© Jan/stock.adobe.com
© Jan/stock.adobe.com

Data protection

To navigate, please click directly on a sub-item or scroll down.

 

1. Name and contact details of the controller and the company data protection officer

1.1  Responsible bodies
1.2   Data Protection Coordinator (DPC)
1.3  Data Protection Officer (DPO)

 

2. Collection and storage of personal data and the nature and purpose of their use

2.1  When visiting the website
2.2  When subscribing to our newsletter
2.3  When using our e-mail address for applications (bewerbung@snp.law)

 

3. Transfer of data

 

4. Cookies

 

5. Services from third-party providers

 

6. Protection of minors, data subject rights

6.1  Protection of minors
6.2  Data subject rights

 

7. Right of objection

 

8. Data protection

 

9. Links to other websites

 

10. Further information

 

11. Up-to-dateness and amendment of this privacy policy

  

 

DATA PROTECTION DECLARATION

 

We use your data in compliance with the applicable data protection regulations. This privacy policy informs you which personal data we collect and store from you. You will also receive information on how your data is used and what rights you have with regard to the use of your data.

 

1.  Name and contact details of the controller and the company data protection officer

 

1.1  Responsible bodies

 

Responsible body within the meaning of the data protection laws (except for notaries):

SNP Schlawien Partnerschaft mbB Rechtsanwälte Steuerberater (hereinafter: SNP)
Türkenstraße 16, 80333 Munich, Germany
  +49 89 28634-0
  +49 89 28634-300
  muenchen@snp.law

 

Responsible body within the meaning of the data protection laws for the notary Laurin Bludau:

Laurin Bludau
Uhlandstraße 2, 60314 Frankfurt am Main, Germany

  +49 69 610908-0
  +49 69 610908-45
  laurin.bludau@snp.law

 

Responsible body within the meaning of the data protection laws for the notary Joachim Garbe-Emden:

Joachim Garbe-Emden
Kurfürstendamm 33, 10719 Berlin, Germany

  +49 30 253780-31
 +49 30 253780-50
  joachim.garbe-emden@snp.law

 

Responsible body within the meaning of the data protection laws for the notary Sarah Scherwitzki:

Sarah Scherwitzki
Kurfürstendamm 33, 10719 Berlin, Germany

  +49 30 253780-38
  +49 30 253780-50
  sarah.scherwitzki@snp.law

 

 

1.2  Data Protection Coordinator (DPC)

 

Dr. Petra Ostermaier
  +49 89 28634-250
  +49 89 28634-300
  datenschutz@snp.law (for enquiries that do not have highly confidential content)

 

 

1.3  Data Protection Officer (DPO)

 

Data Protection Officer (DPO):

Robert Niedermeier
 +49 171 2440099
 +49 89 66002036
  mail@legislator.de (for enquiries that do not have highly confidential content)

 

Data protection officer of the notaries Laurin Bludau (Frankfurt am Main), Joachim Garbe-Emden (Berlin) and Sarah Scherwitzki (Berlin):

Robert Niedermeier
(contact details as above)

 

 

2.  Collection and storage of personal data and the nature and purpose of their use

 

2.1  Visiting the website

 

When you visit our website www.snp.law, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website from which the access was made (referrer URL),
  • browser used and, if applicable, the operating system of your computer and
  • the name of your access provider.

 

The aforementioned data is processed by us for the following purposes

  • Ensuring a smooth connection to the website,
  • Ensuring a comfortable use of our website,
  • analysing system security and stability and
  • for other administrative purposes.

 

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR, according to which processing is lawful if ‘processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child’. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.

 

We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this in sections 4 and 5 of this privacy policy.

 

 

2.2  When subscribing to our newsletter

 

If you have expressly consented to the sending of our newsletter with information on current news, important legal developments and other content relevant to you or your company by e-mail and with information or invitations to events/trade fairs etc. in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, we will use your e-mail address to send you our newsletter on a regular basis. To receive the newsletter, it is sufficient to provide your title, first name and surname as well as a valid e-mail address; in addition, at least one area of law must be selected. This data is stored.

 

We use ‘CleverReach’, a service provided by CleverReach GmbH & Co. KG, CRASH Building, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter referred to as ‘CleverReach’) to send our newsletter. For this purpose, the data provided by you when registering for the newsletter will be passed on to CleverReach. CleverReach uses this data to send and statistically analyse the newsletter on our behalf. The newsletter emails contain tracking pixels for this purpose. These are one-pixel-sized image files that are stored on our websites. This allows your user behaviour to be tracked, in particular whether you have opened the newsletter email or which hyperlinks in the email you have clicked on. In addition, technical information such as the time of access, your IP address, data on your web browser and operating system are recorded. This data is only collected in pseudonymised form. The data is not linked to any other personal data. This means that it cannot be directly linked to a person.

 

We use CleverReach on the basis of your consent. The legal basis is Art. 6 para. 1 sentence 1 lit. a GDPR. We also use CleverReach for marketing and optimisation purposes, in particular to analyse the use of our newsletter and to continuously improve individual functions and offers as well as the user experience for you. By statistically evaluating user behaviour, we can improve our offering and make it more interesting for you as a user. This is also our legitimate interest in processing the above information. The legal basis in this respect is Art. 6 para. 1 sentence 1 lit. f GDPR.

 

You can withdraw your consent at any time. You can also object to the above processing at any time by unsubscribing from the newsletter.

 

We have concluded an order processing agreement with CleverReach in order to oblige CleverReach to process the transmitted data only in accordance with our instructions and to comply with the applicable data protection regulations.

 

Further information on Cleverreach’s data protection can be found at https://www.cleverreach.com/de/datenschutz/.

 

 

2.3  When using our e-mail address for applications (bewerbung@snp.law)

 

We process the applicant data only for the purpose and in the context of the application process in accordance with the legal requirements. Applicant data is processed to fulfil our (pre-)contractual obligations in the context of the application procedure within the meaning of Art. 6 para. 1 lit. b. GDPR, Art. 6 para. 1 lit. f. GDPR, insofar as data processing becomes necessary for us, e.g. in the context of legal proceedings (Section 26 BDSG also applies).

 

The application procedure requires that applicants provide us with the applicant data. If we offer an online form, the necessary applicant data is labelled, otherwise it results from the job descriptions and basically includes personal details, postal and contact addresses and the documents belonging to the application, such as cover letter, CV and certificates. Applicants can also voluntarily provide us with additional information.

 

By submitting their application to us, applicants consent to the processing of their data for the purposes of the application process in accordance with the type and scope set out in this privacy policy.

 

Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are voluntarily communicated as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b GDPR (e.g. health data, such as severely disabled status or ethnic origin). Insofar as special categories of personal data within the meaning of Art. 9 para. 1 GDPR are requested from applicants as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. a GDPR (e.g. health data if this is necessary for the exercise of the profession).

 

If provided, applicants can send us their applications using an online form on our website. The data is transmitted to us in encrypted form in accordance with the state of the art.

 

Applicants can also send us their applications by e-mail. Please note, however, that e-mails are generally not sent in encrypted form and applicants must ensure that they are encrypted themselves. We therefore cannot accept any responsibility for the transmission path of the application between the sender and receipt on our server and therefore recommend using the online form or sending by post. Instead of applying via the online form and e-mail, applicants still have the option of sending us their application by post.

 

In the event of a successful application, we may process the data provided by applicants for the purposes of the employment relationship. Otherwise, if the application for a job offer is unsuccessful, the applicant’s data will be deleted. Applicants’ data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time.

 

Subject to a justified cancellation by the applicant, the deletion will take place after a period of six months after the vacancy has been filled so that we can answer any follow-up questions about the application and fulfil our obligations to provide evidence under the Equal Treatment Act.

 

Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

 

If the application has been approved for inclusion in the talent pool, the applicant data will be processed for a maximum period of eighteen months after receipt of the application and then deleted.

 

 

3.  Transfer of data

 

Your personal data will not be transferred to third parties for purposes other than those listed below.

 

We only pass on your personal data to third parties if:

  • you have given your express consent to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
  • the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
  • in the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
  • this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.

 

4.  Cookies

 

We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.

 

Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity.

 

On the one hand, the use of cookies serves to make the use of our website more convenient for you. For example, we use session cookies to recognise that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

 

In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for a specified period of time. If you visit our site again to use our services, it is automatically recognised that you have already visited us and which entries and settings you have made so that you do not have to enter them again.

 

The data processed by cookies is required for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. We use a cookie banner to inform you in advance about the setting of cookies and ask you to give your consent if this is required by law. The legal basis for this is Art. 6 para. 1 sentence 1 lit. a GDPR.

 

However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.

 

We currently use the following cookies, which can be managed in the cookie banner:

  • Borlabs Cookies: Saves the settings of visitors selected in the Borlabs Cookies cookie box.
  • OpenStreetMap: Used to unlock OpenStreetMap content and display maps.
  • Matomo: Cookie from Matomo for website analysis, generates statistical data on how the visitor uses the website (see 5. Analysis tools)

 

 

5.  Services from third-party providers

 

We use the third-party services listed below on our website. The services are primarily used to ensure the functionality and security of our website. Other services may also be used for tracking measures and to optimise our website. If necessary, we will obtain your consent in accordance with Art. 6 para. 1 lit. a GDPR. If this is not required, the services are used on the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR.

 

Borlabs

Provider: Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg, Germany

Purpose: Presentation and functionality of the Consent Manager in accordance with legal requirements

Legal basis: legal obligation

Privacy policy: https://de.borlabs.io/datenschutz/

 

AddtoAny

Provider: AddtoAny

Purpose: Integration of sharing buttons into the website

Legal basis: legitimate interest

Privacy policy: https://www.addtoany.com/privacy

 

CDNJS

Provider: Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich, Germany

Purpose: To increase the security and delivery speed of the website

Legal basis: legitimate interest

Privacy policy: https://www.cloudflare.com/privacypolicy/

 

JSDelivr

Provider: Prospect One, Volentio JSD Limited, Suite 2a1, Northside House, Mount Pleasant, Barnet, England, EN4 9EB

Purpose: Content Delivery Network (CDN)

Legal basis: legitimate interest

Privacy policy:

 

Matomo

Provider: InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand

Purpose: Analysis and statistical evaluation of the use of the website, the personal data is stored pseudonymised or anonymised

Legal basis: Consent

Privacy policy: https://matomo.org/privacy-policy/

 

 

 

6.  Protection of minors, data subject rights

 

6.1  Protection of minors

 

Persons under the age of 18 should not transmit any personal data to us without the consent of their parents or legal guardians.

 

We do not request personal data from children and young people.

 

 

6.2  Data subject rights

 

You have the right

  • in accordance with Art. 7 para. 3 GDPR, to withdraw your consent given to us at any time. The revocation does not affect the legality of the processing carried out on the basis of your previous consent. The only consequence of the revocation is that we may no longer continue the data processing that was based on this consent in the future;
  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details;
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us
  • in accordance with Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims
  • in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller
    to lodge a complaint with a supervisory authority
  • in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our office.

 

 

7.  Right of objection

 

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.

 

If you wish to exercise your right of cancellation or objection, simply send an email to datenschutz@snp.law.

 

 

8. Data protection

 

We use the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can recognise whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

 

We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

 

 

9. Links to other websites

 

We link to websites of other providers not affiliated with us (third parties).

 

If you click on these links, we no longer have any influence on what data is collected and used by these providers (third parties). You can find more detailed information on data collection and use in the privacy policy of the respective provider (third party).

We accept no responsibility for the collection and processing of data by third parties.

 

You can recognise third-party websites by the fact that they always open in a separate window in your browser. In contrast, new pages of our website always open in a new tab of your browser.

 

 

10. Further information

 

Your trust is important to us. Therefore, we are always available to answer your questions regarding the processing of your personal data. If you have any questions about data protection on our website that are not answered by this privacy policy, or if you would like more detailed information on a specific point, please contact datenschutz@snp.law at any time.

 

 

11. Up-to-dateness and amendment of this privacy policy

 

It may become necessary to amend this privacy policy as a result of the further development of our website and services or due to changes in legal or official requirements. You can access and print out the current privacy policy at any time on the website at http://www.snp.law/datenschutz.html.

 

(Status: April 2024)