Metallischer Hintergrund mit der Aufschrift ‚privacy‘

Privacy Policy

The responsible company in terms of the General Data Protection Regulation (GDPR) is:

Roether | Huwald GbR

Seefelder Strasse 17

86163 Augsburg

Germany


Represented By:

Dr Michael Roether

Marion Huwald


Phone: +49 (0) 821 60 99 77 66

Email: datenschutz@roether-huwald.com


Preface

Roether | Huwald GbR is very serious about the protection of your privacy regarding the processing of personal data. Therefore, we would like to explain to our website visitors how we respect your personal rights and how we treat personal data as confidential (according to German law Art. 13 Telemediagesetz TMG). Please follow the links for further information about the used definitions definitions (GDPR Art. 4) and cited articles about the lawfulness of processing (GDPR Art. 6).


Types of Processed Data

  • Website usage data (e.g. visited page, access time, browsing history)
  • Meta and communication data (e.g. device data, IP address, email)

Purpose of Processing

  • Operating our website, information about our company and our service portfolio (Management and Strategy Consulting, Executive Coaching and Graphic Design)
  • Reply on contact inquires and communication with users
  • Security measures

Scope of Processing of Personal Data

For technical reasons we process data of our users to ensure a secure, stable and functional website and its contents. Processing of personal data usually occurs only after the user has given their consent. An exception applies in the situation when the consent cannot be obtained beforehand and the processing of data is permitted by law due to statutory obligations.


Lawfulness of Processing of Personal Data

  • When the data subject has given his or her consent, Art. 6 Para. 1 lit. (a) (GDPR) serves as legal basis
  • For precontractual reasons or fulfilment of a contract to which the data subject is party, Art. 6 Para. 1 lit. (b) (GDPR) serves as legal basis.
  • As far as the processing of personal data is for compliance with a legal obligation Art. 6 Para. 1 lit. (c) (GDPR) serves as legal basis.
  • In the case of vital interests of the data subject or another natural person, Art. 6 Para. 1 lit. (d) (GDPR) serves as legal basis.
  • If the processing of personal data is necessary to ensure the legitimate interests of our company (controller) or a third party, so long as these interests do not override the fundamental rights and freedoms of the data subject, Art. 6 Para. 1 lit. (f) (GDPR) serves as legal basis.

Internet Provider

Our internet provider is a German company (netcup GmbH with data centres in Germany) with whom we have signed a ‘Processor’ contract according to Art. 28 (GDPR).


Data Which Will Be Transmitted When Visiting Our Website (Server Log Files)

Each visit to our website will be recorded on the server in a log file, which contains for example: your browser type and version, your operating system, the website from which you came (referrer url), hostname of your device, date and time, IP address and the visited webpage. We only store access data without reference to personally identifiable information and a combination with other data sources will not be made.


The recording of the server log files ensures a secure, stable, functional and optimised website. There is no evaluation of the data for marketing purposes. IP addresses will be anonymised for statistical reasons. The server log data will be automatically deleted by the provider after 14 days. The legal basis for the temporary storage of the data in the log file is Art. 6 Para. 1 lit. (f) (GDPR). The recording of the server log file data is absolutely necessary for operating the website.


Cookies

Our website does not use Cookies.


JavaScript Libraries, Bootstrap and Web Fonts

Our website uses JavaScript libraries, Bootstrap and Web Fonts, which are exclusively loaded from our provider’s data centres based in Germany. The JavaScript libraries, Bootstrap and Web Fonts are used to ensure a responsive website, including for older browsers and for accessibility on different devices (smartphones, tablets, desktop computers, etc.).


SSL Encryption

For security purposes our website uses SSL encryption. An encrypted connection is signalled by a lock symbol in the address bar of the browser and a switch from ‘http://’ to ‘https://’. When SSL encryption is active the transmitted data cannot be read by third parties.


Email

We want to inform you that data transmission on the Internet (for example by communicating via email) has security problems. A complete protection of data to prevent third party access is not possible. However, we take care to protect your data according to the current state of technology. The data will only be processed for communication with you. In this context, we do not transfer data to third parties.


Legal basis for the processing of data for email purposes is Art. 6 Para. 1 lit. (f) (GDPR). If the aim of the email conversation is to prepare or sign a contract, then Art. 6 Para. 1 lit. (b) (GDPR) serves additionally as legal basis.


Your data will be deleted when communication with you has ceased, meaning when the concerned issue has been conclusively clarified.


You have the option at any time to revoke your consent to processing of your personal data. In order to do so please send us a short letter by mail to the address provided above with a copy of your identity card as proof of authorisation. In such a case we cannot continue the conversation and all your personal data will be deleted.


Data Sharing

We generally do not share your personal data with third parties. We do not share your data for marketing and advertising purposes.


Data Processing Outside the European Union

Our data processing occurs only within the European Union.


Data Protection Supervisor

As mentioned above we are very serious about data protection and your right to privacy. However, we are not legally bound to name a data protection supervisor.


Your Rights

You have the right of access concerning your stored personal data, the data sources and recipients as well as the purpose of processing. Information about your stored data can be requested by mail to the address provided above. In order to identify yourself please include a copy of your identity card. Furthermore, you have the right of rectification, the right to object, the right to restrict data processing, the right to erasure (right to be forgotten) as well as the right to data portability, which will be granted in the scope of the legal obligations.


Erasure of Data

We erase personal data when there are no compelling requirements for the continuance of data storage. A compelling requirement might be that the data are necessary to fulfil a contract or to examine, grant or repel claims under warranty and guarantee. In the case of legal requirements and obligations your personal data can only be deleted after expiry of the legal storage period, at the earliest.


Right of Appeal to a Regulatory Authority

You have the right to complain about the processing of your personal data by R|H to the Regulatory Authority for Data Protection.


Changes to Our Privacy Policy

We revise our privacy policy following website changes or when otherwise necessary. You will always find the most current version of our privacy policy on this web page.


Please do not hesitate to contact us if you have questions concerning our privacy policy.


Effective date: 26.02.2019