1. Name and contact details of the controller
Controller for personal data processing within the meaning of Article 4 No. 7 GDPR:
Corporate Law Boutique
Friedrichstr. 122 – 123
Tel + 49 30 443 089 88
(hereinafter also „musfeldt.“)
2. Collection and storage of personal data as well as nature and purpose of their use
2. a) When visiting the website
When you visit our website www.musfeldt.law, the browser on your device automatically sends information to the server on our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until it is automatically deleted:
IP address of the requesting computer,
date and time of access,
name and URL of the retrieved file,
website from which access is made (“referrer URL”),
the browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The mentioned data will be processed by us for the following purposes:
ensuring a smooth connection of the website,
ensuring comfortable use of our website,
evaluation of system security and stability as well as
for other administrative purposes.
The legal basis for data processing is Article 6 no. 1 lit. f) GDPR. Our legitimate interest follows from the purposes listed above for data collection. The log files are deleted after the end of the respective browser session, at the latest after seven days, unless their further storage is required for the above-mentioned purposes.
2. b) Website hosting
For the provision of this website, we use an external web hosting provider.
The provision of a website requires a web hosting service. The use of our web hosting provider takes place in accordance with Article 6 no. 1 lit. f GDPR due to our legitimate economic interest to provide our offer on this website. In connection with the hosting, our web hosting provider processes personal data on our behalf, which is generated during the use of our website.
We have concluded a data processing agreement with our web hosting provider. Through this contract the service provider assures that it processes the personal data in accordance with the GDPR and ensures the protection of the rights of the data subjects.
2. c) For your inquiries
If you have any questions, we offer you the opportunity to contact us by e-mail, telephone or fax.
We process your personal data transmitted on the basis of Article 6 no. 1 lit. b) GDPR (requests within the scope of an attorney-client relationship or other contract or for the initiation of a contract) or Article 6 no. 1 lit. f) GDPR (requests outside a contract). Our legitimate interest is to answer your questions.
3. Transmission of Data
Your personal data will not be transmitted to third parties for purposes other than those listed below.
We will only transmit your personal data to third parties if:
you have given your express consent according to Article 6 no. 1 lit. a) GDPR,
the transmission according to Article 6 no. 1 lit. f) GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not transmitting your data,
in the event that a legal obligation exists for the transmission according to Article 6 no. 1 lit. c) GDPR, and
this is permitted by law and is required by Article 6 no. 1 lit. b) GDPR for the performance of a contract with you.
4. Storage time of data
If necessary, we process and store your personal data for the duration of our business relationship, which also includes, for example, the initiation and processing of a client relationship or other contract. It should be noted that our business relationship is generally a continuing obligation which is intended for years.
In addition, we are subject to various storage and documentation obligations arising, among other things, from the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods specified there are 6 years for correspondence in connection with the conclusion of a contract and 10 years for accounting documents (Sections 238, 257 (1) and (4) HGB, Sections 147 (1) and (3) AO).
Finally, the storage period is also assessed according to the statutory limitation periods, which, for example, according to Sections 195 et seq. of the German Civil Code (BGB), are generally three years, but can, in certain cases, also be up to thirty years.
After expiry of the storage and documentation obligations and the relevant limitation periods, we delete the data.
Log files are deleted within the periods specified in section 1.
5. Your data protection rights
With regard to your personal data stored by us, you have the following rights: access (Article 15 GDPR, section 34 BDSG), rectification (Article 16 GDPR), restriction of processing (Article 18 GDPR), erasure (Article 17 GDPR, section 35 BDSG) and data portability in a structured, current and machine-readable format (Article 20 GDPR).
If we process your personal data on the basis of legitimate interests according to Article 6 no. 1 lit. f) GDPR, you have the right to object to the processing of your personal data according to Article 21 GDPR, provided that there are reasons for this which arise from your particular situation or the objection is directed to direct marketing. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
If we process your personal data on the basis of your consent according to Article 6 no. 1 lit. a) GDPR, you have the right according to Article 7 no. 3 GDPR to withdraw your consent to us at any time. As a result, we are no longer allowed to continue processing data based on this consent in the future.
You can assert all these rights by e-mail to email@example.com or contact us at the contact details mentioned in section 1.
Regardless of this, you have the right to lodge a complaint with a supervisory authority – in particular in the EU Member State of your habitual residence, place of work or place of the alleged infringement – if you consider that the processing of your personal data infringes applicable data protection regulations (Article 77 GDPR, section 19 BDSG).
6. Data security
We use the common SSL (Secure Socket Layer) method in connection with the highest level of encryption supported by your browser. Usually this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. Whether a single page of our website is transmitted in encrypted form is indicated by the closed display of the key or lock symbol in the lower status bar of your browser.
We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.