the web analysis service Matomo (formerly Piwik), an open-source software package for statistical analysis of visitor access. Matomo uses so-called “cookies”, text files stored on your computer that allow the anonymised analysis of use of the website. It is not possible to identify you because, although your IP address is collected, it is anonymised before it is stored. We use the following analytical cookies from Matomo:

 

Name: _pk_ses.1.e0cc

Provider: reichert & reichert

Purpose: Temporarily stores visit data

Lifetime: 30 minutes

 

Name: _pk_id.1.e0cc

Provider: reichert & reichert

Purpose: Stores some data about the user, such as their unique visitor ID

Lifetime: 13 months

 

Name: _pk_testcookie

Provider: reichert & reichert

Purpose: Checks that the browser supports cookies

Lifetime: 30 minutes

 

(2) Matomo is used to improve the quality of our website and its content. In this way, we discover how the website is used and we are, therefore, able to optimise it continually.

 

(3) The legal basis for the use of Matomo is Art. 6(1) sentence 1 point (f) GDPR. We use Matomo for the legitimate interest of analysing use of our website and improving it regularly. The statistics collected allow us to improve our site and make it more interesting to you as a user.

 

(4) The cookies used by Matomo are stored on your computer and the data collected are sent to us. You can prevent cookies from being stored at any time by adjusting the corresponding setting in your browser software. Alternatively, most browsers have a so-called “Do not track” option by means of which they tell websites not to track your user activity. Matomo respects this option.

 

 

Section 3 – Special processing when you visit our website

In addition to the use of our website purely for information purposes (see Section II.), we offer various other services and functions that you can use if you are interested. To do so, you usually have to specify additional data that we require and use to perform the respective service.

 

1. Making contact using our contact form or via email

(1) If you make contact with us using our contact form, we ask you to provide us with the following data: Your title, your first name and surname, a subject and your message. These data are mandatory and are marked accordingly; other information is voluntary. Your data are stored by us for the purpose of answering your queries. The legal basis for processing is Art. 6(1) sentence 1 point (b) GDPR if the aim of making contact is to conclude a contract and point (f) if the legitimate interest is to contact you. We erase the data collected in this connection once storage is no longer required or we restrict processing if there are statutory retention obligations.

(2) If you contact us via email, the personal data you communicate to us in the email are stored by us for the purpose of answering your queries. The legal basis for processing is Art. 6(1) sentence 1 point (b) GDPR if the aim of making contact is to conclude a contract and point (f) if the legitimate interest is to contact you. We erase the data collected in this connection once storage is no longer required or we restrict processing if there are statutory retention obligations.

 

2. Applications for jobs advertised on our website

(1) If you apply to us by email or post, we process the personal data you provide to us (e.g. surname, first name, address details, communication details, data of birth, cv, references, qualifications, answers to questions and any correspondence with you in the context of the selection process) as part of our application procedure, in order to be able to assess if you have the professional suitability, capacity and technical skill for the post for which you are applying. The legal basis for this is Section 26(1) BDSG in conjunction with Art. 88 GDPR, for the fulfilment of legal obligations Art. 6(1) point (c) GDPR.

(2) Within the data controller’s business, those persons are given access to your data who require them in the context of the applicant selection process or to fulfil our contractual or legal obligations.

(3) We erase the data collected in connection with your application once storage is no longer required or we restrict processing if there are statutory retention obligations. If you are not appointed, this is usually at the latest four months from completion of the application process.

(4) If you are not appointed but your application is still of interest to us, we ask you for your consent to retain your application to consider for future vacancies.

(5) You can find all of the information for processing your personal applicant data summarised in a clear format in our Information about data protection for applicants.

 

3. Social media links

(1) On our website you have the option to visit our pages on the social media platforms Facebook, Instagram, LinkedIn and Xing. You can identify the provider of the social media platform by the logo.

The social media logos are simply links. This means that when you visit our website, none of your personal data are transferred automatically to the social networks. Clicking on one of the logos opens the respective page in another window and you are forwarded to the social network concerned.

(2) You can find further information about the purpose and scope of data collection and processing by the social network in the data protection information of these providers as listed below. Here you can obtain further information about your rights in this connection and the settings options that protect your privacy.

You can find information about data protection on our Facebook page “Reichert & Reichert - Steuerberater & Rechtsanwaltskanzlei” in the separate information about data protection when visiting our Facebook page.

You can find information about data protection for our Instagram profile “kanzlei.reichert.reichert” in the separate information about data protection when visiting our Instagram profile.