Direkt zum Inhalt springen

Privacy policy

Data Privacy Statement

I. Name and controller

Controller within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States as well as other provisions of data protection law is:

MELCHERS Rechtsanwälte Partnerschaftsgesellschaft mbB

Im Breitspiel 21

69126 Heidelberg

Phone: +49 (0)6221 - 18 50 -0

Fax: +49 (0)6221 - 18 50 -100

 

II. Name and adress of the data protection officer

The data protection officer of Melchers Rechtsanwälte Partnerschaftsgesellschaft mbB can be contacted at the above address, Mr. Frank Henry Frenz (DataTrust&Safety)or by e-mail at datenschutz@remove-this.melchers-law.com .

III. General information on data processing

We respect your privacy and informational self-determination. For this reason, we would like to inform you about which data is stored and how this data is used if necessary. Personal data are collected and processed exclusively within the framework of the valid legal regulations.

This data protection declaration applies to the internet presence ‘https://www.melchers-law.com’.

On servers / websites to which external links refer, other data protection regulations apply.

General information

When using this website, personal data are also collected, stored and used. Personal data are individual details about personal or factual circumstances of a specific or identifiable natural person. Furthermore, it may be possible to make statements about its behavior or certain attributes.

If you contact us via e-mail/contact form or telephone, we may save your e-mail address, your name, your request and telephone number in order to be able to answer your questions.

1. Scope of the processing of personal data

We only process personal data of our users if this is necessary to provide a functional website as well as our contents and services. The processing of personal data of our users takes place regularly only after consent of the user. An exception applies in those cases in which prior consent cannot be obtained for factual reasons and the processing of data is permitted by statutory provisions.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) a EU General Data Protection Regulation (GDPR) serves as the legal basis.

In the processing of personal data required for the performance of a contract to which the data subject is a party, Art. 6 (1) b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.

Insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6 (1) c GDPR serves as the legal basis.

In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) d GDPR serves as the legal basis.

If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) f GDPR serves as the legal basis for processing.

3. Data erasure and storage time

As soon as the purpose of storage ceases to apply, your personal data will be blocked or deleted accordingly. Except it has been stipulated by the European or national legislator in European regulations, laws or other provisions, that storage is necessary beyond that or has been provided for.

The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

IV. Provision of the website and creation of log files

1. Description and scope of data processing

If you use the website for informational purposes only, i.e. if you do not log in, register or otherwise provide us with information, we do not collect any personal data with the exception of the data transmitted by your browser in order to enable you to visit the website.

These are:

  • IP address (the last 3 digits are anonymized)
  • Date and time of the request
  • Time zone difference
  • Content of the request
  • Access status/http-status code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and its interface
  • Language and version of the browser software

2. Legal basis for the data processing

Legal basis for the temporary storage of data and log files is Art. (1) f GDPR.

3. Purpose of the data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this, the IP address of the user must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Our legitimate interest in data processing pursuant to Art. 6 (1) (f) GDPR also lies in these purposes.

4. Storage time

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

Further storage is possible. In this case, the IP addresses of the users are modified, so that an assignment of the accessing client is no longer possible.

5. Possibility of opposition and elimination

The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

V. Use of cookies

1. Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user's computer system. If a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of signs that enables a unique identification of the browser when the website is called up again.

We use session cookies to make our website more user-friendly. Some elements of our website require that the accessing browser can be identified even after a page change.

The following data are stored and transmitted in the cookies:

  • Language settings
  • Session information

2. Legal basis for the data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 (1) f GDPR.

3. Purpose of the data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For this, it is necessary that the browser is recognized even after a page change.

The user data collected by technically necessary cookies are not used to create user profiles.

4. Storage time, possibility of objection and elimination

Cookies are stored on the user's computer and transmitted to our site. Therefore, you as a user have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.

This site uses the following cookies:

  • Name of the cookie: Session cookie
  • Description:  Identifies the user for the closed area, encrypted information

Further information regarding cookies: www.allaboutcookies.org

VI. Newsletter/Mailing

1. Description and scope of data processing

On our website you have the possibility to subscribe to a free newsletter (once per quarter). When registering for the newsletter, the data from the input mask is transmitted to us. The data is collected for electronic as well as possible postal dispatch.

The following data are collected in the course of registration:

  • IP address of the accessing computer
  • Date and time of registration
  • Title
  • Surname, first name
  • Address
  • E-mail address

In the course of the registration process, your consent is obtained for the processing of the data and reference is made to this data protection declaration.

In connection with data processing for the dispatch of newsletters, no data are passed on to third parties. The data will be used exclusively for sending the newsletter.

2. Legal basis for data processing

The legal basis for the processing of data after registration for the newsletter by the user is, with the user's consent, Art. 6 (1) a GDPR.

3. Purpose of data processing

The collection of the user's e-mail address is used to send the newsletter. The collection of other personal data within the registration process is used to prevent misuse of the services or the e-mail address used.

4. Storage time

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user's e-mail address and postal information will therefore be stored for as long as the subscription to the newsletter is active.

5. Possibility of opposition and elimination

The subscription to the newsletter can be cancelled by the data subject at any time. For this purpose there is a corresponding link in every newsletter as well as an unsubscribe function is integrated below the registration form. This also makes it possible to revoke the consent to the storage of personal data collected during the registration process.

VII. Newsletter Gaming Law

1. Description and scope of data processing

On our website you can subscribe to a free Newsletter Gaming Law, the previous issues are freely available. To subscribe, you must actively send an e-mail to the person responsible for the newsletter and you will be added to the mailing list.

When you register for the newsletter, the data that you have transmitted to us are collected.

The following data will be collected:

  • Date and time of registration
  • The information contained in your e-mail
  • Surname, first name
  • Address
  • E-mail address

In connection with data processing for the dispatch of newsletters, no data are passed on to third parties. The data will only be used internally for sending the newsletter.

2. Legal basis for the data processing

The legal basis for the processing of the data after registration for the newsletter by the user is the existence of the user's consent under Art. 6 (1) a GDPR.

3. Purpose of data processing

The collection of the user's e-mail address is used to send the newsletter.

The collection of other personal data as part of the registration process is used to prevent misuse of the services or the e-mail address used.

4. Storage time

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user's e-mail address and information will therefore be stored for as long as the subscription to the newsletter is active.

5. Possibility of opposition and elemination

The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose there is a respective link in every newsletter. This also makes it possible to revoke the consent to the storage of personal data collected during the registration process.

VIII. Contact form for seminar registration and e-mail contact

1. Description and scope of data processing

A contact form for seminar registrations is available on our website, which can be used for both telephone and electronic contact. If a user uses this possibility, the data entered in the input mask will be transmitted to us and stored.

These data are:

  • Date and time of the request
  • Industry
  • Name
  • E-mail address
  • Company
  • Address
  • Phone number
  • Fax number

Your consent is obtained for the processing of the data within the scope of the sending process and reference is made to this data protection declaration.

Alternatively, you can contact us via the e-mail address provided. In this case, the user's personal data transmitted by e-mail will be stored.

In this context, the data will not be passed on to third parties. The data are used exclusively for processing the conversation.

2. Legal basis for data processing

The legal basis for the processing of data is Art. 6 (1) a GDPR if the user has given his consent.

The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 (1) f GDPR. If the e-mail contact aims at the conclusion of a contract, then additional legal basis for the processing is Art. 6 (1) b GDPR.

3. Purpose of data processing

The processing of personal data from the input mask is solely used to process the seminar registration. If contact is made by e-mail, this also includes the necessary legitimate interest in the processing of the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

4. Storage time

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those that were sent by e-mail, this is the case when the respective conversation with the user is finished. The conversation is terminated when it can be concluded from the circumstances that the facts in question have been finally clarified.

5. Possibility of opposition and elemination

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

In this case, all personal data stored in the course of making contact will be deleted from the production systems.

IX. Blog

1. Description and scope of data processing

There is a Worldpress blog embedded on our website that allows us to share content with you. A comment function is not included at this time. The embedded blog as well as the website is hosted in a German data center. The data collected are described in sectionIV.1.

In this context, the data will not be passed on to third parties.

The following plugins are installed in the blog and do not collect any data from website visitors.

  • Authors Widget
  • Co-Authors Plus
  • List category posts
  • Yoast SEO

2. Legal basis for data processing

Legal basis is Art. 6 (1) f GDPR.

3. Purpose of data processing

The purpose is the provision of information to our clients and interested parties.

For further information see IV.1.

4. Storage time

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected.

5. Possibility of opposition and elimination

The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

X. Plugins and tools

X.1 Google Web Fonts

1. Description and scope of data processing

This site uses so-called web fonts provided by Google to uniformly display fonts. When you call up a page, your browser loads the required Web fonts into your browser cache to display texts and fonts correctly.

For this purpose, the browser you are using must be connected to Google's servers. This will let Google know that your IP address has been used to access our website.

2. Legal basis for data processing

Legal basis is Art.6 (1) f GDPR.

3. Purpose of data processing

The purpose is the uniform and appealing presentation of our web content.

4. Storage time

A storage on our part does not take place.

5. Possibility of opposition and elemination

If your browser does not support Web Fonts, your computer will use a standard font. Further information https://developers.google.com/fonts/faq as well as in the data protection declaration of Google: https://policies.google.com/privacy/

X.2 Google Maps

1. Description and scope of data processing

This site uses the map service Google Maps.

The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there.

2. Legal basis for data processing

Legal basis is Art.6 (1) f GDPR.

3. Purpose of data processing

The uniform and appealing presentation of our web contents, as well as the easier finding of the places indicated by us on the web page.

4. Storage time

A storage on our part does not take place.

5. Possibility of opposition and elemination

Further information https://developers.google.com/maps/faq as well as in the data protection declaration of Google: https://policies.google.com/privacy/

XI. Rights of data subject

If personal data are processed by you, you are affected within the meaning of the DSGVO and you have the following rights vis-à-vis the controller:

1. Right to information

You can ask the controller to confirm whether personal data concerning you will be processed by us.

If such processing has taken place, you can request the following information from the controller:

  • the purposes for which the personal data are processed;
  • the categories of personal data processed;
  • the recipients or categories of recipients to whom the personal data concerning you have been or are still being disclosed;
  • the planned duration of the storage of personal data concerning you or, if it is not possible to provide specific information, the criteria for determining the storage period;
  • the existence of a right to rectification or deletion of personal data concerning you, a right to limitation of the processing by the controller or a right to object to such processing;
  • the existence of a right of to lodge a complaint with a supervisory authority;
  • any available information on the origin of the data if the personal data are not collected from the data subject;

You have the right to request information as to whether the personal data concerning you are transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 GDPR in connection with the transmission.

2. Right to rectification

You have a right to obtain from the controller the rectification and/or completion if the personal data processed concerning you are incorrect or incomplete. The controller shall make the correction without delay.

3. Right to restriction of processing

Under the following conditions, you may request that the processing of personal data concerning you is restricted:

  • if you dispute the accuracy of the personal data concerning you for a period of time that enables the person responsible to verify the accuracy of the personal data;
  • the processing is unlawful and you refuse to delete the personal data and instead request that the use of the personal data be restricted;
  • the data controller no longer needs the personal data for the purposes of the processing, but you need them to assert, exercise or defend legal claims, or
  • if you have filed an objection to the processing pursuant to Art. 21 (1) GDPR and it has not yet been determined whether the legitimate reasons of the controller outweigh your reasons.

If the processing of personal data concerning you has been restricted, such data may only be processed - apart from being stored - with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or a Member State.

If the processing restriction has been restricted according to the above conditions, you will be informed by the controller before the restriction is lifted.

4. Right to erasure

a) Erasure Obligation

You may request the data controller to delete the personal data relating to you without delay and the controller is obliged to delete this data without delay if one of the following reasons applies:

  • The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
  • You revoke your consent on which the processing was based pursuant to Art. 6 (1) a or Art. 9 (2) a GDPR, and there is no other legal basis for the processing.
  • You file an objection against the processing pursuant to Art. 21 (1) GDPR and there are no overriding legitimate reasons for the processing, or you file an objection against the processing pursuant to Art. 21 (2) GDPR.
  • The personal data concerning you have been processed unlawfully.
  • The deletion of personal data concerning you is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the controller is subject.
  • The personal data concerning you have been collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.

b) Information to third parties

If the controller has made the personal data concerning you public and is obliged to delete it pursuant to Art. 17 (1) GDPR, he shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data processors who process the personal data, that you as the data subject have requested the deletion of all links to this personal data or of copies or replications of this personal data.

c) Exceptions

The right to cancellation does not exist insofar as the processing is necessary

  • to exercise freedom of expression and information;
  • for the performance of a legal obligation required for processing under the law of the Union or of the Member States to which the controller is subject or for the performance of a task in the public interest or in the exercise of official authority conferred on the controller;
  • for reasons of public interest in the field of public health in accordance with Art. 9 (2) h and i and Art. 9 (3) GDPR;
  • for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Art. 89 (1) GDPR, insofar as the law referred to under a) is likely to make it impossible or seriously impair the attainment of the objectives of such processing, or
  • to assert, exercise or defend legal claims.

5. Notification obligation regarding rectification or erasure of personal data or restriction of processing

If you have exercised your right to have the data controller correct, delete or limit the processing, he is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this correction or deletion of the data or restriction on processing, unless this proves impossible or involves a disproportionate effort.

The data subject shall have the right to be informed of such recipients.

6. Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. In addition, you have the right to pass this data on to another controller without hindrance from the controller to whom the personal data was provided, provided that

  • the processing is based on a consent pursuant to Art. 6 (1) a GDPR or Art. 9 (2) a GDPR or on a contract pursuant to Art. 6 (1) b GDPR and
  • processing is carried out using automated methods.

In exercising this right, you also have the right to request that the personal data concerning you are transferred directly from one controller to another controller, insofar as this is technically feasible. The freedoms and rights of other persons must not be affected by this.

The right to transferability shall not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the controller.

7. Right to object

You have the right to object at any time for reasons arising from your particular situation to the processing of your personal data in accordance with Art. 6 (1) e or f GDPR.

The controller no longer processes the personal data concerning you, unless he can prove compelling reasons worthy of protection for the processing, which outweigh your interests, rights and freedoms, or the processing is to assert, exercise or defend legal claims.

If the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data concerning you for such advertising; this also applies to profiling, insofar as it is associated with such direct marketing.

If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes. You have the possibility to exercise your right of objection in connection with the use of information society services by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.

8. Right to revoke the data protection declaration of consent

You have the right to revoke your data protection declaration of consent at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.

9. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right of lodge a complaint to a supervisory authority, in particular in the Member State where you reside, work or suspect of infringement, if you believe that the processing of personal data concerning you is contrary to the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

 

 

This Privacy Policy is dated May 2018 and should there be any changes to the Website, we expect to make appropriate revisions to this Privacy Policy. We therefore reserve the right to change this data protection statement at any time with effect for the future.