Welcome to our website. On this subpage you will find information on how we process your personal data when you visit this website.
If you use our legal services, you will find further information on how we process your data here.
If you use the services of our notaries, you will find the relevant privacy policy here.
You can view our data protection information for applications here.
I. Name and address of the data controller
This website is operated by Kümmerlein, Simon & Partner Rechtsanwälte mbB (here also: “KÜMMERLEIN” or “we”), which is also solely responsible for any data processing operations associated with the visit, unless otherwise stated below.
You can reach us at the following contact details
Messeallee 2
45131 Essen, Germany.
Phone: 0201 1756-600
Fax: 0201 1756-666
E-mail: info@kuemmerlein.de
II. Contact details of the data protection officer
You can reach our company data protection officer at
E-mail: datenschutz@kuemmerlein.de.
III. Visiting the website
Every visit to our website inevitably involves the collection of certain, predominantly technical information, which may, however, be classified as personal by case law. This includes the IP address, device identification, browser characteristics, operating system details, language settings, referring URLs, duration of visits and pages viewed. The aforementioned data is also stored in the log files of our IT system. However, this data is not stored together with your other personal data.
This processing is based on our legitimate interest in providing a functional, user-friendly and secure website. In addition, the processing is carried out in order to provide the competent authorities with the information required for criminal prosecution in the event of a cyber attack, to assert legal claims, to compile statistics and to further develop and improve our offer and our services. The legal basis for processing in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR. In addition, processing takes place if we are obliged to do so due to statutory or legal obligations (e.g. due to retention and documentation obligations under tax and commercial law). The legal basis for processing in this case is Art. 6 para. 1 sentence 1 lit. c GDPR.
Data is only transferred to other recipients to our hosting provider (see section XII below), which hosts the website on our behalf. A transfer to third countries outside the EU/EEA or to international organizations is not intended, unless otherwise stated in this privacy policy.
We only store your data for as long as is necessary to fulfill the above-mentioned processing purposes. We generally store the above-mentioned data for a period of seven days. Data will only be stored for longer after prior anonymization of the data or if we need the data for longer to investigate an attack on our information technology systems or to prosecute or to secure evidence in compliance with the applicable limitation periods (in particular to prove claims) (e.g. in the event of an (impending) legal dispute) and/or due to a statutory or official retention obligation (e.g. due to tax or commercial law retention and documentation obligations).
IV. Cookies
This website uses cookies. Cookies are text files that are placed and stored on a computer system via an Internet browser.
Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters that can be used to assign websites and servers to the specific internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish your individual browser from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.
The use of technically necessary cookies (“essential cookies”) serves our legitimate interest in ensuring the functionality and security of the website and/or the purpose of fulfilling legal obligations. The legal basis for the processing of your data by essential cookies is therefore Art. 6 para. 1 sentence 1 lit.a, Art. 6 para. 1 sentence 1 lit. f GDPR, § 25 para. 2 no. 2 TDDDG.
In addition, we also use technically unnecessary cookies (“optional cookies”), which are optional and are used for website analysis and marketing purposes, among other things. We only use optional cookies if you have given us your consent to do so. The processing of personal data collected with the help of cookies is therefore also based on your consent. In addition, this data is also processed on the basis of our legitimate interest in analyzing and evaluating visits to our website and carrying out marketing measures. The legal basis for the processing of your data by optional cookies is therefore Art. 6 para. 1 sentence 1 lit. a, Art. 6 para. 1 sentence 1 lit. f GDPR, § 25 para. 1 TDDDG.
The recipients of the data are the web administrator, the hosting service provider we use and other external service providers who work on our behalf and with whom we have concluded an order processing agreement in accordance with Art. 28 GDPR. Cookies from third-party providers are also set via our website. For the use of such cookies, please refer to the data protection information of the respective third-party provider. In this context, the data collected by cookies may also be passed on to third parties.
You can prevent the setting of cookies by our website at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. You additionally edit the cookie settings here. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. In this case, however, not all functions of our website may be fully usable.
We use the following essential cookies:
Cookie name
uc_settings and/or ucString
Expiration period
1 year
This cookie stores opt-in and opt-out data (including controller ID, setting/settings ID, language, setting version and affected services with consent history), referrer URL, user agent, user settings, consent/consent ID, time of consent, consent type, template version, banner language, IP address and geographical location. Is set in the user’s browser when they visit the website for the first time. This cookie is used for the Usercentrics Consent Management Platform service and serves the purpose of complying with legal verification and documentation obligations (e.g. verification obligations pursuant to Art. 7 para. 1 GDPR for consents given) and providing a functional and particularly user-friendly website.
We use the following optional cookies:
Cookie name
zft-sdc
Expiry date
1 year
This cookie stores metadata (inputs, source, etc.) of a session used by full tracking. Set in the visitor’s browser when they visit the website containing the code/snippet. This cookie helps Zoho PageSense to recognize whether it is the first request to the server. This also identifies the entry page and contains source information for the session calculation.
Cookie name
zsc{projectkey}
Expiration date
1 year
This cookie is stored in the visitor’s browser when they visit the website containing the code/snippet. It is set when a new session is started in full tracking. It is used by Zoho PageSense to identify the current session for full tracking.
Cookie name
zab_g_{exp_key}
(stores a random alphanumeric string of length 7 or 32)
Expiry date
session
This cookie stores details such as the test key, variation key and additional user data (e.g. browser used, user agent information, etc.) for your A/B test. It is set when the A/B test is configured with a custom destination or a pageview destination. It is used by Zoho PageSense to track successful conversions from custom goals/pageviews achieved in the same domain.
Cookie name
zabUserID
Expiry date
1 year
This cookie stores a unique user key for each visitor who reaches the website. It is set when a user visits for the first time. It is used by Zoho PageSense to identify individual visitors along with the status of new and returning visitors.
Cookie name
zabSplit
Expiration period
5 seconds
This cookie stores details such as the experiment key, the variation key and additional user data (e.g. browser used, user agent information, etc.) for split URL experiments. It is set when the test URL and the variation URL are from the same domain and when a particular variation is selected for the split URL experiment. It is used by Zoho PageSense to send the experiment and visitor information to the server during redirection.
Cookie name
zabBucket
Expiry date
1 year
This cookie stores details such as the experiment key and the corresponding variation key for A/B or split URL experiments. It is set when the user’s URL matches the experiment URL and the audience is satisfied. It is used by Zoho PageSense to consistently serve visitors the same variation of the test they have seen before.
Cookie name
zabHMBucket
Expiry date
1 year
This cookie stores the experiment key for heatmap experiments. It is set when the user’s URL matches the experiment URL. It is used by Zoho PageSense to identify the exact heatmap experiment to be tracked on the website.
Cookie name
zabBotScore
Expiry date
1 year
This cookie stores the bot’s score. This value is used to identify whether a visitor is a bot or a real user. It helps Zoho PageSense recognize and manage automated traffic. It is set when a new user visits the website for the first time. The purpose of this cookie is to recognize and control bot traffic. It helps protect the data accuracy of the website and ensures that bots do not interfere with analytics.
Cookie name
zpsfa_{exp_key}
(stores a random alphanumeric string of length 7 or 32)
Expiry date
1 month
This cookie stores a visit key for the first-time visitor who lands in a funnel analysis experiment. It is set when the user’s URL matches the experiment URL or when the custom event of a funnel step is triggered. It is used by Zoho PageSene to derive the path taken by the visitor and the number of visitors dropped off when passing through the funnel.
Cookie name
zfa{exp_key}
(stores a random alphanumeric string of length 7 or 32)
Expiry date
1 hour
This cookie stores details such as the test key and user data (e.g. browser used, user agent information, etc.) for form analysis experiments. It is set if the test URL and the conversion URL are from the same domain. It is used by Zoho PageSense to track actual user conversions.
Cookie name
zsr {expkey}
(stores a random alphanumeric string of length 7 or 32)
Expiry date
2 hours
This cookie stores a session key for experiments for session recording. It is set when a user’s URL matches the experiment URL. It is used by Zoho PageSense to associate all user actions performed within a session.
Cookie name
zabme
Expiry date
1 year
This cookie stores the experiment key of an A/B or split URL experiment that we have selected from a mutually exclusive group. It is set as soon as a mutually exclusive group is created. It is used by Zoho PageSense to run the same experiment within a mutually exclusive group that the user has already seen.
Cookie name
zsd{sessionId}
(stores a random alphanumeric string of length 32)
Expiry date
2 hours
This cookie stores the session metadata for session recording experiments. It is set once after the user starts interacting with the website session. It is used by Zoho PageSense to identify the start time, the time of the last interaction and the number of pages visited for a session.
Cookie name
ps_payloadSeqId:
Expiration date
2 hours
This cookie stores the sequence key for session recording experiments. It is set as soon as the user starts interacting in the session of a web page. It is used by Zoho PageSense to track duplicate payloads (session data).
Cookie name
zabPZBucket
Expiry date
1 year
This cookie stores the experience key for your personalization experiments. It is set when the experience is selected in a personalization experiment and is of the redirect type. It is used by Zoho PageSense to consistently provide visitors with the same experience they have seen before.
Cookie name
zPersonalization
Expiration period
1 year
This cookie stores details such as the experiment key, the experience key and user data (e.g. the browser used, user agent information, etc.) for personalization experiments. It is set if the experiment URL and the experience URL are from the same domain and are of redirect type. It is used by Zoho PageSense to send the experiment and visitor information to the server during redirection.
Cookie name
zia_ {projectkey}
expiration date
1 year
This cookie stores the identity API details of individual visitors to the website. It is set as soon as the website owner provides the user information. It is used by Zoho PageSense to avoid sending the same visitor data to the server multiple times.
Cookie name
zpc< projectkey>
Expiry date
1 year
This cookie stores the visitor’s response to the website’s privacy policy. It is set when the visitor makes a privacy consent selection. It is used by ZohoPageSense to ensure that the banner is not shown again to the same visitor on your website.
Cookie name
zps_permission_status
Expiry date
1 year
This cookie stores the value of the visitor’s granted and denied permission for web push notification experiments. It is set when the user lands on the website where push notification is enabled. It is used by Zoho PageSense to identify and update the push notification status of the subscriber on the web page.
Cookie name
{exp_id}+”Popup”
(stores a random alphanumeric string of length 7 or 32)
Expiry date
1 year
This cookie stores details such as the frequency with which a popup is displayed, the time at which the cookie was created and the status of the popup completion by individual visitors on the website. It is set when the user’s URL matches the URL type configured in the popup experiment. It is used by Zoho PageSense to track user impressions and whether they respond to a popup.
Cookie name
zps-tgr-dts
Expiry date
1 year
This cookie stores the metadata of the session on the website. It is set when a user visits the website for the first time. It is used by Zoho PageSense to activate your experiment based on a specific trigger condition.
Cookie name
zpspolls_” +{exp_id}
expiration date
1 year
This cookie stores details such as the frequency with which a survey was displayed, whether the survey was completed and the time at which it was created for a survey experiment. It is set when the user’s URL matches the query URL. It is used by Zoho PageSense to track user actions such as impressions, answered/unanswered surveys and other survey parameters.
Cookie name
zpsPollsBucket
Expiration period
1 year
This cookie stores the experiment key for survey experiments. It is set when the user’s URL matches the query URL. It is used by Zoho PageSense to identify the survey experiment to be served on the website.
Cookie name
“zpspb” + {exp_id}
Expiration date
1 year
This cookie stores details such as the frequency with which a popup was displayed, the time at which the cookie was created and the status of popup completion by individual visitors to your website. It is set when the user’s URL matches the popup URL. It is used by Zoho PageSense to track user actions such as impressions and answered/unanswered popups.
Cookie name
zpsPopupBucket
Expiration period
1 year
This cookie stores the experiment key for a pop-up experiment. It is set when the user’s URL matches the popup URL. It is used by Zoho PageSense to identify the popup experiment to be served on the website.
Cookie name
“zpssr” + {current time in milliseconds}
Expiration time
Immediately after identification of the domain
This cookie stores the same cookie name and cookie value for a session recording experiment. It is set when the session recording experiment is executed on the website. It is used by Zoho PageSense to identify the top-level domain in the session recording experiment.
Cookie name
{variation_url}
Expiry date
1 year
This cookie stores experiment details such as experiment key, variation key and additional user data (e.g. browser used, user agent information, etc.) for split URL tests. It is set when the variations are from different domains and when a particular variation is selected in the split URL experiment. It is used by Zoho PageSense to identify the exact split experiment and the corresponding variation URL for returning visitors.
Cookie name
zab_ {expkey}
expiration date
1 hour
This cookie stores details such as the test key and user data (e.g. browser used, user agent information, etc.) for your form analysis experiments. It is set when the experiment URL and the confirmation URL are from different domains and when the user submits the form. It is used by Zoho PageSense to track actual form conversions.
Cookie name
{zps_push}
Expiry date
None
This cookie stores text content such as bannerpopup, sidepopup and nopopup if push notifications are activated in the PageSense project. It is set when the user lands on the website with the push notification. It is used by Zoho PageSense to decide whether to show or hide the notification box and keep its position on a website.
Cookie name
payloadQueue
Expiration period
None
This cookie stores the session data on a local storage system for session recording experiments. It is set when the user starts interacting on a web page. It is used by PageSense to resend canceled or failed requests and to prevent data loss during a session recording.
Cookie name
{expId}
(stores a random alphanumeric string of length 7 or 32)
Expiry date
None
This cookie stores the experiment key and additional user data (e.g. browser used, user agent information, etc.) on a local storage system for session recording experiments. It is set as soon as the user starts interacting on a web page. It is used by Zoho PageSense to identify and track a visitor’s data during a session.
Cookie name
tabUid
Expiry date
Session
This cookie stores the tab ID for session recording experiments. It is set when a user makes the visit for the first time. It is used by Zoho PageSense to associate all user actions performed on the respective tabs for a session.
Cookie name
zc_cmp
Expiry date
1 minute
Set when a user visits the website with a registration form via a campaign. Used by Zoho Campaign to retrieve the campaign ID and other details of an email campaign.
Cookie name
perPageRecords
Expiry date
30 days
Set when a user visits the contact list view. Used by Zoho Campaign to manage user accounts and sessions when users view their contact list.
Cookie name
zc_dis
Expiry date
12 months
Is set when a pop-up is displayed on the website. Used by Zoho Campaign to remember when a pop-up form should be displayed on a web page.
Cookie name
Alphanumeric cookies with a length of 10 characters (e.g.: 467aef24c7)
Expiry date
Session
Is set when a request is sent to Zoho Campaigns. Used by Zoho Campaigns for load balancing and session binding.
Cookie name
csr* / *csr* / *csr, zmpncc, zfccn
Expiry date
Session
Is set when a request is sent to Zoho Campaigns. Used for website security.
Cookie name
JSESSIONID
Expiry date
Session
Is set when a request is sent to Zoho Campaigns. Used by Zoho Campaigns as the HTTP session token ID.
Cookie name
ZCAMPAIGN_CSRF_TOKEN
Expiration period
Session
Is set when a request is sent to Zoho Campaigns. Used by Zoho Campaigns to prevent (CSRF) Cross Site Request Forgery attacks.
Cookie name
HrwJobApplicationmanagementSession
Expiration period
Session
This cookie represents the session of the person currently using the job portal. It is used by HRworks and is necessary for the operation of the job portal, as it allows users to be distinguished from one another during a session.
Cookie name
AWSALB and AWSALBCORS
These cookies are required by HRworks, among other things, to assign certain information to the correct server instance. In addition, they are necessary for uploading application documents to ensure that this process runs smoothly for applicants.
V. Zoho Campaigns (Newsletter)
You have the option of voluntarily registering for our newsletter with your e-mail address. After registering for the newsletter, you will first receive an e-mail asking you to confirm your registration once again. Only after this confirmation can we send you the newsletter. This so-called double opt-in procedure ensures that no unauthorized persons can register for the newsletter using other people’s e-mail addresses. We also collect your IP address as well as the time of registration and confirmation in order to be able to prove a legitimate registration process and send you a (possibly personalized) newsletter.
We use the Zoho Campaigns service of the provider Zoho Corporation GmbH, Trinkausstraße 7, 40213 Düsseldorf (“Zoho”) to send newsletters.
In addition to cookies, Zoho Campaigns also uses tracking pixels. Tracking pixels (also known as web beacons) are placed in the text of the newsletter. When the newsletter is opened, a one-pixel image is downloaded. This sends a request to Zoho’s servers, which allows the email address and IP address of the recipient, the date and time the newsletter was opened and certain clicks to be tracked.
The functions in the newsletter allow us to analyze your interactions with the newsletter (e.g. whether and how often you have opened a newsletter or clicked on a link contained therein or performed certain actions after clicking on such a link, as well as from where and what type of end device you received the newsletter). Zoho Campaigns also enables target group-oriented personalization of newsletters. Further information on the functions of Zoho Campaigns can be found at https://www.zoho.com/de/campaigns/features.html.
The legal basis for processing in the context of the newsletter is your voluntary consent, Art. 6 para. 1 sentence 1 lit. a GDPR. Insofar as your data is processed to log a legitimate registration process, this processing is also carried out on the basis of Art. 6 para. 1 sentence 1 lit. c GDPR.
In addition to our marketing managers, Zoho is also the recipient of the data. Zoho processes the data on our behalf on the basis of an order processing contract in accordance with Art. 28 GDPR. Data is also transferred to and processed in third countries outside the EU/EEA. This data transfer takes place on the basis of the standard contractual clauses of the EU Commission. Further information on the processing of your data can also be found in the provider’s data protection information at www.zoho.com/privacy.html, https://www.zoho.com/campaigns/gdpr/ and www.zoho.com/campaigns/cookie-policy.html.
We store your data that we have collected for the purpose of sending the newsletter until you withdraw your consent and unsubscribe from the newsletter. You can unsubscribe from the newsletter at any time via the corresponding links in the newsletters. You can also withdraw your consent at any time by contacting us using the contact options listed above and unsubscribing from the newsletter in this way. After unsubscribing from the newsletter, the data will be deleted. This does not affect data that we have also collected for other purposes.
VI. Zoho PageSense
We use the Zoho PageSense service from the provider Zoho (see section V above) on our website to record and analyze user behavior on our website. The service collects and processes the following visitor data in particular: anonymized usage data (e.g. page views, clicks and general use of the website (so-called heat maps)), anonymized IP address, web browser information, locations and referrer URL.
Zoho PageSense enables us to analyze the use of the website anonymously and thus optimize the content of our website and our marketing activities. For example, Zoho PageSense allows us to find out which content is accessed particularly frequently or rarely and which content visitors interact with particularly frequently or rarely. Zoho PageSense also enables us to play out dynamic content based on visitor data and browsing behaviour and to evaluate and personalize it on the basis of A/B tests. Zoho PageSense also uses cookies. You can find more information about the functions of Zoho PageSense at https://www.zoho.com/de/pagesense/.
Zoho PageSense is used on the basis of your voluntary consent. The legal basis is therefore Art. 6 para. 1 sentence 1 lit. a GDPR.
In addition to our marketing managers, Zoho is also the recipient of the data. Zoho processes the data on our behalf on the basis of an order processing contract in accordance with Art. 28 GDPR. Data is also transferred to and processed in third countries outside the EU/EEA. This data transfer takes place on the basis of the standard contractual clauses of the EU Commission. Further information on the processing of your data can also be found in the provider’s data protection information at www.zoho.com/privacy.html, https://www.zoho.com/pagesense/gdpr.html and https://www.zoho.com/pagesense/cookie-policy.html.
We do not store any personal data as part of Zoho PageSense, as this is immediately anonymized and only processed and stored in anonymized form for website analysis.
VII. Zoho CRM
We use the Zoho CRM service from the provider Zoho (see section V above) on our website to manage our customer and client relationships. Zoho CRM enables us to manage and organize data about existing or potential customers and clients and to analyze and optimize our customer and client-related processes. Further information on the functions of Zoho CRM can be found at www.zoho.com/de/crm/features.html?source_from=crm-header.
Zoho CRM is used on the basis of our legitimate interest in (1) managing and organizing our customer and client relationships as well as our customer and client communication in a particularly efficient and customer and client-oriented manner, (2) managing and organizing inquiries and orders in a particularly efficient and customer and client-oriented manner and (3) analyzing and optimizing our associated processes. The legal basis is therefore Art. 6 para. 1 sentence 1 lit. f GDPR. The legal basis for the processing of the data is also Art. 6 para. 1 sentence 1 lit. b GDPR, insofar as the processing is necessary for the performance of a contract and/or for the implementation of pre-contractual measures.
In addition to our marketing managers and the departments responsible for the respective customer and client relationship or the respective inquiry or order, the recipient of the data is also Zoho. Zoho processes the data on our behalf on the basis of an order processing contract in accordance with Art. 28 GDPR. Data is also transferred to and processed in third countries outside the EU/EEA. This data transfer takes place on the basis of the standard contractual clauses of the EU Commission. Further information on the processing of your data can also be found in the provider’s data protection information at www.zoho.com/privacy.html and https://www.zoho.com/crm/gdpr/.
We store your data via Zoho CRM for as long as is necessary to achieve the purpose of processing. We generally store our customer and client data for the entire duration of the respective customer/client relationship. Client-related data is generally stored for the entire duration of the client relationship. However, data may be stored for longer on the basis of our legitimate interest in order to store data for the purpose of providing evidence in accordance with the applicable limitation periods (in particular to provide evidence of the services we have provided) or in the event of an (impending) legal dispute. The legal basis for processing in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR. Furthermore, data may be stored for a longer period of time if we are required to store it due to a statutory or official retention obligation (e.g. due to retention and documentation obligations under tax and/or commercial law). The legal basis for processing in this respect is also Art. 6 para. 1 sentence 1 lit. c GDPR.
VIII. E-mail contact
You have the option of contacting us by email. In this case, the (contact) data transmitted by you on a voluntary basis will be processed in order to process your inquiry or request.
The processing takes place on the basis of our legitimate interest in enabling electronic communication with us by e-mail and being able to process your request or concern efficiently by electronic means. The legal basis in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR. The legal basis for the processing of the data is also Art. 6 para. 1 sentence 1 lit. b GDPR, insofar as the processing is necessary for the performance of a contract and/or for the implementation of pre-contractual measures.
We store your data for as long as is necessary to achieve the purpose of processing. Deletion generally takes place when the respective conversation has ended. This is generally the case when it can be inferred from the circumstances that the matter in question has been conclusively clarified and your inquiry or request has been processed. However, data may be stored for longer on the basis of our legitimate interest in order to store data for the purpose of providing evidence in accordance with the applicable limitation periods (in particular to provide evidence of the services we have provided) or in the event of an (impending) legal dispute. The legal basis for processing in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR. Furthermore, data may be stored for a longer period of time if we are required to store it due to a statutory or official retention obligation (e.g. due to retention and documentation obligations under tax or commercial law). The legal basis for processing in this respect is also Art. 6 para. 1 sentence 1 lit. c GDPR.
IX. Online application form
We offer you an online application form to voluntarily submit your application online. As part of the online application portal, we collect the personal data requested from you (name, first name, gender, academic title, address details, phone numbers, email address, final grades, potential starting date), the source of the job advertisement, the content of your message, and the content of the attachments you submit (e.g., résumé, cover letter, certificates).
We use this data to decide on the conclusion of employment contracts. The legal basis for processing your data is Section 26 (1) Sentence 1 of the German Federal Data Protection Act (BDSG), and Article 6 (1) Sentence 1 lit. b of the GDPR. The processing of the data also serves our legitimate interest in handling and responding to your application in a particularly simple, efficient, applicant-friendly, and secure manner, in analyzing and optimizing our digital application process, in asserting our own legal claims if necessary, defending ourselves in legal disputes, and detecting any criminal offenses. The legal basis for this is also Article 6 (1) Sentence 1 lit. f of the GDPR, and Section 26 (1) Sentence 2 BDSG. Furthermore, data processing occurs when we are required to do so by statutory or legal obligations (e.g., retention and documentation obligations under tax and commercial law). The legal basis for this is Article 6 (1) Sentence 1 lit. c of the GDPR. Where special categories of personal data are processed, this is done on the basis of Article 9 (2) lit. b GDPR and Section 26 (3) BDSG.
Recipients of the data are the employees of our HR department and the departments of our firm involved in the application process. For handling applications, we use the applicant management software HRworks, which is operated by HRworks GmbH (Waldkircher Str. 28, 79106 Freiburg, “HRworks”). Therefore, the data from your application is processed by HRworks on our behalf based on a data processing agreement pursuant to Article 28 GDPR. HRworks also uses cookies. The data processed by HRworks may also be stored and processed on servers located in third countries outside the EU/EEA (specifically in Israel and the USA). An adequacy decision by the European Commission exists for Israel. Data transfers to the USA are based on the EU-U.S. Data Privacy Framework (recipients are certified under this agreement) and the EU Commission’s standard contractual clauses. For more information about data protection, please refer to the privacy policy of HRworks GmbH.
If an employment relationship is not established, we will regularly delete the data within three months after the conclusion of the application process. You may voluntarily consent to us retaining your application data beyond this period so that we may contact you at a later date with a potentially suitable future job offer. The legal basis for this processing is Article 6 (1) Sentence 1 lit. a GDPR.
The use of the online application form is voluntary. You may also apply through other means (e.g., by mail).
X. Online forms for notaries
Our website is linked to a button for online data entry, which you can use to send us data via an online form. If you use this online service from NotarNow (LegalNow GmbH, Lena-Christ-Straße 2, 82031 Grünwald, www.notarnow.de/datenschutz/), your details, including the contact details you provide there, will be automatically stored on the NotarNow servers for a short time for the purpose of processing the request and in the event of follow-up questions and then forwarded to us. Data transmission is encrypted using transport encryption via Secure Socket Layer (SSL/TLS).
The data is stored solely for the purpose of processing or contacting the data subject. The data will not be passed on to other third parties. The legal basis for the processing of the data is Art. 6 para. 1 sentence 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para.1 sentence 1 lit. f GDPR) or on your consent (Art. 6 para. 1 sentence 1 lit. a GDPR), if this has been requested.
We will retain the data you provide on the online form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions – in particular retention periods under tax and/or commercial law – remain unaffected.
When using the “cache” function, your online form entries are encrypted and stored anonymously for 30 days. If the online form is not sent to us within these 30 days, the form entries will be deleted automatically. A request for deletion on your part is not necessary in this case.
XI. Usercentrics Consent Management Platform
We use the consent management service Usercentrics Consent Management Platform of Usercentrics GmbH, Sendlinger Str. 7, 80331 Munich (this service hereinafter referred to as “Usercentrics”). Usercentrics enables us to obtain and manage consent for data processing from website visitors. The service transmits your consent data to Usercentrics GmbH, which processes the data on our behalf on the basis of order processing in accordance with Art. 28 GDPR. The following consent data is collected by the service: opt-in and opt-out data, referrer URL, user agent, user settings, consent ID, time of consent, consent type, template version, banner language, IP address and geographical location. Usercentrics also uses cookie technologies and stores cookies in your browser.
Your data is processed for the purpose of complying with statutory verification and documentation obligations (e.g. verification obligations pursuant to Art. 7 (1) GDPR for consents given). The legal basis for the processing in this respect is Art. 6 para. 1 sentence 1 lit. c GDPR. In addition, the processing is based on our legitimate interest in providing a functional and particularly user-friendly website. The legal basis for the processing in this respect is also Art. 6 para. 1 sentence 1 lit. f GDPR.
The consent data will be stored for one year and then deleted immediately.
For further information on the processing of your data, please refer to the Usercentrics GmbH privacy policy: https://usercentrics.com/de/datenschutzerklaerung/.
XII. Hosting provider
Our website is hosted on the servers of jweiland.net e.K., owner: Jochen Weiland, Echterdinger Straße 57 Gebäude 9, 70794 Filderstadt (“Hosting Provider”). When you use our website, the data collected when you visit our website is therefore transmitted to the hosting provider. However, the hosting provider acts on our behalf as a processor in accordance with Art. 28 GDPR. The use of the hosting provider as a processor is based on our legitimate interest in using a provider specializing in hosting services in order to enable the functional, particularly secure and user-friendly operation of our website. The legal basis for the processing is therefore Art. 6 para. 1 sentence 1 lit. f GDPR.
XIII. No automated decision-making (including profiling)
We do not intend to use data collected from you for automated decision-making (including profiling).
XIV. No obligation to provide data
You are not legally or contractually obliged to provide us with your personal data. However, if you do not do so, we will not be able to make our website available to you without restriction, answer your inquiries to us or conclude a contract with you.
XV. right of withdrawal
You can withdraw your consent to the processing of your personal data at any time. To do so, you can use the above-mentioned contact options (e.g. by sending an informal email to info@kuemmerlein.de). Please note that the withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Furthermore, we reserve the right to continue processing on another applicable legal basis even after consent has been withdrawn.
XVI. Your other rights
You have the following additional rights with regard to your personal data:
– Right of access, Art. 15 GDPR
– Right to rectification, Art. 16 GDPR
– Right to erasure, Art. 17 GDPR
– Right to restriction of processing, Art. 18 GDPR
– Right to data portability, Art. 20 GDPR
– Right to object to the processing, Art. 21 GDPR
In addition, you have the right to lodge a complaint with the supervisory authority if you believe that the processing of your personal data violates applicable data protection law.