Privacy Notice

https://www.treuhand-heidelberg.de

1.Information about the controller and the data protection officer

In the following we provide information about the collection of personal data during your use of our website.

Controller pursuant to Art. 4 para. 7 of the EU General Data Protection Regulation (the “GDPR”) and other national data protection acts valid in the member states and in accordance with other provisions under data protection law is:

Treuhand Heidelberg Steuerberatungsgesellschaft mbH
Friedrich-Ebert-Anlage 46/1
69117 Heidelberg
Germany
Phone: +49 (6221) 9043-80
Fax: +49 (6221) 9043-32
Email: kanzlei@treuhandheidelberg.de
Website: www.treuhand-heidelberg.de

You can contact our data protection officer as follows:

Tim Klümper
WissmannLaw GmbH Rechtsanwaltsgesellschaft
Friedrich-Koenig-Str. 3 – 5
68167 Mannheim
Germany
Phone: +49 (621) 490765-0
Fax: +49 (621) 490765-29
Email: kanz1.lei@wissmannlaw.de
Website: www.treuhand-heidelberg.de

2. General information on the processing of personal data

We generally collect and use the personal data of our users only to the extent to which this is required to provide a functional website and our content and services. As a rule, before collecting and using our users’ personal data we obtain the consent of the respective user concerned. As an exception to this rule, data are also collected and processed if it proves impossible to obtain prior consent for factual reasons or if legal provisions permit the processing of such data.

To the extent that we obtain the consent of the user (also called the “data subject”) to the processing of his or her personal data, Art. 6 para. 1 letter a of the GDPR serves as the legal basis. When it comes to the processing of personal data that is required to perform a contract to which the data subject is a party, Art. 6 para. 1 letter b of the GDPR serves as the legal basis. This also applies to processing operations required to take steps prior to entering into a contract. To the extent that the processing of personal data is required to meet a legal obligation to which our company is subject, Art. 6 para. 1 letter c of the GDPR serves as the legal basis. In the event that interests that are essential for the life of the data subject or of another natural person require the processing of personal data, Art. 6 para. 1 letter d of the GDPR serves as the legal basis. If processing is necessary to protect the legitimate interests of our company or of a third party, and unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, Art. 6 para. 1 letter f of the GDPR serves as the legal basis.

As soon as the purpose of storing the personal data of the data subject no longer exists, such data is deleted or blocked. Personal data can be stored if European or national legislation with regard to regulations, laws, or other provisions to which the controller is subject provides for the storage. The data is also blocked or deleted if the storage period prescribed by the aforementioned standards ends, unless further storage of the data is required to enter into or perform a contract.

When you contact us per email, the data you provide is stored by us to enable us to answer your question. We delete the data produced in this context after storage is no longer required, i.e., when the purpose of the storage no longer exists, or we restrict processing of the data in the event of statutory retention periods.

If we commission external service providers to provide individual functions of our offer, or if we intend to use your data for commercial purposes, we will inform you in detail below about the respective procedures. In doing so, we will also advise you of the criteria fixed concerning the duration of storage.

3. Your rights as a data subject

You have the following rights in relation to us with regard to your personal data:

  • The right to claim access
  • The right to claim rectification and/or completion or erasure
  • The right to claim restriction of processing
  • The right to claim erasure
  • The right to be informed
  • The right of data portability
  • The right to object to the processing
  • The right to withdraw your declaration of consent under data protection law
  • Automated decision-making in individual cases including profiling

You also have the right to file a complaint with the supervisory authority responsible for data protection about our processing of your personal data.

Should you have questions, comments, or inquiries regarding our collection, processing, and use of your personal data, please do not hesitate to contact us, too, with the help of the contact details provided above.

4. Collection of personal data during your visit to our website

Our website can usually be used without entering personal data. If you only use our website for informational purposes, i.e., if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to browse our website, we collect the following data that we need for technical reasons to show you our website and ensure stability and security (Art. 6 para. 1 letter f of the GDPA forms the legal basis):

  • IP address
  • Date and time of the request
  • Content of the request (webpage retrieved)
  • Access status/HTTP status code
  • Data volume transmitted each time
  • Website from which the request was sent (type of browser)
  • User’s operating system
  • Language and version of the browser software

The data is also stored in our system’s log files. This data will not be stored together with other personal data of the user (Art. 6 para. 1 letter f of the GDPR forms the legal basis).

Log file storage is necessary to ensure the website’s functioning. Moreover, the data help us to optimize our website and to ensure the security of our information systems. No data analyses for marketing purposes are performed in this context.

The data is deleted as soon as it is no longer required to fulfill the purpose of its collection. If the data has been recorded in order to provide the website, this is the case when the respective session ends.

If the data is stored in log files, this is the case at the latest after seven days. The data will possibly also be stored beyond this period. In this event the users’ IP addresses are deleted or obscured so that they can no longer be linked to the client that made the request.

Recording the data to provide the website and storing the data in log files is absolutely necessary for operating the website. Users will therefore not be successful in objecting to the above.

5. Use of cookies

Our website uses cookies. Cookies are small text files which are assigned to the browser you use and which are stored on your hard drive; a cookie provides the unit that sets the cookie with certain information. Cookies cannot run programs or infect your computer with viruses. They are meant to make the website more user-friendly and efficient overall. The legal basis for processing personal data with the help of cookies is Art. 6 para. 1 letter f of the GDPR.

Our web pages use temporary and permanent cookies. Temporary cookies are automatically deleted when you close the browser. This type of cookies specifically includes what is known as session cookies. Session cookies store a session ID with the help of which various requests of your browser can be assigned to one and the same session. As a result, your computer can be recognized when you return to our website. Session cookies are deleted when you log off or close the browser. In contrast, permanent cookies are automatically deleted after a predefined period that can differ from cookie to cookie. You can delete the cookies at any time by changing the security settings of your browser.

Viewing our website without cookies is generally an option, too. You can adapt your browser settings to your wishes and, e.g., refuse the acceptance of third party cookies or of all cookies. Cookies that have already been stored can be deleted at any time. Automatic deletion is also an option. In this respect please note that individual functions of our website might not be available if you deactivated the use of cookies.

The following list provides further information on how to modify your cookie settings in the browser you use:

https://www.google.com/intl/en/policies/technologies/managing/ http://support.mozilla.com/en-GB/kb/Cookies#w_cookie-settings http://windows.microsoft.com/en-GB/windows-vista/Block-or-allow-cookies/
http://www.apple.com/safari/features.html#security

6. Right to object to the processing of your data, or revocation

Should you have given your consent (Art. 6 para. 1 letter a of the GDPR) to the processing of your data, you can revoke your consent at any time. The revocation of your consent, once made, influences the permissibility of our processing of your personal data.

To the extent that we base our processing of your personal data on the weighting of interests, you can file an objection against the processing. This is the case if the processing is not required in particular to perform a contract with you, which we would present in each instance together with the following description of functions (e.g., Art. 6 para. 1 letter f of the GDPR). If you elect to object to our processing of your personal data, we would like to ask you to explain the reasons why we should not process your personal data in the manner we usually do. If your objection turns out to be justified, we will review the facts and either stop or adapt the processing of your personal data or explain to you our mandatory reasons that merit protection and induce us to continue the processing.

Please address your revocation or objection to: kanzlei@wissmannlaw.de.

7. Contact form

Our website presents a contact form that can be used for contacting us electronically. If a user makes use of this possibility, the data entered in the input mask will be transmitted to us and stored. This data includes:

At the time the contact form is sent, the date and time of the registration and the following data are recorded in addition to the IP address of the user (data marked with an asterisk are mandatory data):

  • Title, first name, last name, phone, email, your message*

For our processing of your data, you are requested to provide your consent in the course of the sending process, and reference is made to this Privacy Notice.

Alternatively, it is possible to contact us via the email address provided. In this event the user’s personal data transmitted together with the email will be stored.

In this context no data will be shared with third parties. The data will be exclusively used for processing the email communication. Art. 6 para. 1 letter a of the GDPR forms the basis for processing the data if the user’s consent has been obtained. Art. 6 para. 1 letter f of the GDPR forms the basis for processing the data transmitted when an email is sent. If the email contact aims at the conclusion of a contract, Art. 6 para. 1 letter b of the GDPR forms an additional legal basis.

The processing of the personal data from the input mask only serves us to process your communication with us. If you establish contact via email, this also substantiates the required legitimate interest in processing the data. The other personal data processed during the sending process serves the prevention of misuse of the contact form and to ensure the security of our information systems.

The data is deleted as soon as it is no longer required to fulfill the purpose of its collection. For the personal data from the input mask of the contact form and from the email sent, this is the case if the respective communication with the user ends, i.e., if the issue proper that stands behind the request has been finally settled.

8. Newsletter

You may consent to subscribing to our newsletter, which informs you of our current, interesting offers. The goods and services advertised are designated in the declaration of consent.

We use the double opt-in procedure for newsletter subscriptions. This means that after your subscription, we will send an email to the email address stated in which we request you to confirm that you wish to receive the newsletter. Your information will be blocked and automatically deleted after one month unless you confirm your subscription within 24 hours. Moreover, we store the IP address you use, the time of the subscription and of the confirmation. The purpose of the procedure is to enable us to furnish evidence of your subscription and, possibly, clarify any misuse of your personal data.

We record and store your email address. Providing the address is mandatory. As a result, we store your email address after you have given your confirmation in order to send you the newsletter. Art. 6 para. 1 letter a of the GDPR forms the legal basis.

You may revoke your consent to our sending you the newsletter at any time and unsubscribe. Your revocation can take the form of clicking on the link provided in every newsletter email, of sending an email to kanzlei@treuhand-heidelberg.de, or of sending a message to the contact details furnished in the publishing information.

The personal data additionally collected during the sending process will be deleted upon expiration of a period of seven days at the latest.

9. Google Web Fonts

For the uniform presentation of fonts, this website uses web fonts provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: Google). When you access a website, your browser loads the web fonts needed into your browser cache in order to correctly display texts and fonts.

For this purpose, the browser you use must establish contact with Google’s servers. In this way Google is informed that our website was accessed via your IP address. The use of Google Web Fonts lies in the interest of a uniform and attractive presentation of our online offering. This is a legitimate interest within the meaning of Art. 6 para. 1 letter f of the GDPR.

If your browser does not support web fonts, your computer uses a standard font.

Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=de.

Google processes your personal data in the US and has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

10. CLOUD.TYPOGRAPHY (web fonts)

For the uniform presentation of fonts, this website uses web fonts provided by Hoefler & Co., 611 Broadway, Room 725, New York, NY 10012-2608, USA.

For this purpose, the browser you use must establish contact with the servers of Hoefler & Co. In this way Hoefler & Co. is informed that our website was accessed via your IP address. A temporary cookie is stored in your browser to enhance performance. The use of these web fonts lies in the interest of a uniform and attractive presentation of our online offering. This is a legitimate interest within the meaning of Art. 6 para. 1 letter f of the GDPR. We have no influence whatsoever on the scope of data collected in this way by Hoefler & Co.

Hoefler & Co. processes your personal data in the US and has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Further information on the web fonts of Hoefler & Co. can be found in English at https://www.typography.com/home/terms.php as well as in its privacy policy at http://www.typography.com/home/privacy.php

11. Google Analytics

This website uses functions of Google Analytics, a web analysis service. The service is provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses cookies. Cookies are text files stored on your computer that enable your use of the website to be analyzed. As a rule, the information generated by the cookie on your use of this website is transmitted to a Google server in the US and stored there.

The storage of Google Analytics cookies is based on Art. 6 para. 1 letter f of the GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising. We use Google Analytics only if IP anonymization is activated. Google shortens user IP addresses within the EU and in other states that are party to the Agreement on the European Economic Area. The full IP address is transmitted to a Google server in the US and shortened there in exceptional cases only.

Google processes your personal data in the US and has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Browser plugin

You can prevent the storage of cookies through corresponding browser software settings; we would like to point out, however, that in this case you will possibly not be able to make full use of all functions of this website. In addition, you can prevent Google from recording the data generated by the cookie and related to your use of the website (incl. your IP address) and from processing this data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

Objection to the collection of data

You can prevent Google Analytics from collecting your data by clicking on the following link. An opt-out cookie is set that prevents the collection of your data during future visits to this website:

12. Use of Google Maps

This website uses Google Maps for presenting interactive maps and for route planning. Google Maps is a map service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. By using Google Maps, information about the use of this website including your IP address, the start address, and the specified destination entered in the route planning function can be transmitted to Google in the US.

When you access a page of our website that contains Google Maps, your browser establishes a direct connection with Google’s servers. Google directly transmits the map content to your browser, which integrates the content into the page. We therefore have no influence whatsoever on the scope of data collected in this way by Google. As far as we know, the scope includes at least the following data:

  • Date and time when the page concerned was visited,
  • Internet address or URL of the page accessed,
  • IP address.

The use of Google Maps is in the interest of an attractive presentation of our online offering and of simplifying the process of finding the places referred to on the page. This is a legitimate interest within the meaning of Art. 6 para. 1 letter f of the GDPR.

We do not have any influence whatsoever on the further processing and use of the data by Google and can therefore not accept any responsibility in this respect.

You can deactivate JavaScript in your browser settings if you do not wish Google to collect, process, or use data about you through our website. However, in this case you cannot use the map display function.

Please refer to Google’s privacy policy for information about the purpose and scope of data collection and the further processing and use of data by Google as well as your related rights and options for changing settings to protect your privacy: https://policies.google.com/privacy?hl=de

Google processes your personal data in the US and has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

13. Data security

Any and all information that you transmit to us will be stored on servers within the European Union, unless this Privacy Notice specifies otherwise. Unfortunately, the transmission of information through the internet is not entirely secure, so we cannot guarantee the security of the data transmitted through the internet to our website.

However, we protect our website and other systems from loss, destruction, access, manipulation, or dissemination of your data by unauthorized persons through technical and organizational measures.

14. No disclosure of your personal data

We do not share your personal data with third parties unless you have given your consent to the disclosure of your data or we are entitled or obliged to do so on the basis of statutory provisions and/or court order or order by a public authority. These cases may especially include the provision of information for purposes of criminal prosecution, to avoid danger, or to enforce intellectual property rights.

15. Data protection and third-party websites

The website can include hyperlinks to and from third-party websites. If you follow a hyperlink to one of these websites, please note that we cannot accept any responsibility or guarantee for third-party content or data protection conditions. Please assure yourself of the respective applicable data protection conditions before you transmit personal data to these websites.

16. Changes of these data protection provisions

We reserve the right to change the data protection provisions at any time with effect for the future. The most current version will always be available on the website. Please visit the website at regular intervals to inform yourself of the applicable data protection provisions.