This Privacy Notice provides you with information about the type, scope and purpose of processing personal data in connection with your visit to and use of our website. With regard to the terminology, such as “processing” or “controller”, we refer to the definitions in Article 4of the General Data Protection Regulation (GDPR).
Dr. Klemens Schubert, Patent Attorney
Telephone: + 49 (0) 30 815 42 58
Fax: + 49 (0) 30 845 096 86
In accordance with Article 13 GDPR, we would like to take this opportunity to inform you of the legal basis for our data processing. If the legal basis is not mentioned in the Privacy Notice, the following applies: The legal basis for obtaining consent is Article 6 Paragraph 1(a) and Article 7 GDPR; the legal basis for processing in order to render our services, implement contractual measures and respond to queries is Article 6 Paragraph 1(b) GDPR; the legal basis for processing in order to meet our legal obligations is Article 6 Paragraph 1(c) GDPR; and the legal basis for processing in order to protect our legitimate interests is Article 6 Paragraph 1(f) GDPR. Where the vital interests of the data subject or another natural person require the processing of personal data, Article 6 Paragraph 1(d) GDPR applies as the legal basis.
In accordance with Article 32 GDPR and taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, we are implementing appropriate technical and organisational measures to ensure a level of security appropriate to the risk.
In particular, these measures include ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, transmission, security of availability and its separation. In addition, we have established procedures that guarantee the exercise of data subjects’ rights, the erasure of data, and response to data risks. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technology design and data-protection-friendly default settings (Article 25 GDPR).
When visiting the website, each server automatically saves the information regarding access to the website. The temporary storage of the IP address by the system is necessary to enable the provision of the website to the user’s computer. To do this, the user’s IP address must be stored for the duration of the session. For system security purposes, our web server temporarily documents
Under no circumstances will we use the data collected for the purpose of drawing conclusions about you as a visitor to our website. Instead, this information is needed (1) to properly deliver our website content, (2) to optimise the content of the website as well as to advertise it, (3) to ensure the continued functioning of our information technology systems and our website’s technology as well as (4) to provide the information necessary for law enforcement authorities to prosecute in the event of a cyber attack.
This anonymously collected data and information may therefore be statistically analysed by us as well as further analysed with the aim of increasing data protection and data security within our company to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data from the server log files are stored separately from all personal data provided by you.
The legal basis for data processing is Article 6 Paragraph 1(f) GDPR.
Our website is run on the server systems provided by Strato AG, Pascalstrasse 10, 10587 Berlin, Germany (www.strato.de). The company is DIN ISO 9001 and DIN ISO 27001 certified. We use hosting services to provide the following: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services which we use for the purpose of operating this website.
In doing so, we or our hosting provider process inventory data, contact details, content data, contract data, usage data, metadata and communication data of customers, potential customers and visitors to this online offering on the basis of our legitimate interests in an efficient and secure provision of this online offering according to Article 6 Paragraph 1(f) GDPR in conjunction with Article 28 GDPR (conclusion of a data processing agreement).
We use state-of-the-art encryption methods (e.g. SSL) via HTTPS to protect the security of your data during transmission.
The transmission of a single page of our website in encrypted form is indicated on our website by the closed display of the key or the lock icon in your browser’s status bar.
We adhere to the principles of data avoidance and data economy. We therefore only store your personal data as long as is necessary to achieve the purposes mentioned here or as required according to the various retention periods determined by the competent legal authorities. Once the purpose in question no longer exists or the retention period expires, the data in question will be routinely blocked or erased according to the statutory requirements.
If, as part of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them or otherwise grant access to the data, this will only be done on the basis of legal permission (e.g. if the data has been transmitted to third parties, such as payment service providers, to fulfil the contract in accordance with Article 6 Paragraph 1(b) GDPR), you have consented to a legal obligation to do so or on the basis of our legitimate interests (e.g. the use of agents, web hosts, etc.).
If we commission third parties to process data on the basis of what is known as a data processing agreement, this is done on the basis of Article 28 GDPR.
If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or where this occurs in the context of the use of third party services or disclosure, or transmission of data to other persons or companies, this will only happen if it is to fulfil our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Except as expressly provided or required by law, we process or disclose data only in third countries with a recognised level of privacy, or on the basis of specific warranties, such as contractual obligations under what are known as standard protection clauses stipulated by the EU Commission, the existence of certifications or binding internal data protection regulations (Articles 44 to 49 GDPR).
If you get in touch with us by email, telephone or fax, we will store the data sent (e.g. your email address, telephone number or fax number, you name and other personal data you send) in order to respond to your query. We erase the data arising in this context once processing is no longer necessary, or limit processing if statutory retention obligations exist. The legal basis for the processing of data transmitted as part of a conversation is Article 6 Paragraph 1(f) GDPR. If the contact undertaken aims to conclude a contract with us, processing shall also be legally based on Article 6 Paragraph 1(b) GDPR.
If you contact us using the contact form on this website, you must provide your name and email address at a minimum. Further information may be provided voluntarily. The processing of data for the purpose of getting in contact with us is done in accordance with Article 6 Paragraph 1(f) GDPR on the basis of our legitimate interests or, if your request relates to the acceptance of a mandate or a mandate already accepted, on the basis of Article 6 Paragraph 2(b) GDPR. The personal data we collect for the use of the contact form will be erased once the query has been resolved or an order is entered into as a result, provided there are no legal or contractual requirements regarding the retention of your data beyond this point.
As a matter of form, we would point out that data transmission over the internet (e.g. communication by email) may have security vulnerabilities. Complete protection of data against unauthorised access by third parties is not possible.
You have the right to obtain information about any personal data related to you and stored by us at any time. You also have a right to the rectification, completion or erasure of your personal data or the right to restriction of processing, provided you are legally entitled to exercise these rights.
You have a right to object to the processing of your personal data under the statutory provisions. Because we process data as part of the provision of our website on the basis of a careful balance of interests, we would review any objection very carefully, and reserve the right to make enquiries regarding the particular situation in question as stipulated in Article 21 Paragraph 1 GDPR.
You have the right to lodge a complaint with the data protection supervisory authority about our processing of personal data. The competent authority in this case is the supervisory authority in which our company has its registered office:
Berlin Commissioner for Data Protection and Freedom of Information, Friedrichstrasse 219, 10969 Berlin, Germany.
We reserve the right to make changes to this Privacy Notice (last updated August 2020) so that it always meets the current legal requirements or to include changes to our services in the Privacy Notice, such as the introduction of new services. Any subsequent access to our website will then be subject to the terms of the new Privacy Notice.
In case of doubt, the German version (Datenschutzinformation) of the Privacy Notice is binding.