Privacy Policy

Provision of the website

Already at the first call of our web pages your web browser transmits usage data to our web server. This is the only way our web server can display the web page to your web browser. These usage data are contained in the HTTP / S header, are automatically sent by you and used during the duration of the page call. They include, among others:

• Date, time and duration of the call
• Name of the retrieved web page or file
• Message about successful retrieval (HTTP status code)
• Referrer URL (previously visited page)
• Browser type including version, language and operating system
• Resolution of the monitor
• IP address and the requesting provider
• Time Zone Difference to Greenwich Mean Time (GMT)
• transferred amount of data

Further information about the HTTP header can be found on Wikipedia as well as in the specification RFC 2616, there in chapter 14. Legal basis is Art. 6 para. 1 sentence 1 lit. b and f GDPR. Without usage data, it is not possible to display the website on your browser. The above-mentioned data serve the following purpose:

• Establishment of the connection to the website
• Evaluation of system security and stability
• Administrative purposes

Our websites are stored at a hosting service provider. This covers infrastructure and platform services, computing capacity, storage space and database services, additional security, including technical maintenance. This ensures the accessibility of our website.

We do not store server log files beyond the time of the delivery process.

Storage of cookies

We store cookies.

Legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. Some cookies are stored only with your explicit consent; In these cases, the legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR.

Cookies also serve the purpose of personalizing the use of the website. For example, settings already made must not be entered again when you visit again. The data processed by cookies are required for the user-specific design of the website and for its optimization. Predominant interests or fundamental rights and fundamental freedoms of third parties are not apparent.

Cookies can also be used to statistically record the use of the website and to evaluate it for the purpose of optimization. The number of visitors to the website and the frequency with which each page is accessed will then reveal whether interest in other content of a comparable nature could exist. If processed for this purpose, we will inform you separately.

Contact

You can contact us by phone, fax, e-mail or other means of communication.

Your information is voluntary. With your voluntary information, we also process the time of the request and, for technical reasons, your usage data sent in connection with the respective means of communication, such as telephone number or e-mail address. Please note that we can not respond to your request without providing contact details.

The legal basis is Art. 6 para. 1 sentence 1 lit. b GDPR, if you contact us as part of a contractual relationship or to initiate a contract. In all other cases, we process your data based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.

The purpose of the data processing is the individual communication with you, for the contract initiation or execution or the other processing of your request. Our legitimate interest is to process your request, depending on the content and purpose of the message you submit.

The personal data collected by us in connection with your contact will be deleted after your request for deletion, after revoking the consent or after completion of the request you have made, as far as there are no statutory storage obligations or rights. In the latter case we limit the processing. The storage period ends at the latest after expiry of statutory limitation periods; this is calculated according to § 199 BGB.

Note on communication via e-mail

Despite extensive technical and organizational measures to protect your data, communication via e-mail has security gaps. If you want to provide confidential information, we advise you to encrypted transmission. For this purpose, we provide PGP as encryption technology, but also a document exchange server.

For our e-mail services, we use an external provider. This covers infrastructure and platform services, computing capacity, storage space and database services, additional security, including technical maintenance. This ensures our e-mail communication.

Document Exchange Server and eKKP Patent Renewal System

The use of our document exchange server and the eKKP Renewal system is voluntary. You can use additional functions on our website. Both are used for the secure exchange of files and information.

Communication with the server is SSL-encrypted.

Functions of the Document Exchange Server:

• Individual access data (client or file specific)
• Notification functions (notification emails for information about uploads, downloads, file deletions etc.)
• Pooling (central access to individual files by several persons, meaningful for example with common applicants)
• As an alternative to web browser access, WebDAV access with compatible applications can also be enabled.

Functions of the eKKP

• Individual access data (client-specific)
• Optional security methods: TAN procedure, access only via static IP address
• Enter renewal instructions directly through the portal
• Processing status of the protection rights extensions can be viewed, in particular payment status
• Notification functions (notification e-mails for information / confirmation about given instructions)

Legal basis is Art. 6 para. 1 sentence 1 lit. b GDPR.

The purpose is platform-based communication with you. Our legitimate interest is in secure communication with our clients.

The storage of the data is governed by the respective mandate contract and the applicable tax retention periods.

Data transmission to third parties

We only transfer your personal data to third parties under the following conditions:

• You have given your consent to this, Art. 6 para. 1 sentence 1 lit. a GDPR.
• The transfer is required for the execution of a contract or the initiation of an agreement, Art. 6 para. 1 sentence 1 lit. b GDPR.
• There is a legal obligation that we are subject to, Art. 6 para. 1 sentence 1 lit. c GDPR,
• for the protection of vital interests of a natural person, Art. 6 para. 1 sentence 1lit. d GDPR,
• The processing is necessary for the performance of a task which is in the public interest or in the exercise of official authority, provided that such has been entrusted to us, Art. 6 (1) sentence 1 lit. e GDPR.
• Processing is necessary for the protection of our legitimate interests or a third party, unless the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data prevail, Art. 6 (1) sentence 1 lit. f GDPR. This includes, for example, the assertion, exercise or defense of legal claims.

Google Maps

As far as we use a map service, this is done as an extended website for displaying maps and routes as well as for route planning. We embed this application only with us. For technical reasons, usage data, including your IP address, are transmitted to a server of the provider for the use of the map service.

Legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. The use of Google Maps pursues the purpose and our legitimate interest to visualize map-dependent information or describe routes with a simple map display.

Beyond the provision of the website, we do not store usage data for this application.

The provider of the mapping service described here is Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, www.google.com. In third countries, ie countries outside the European Union, data protection rights comparable to EU data protection legislation may not apply. However, Google is subject to EU-US. Privacy Shield and the Swiss-U.S. Privacy Shield, which is to ensure a comparable protection. For more information about how to handle user data on Google, please see the Google Privacy Policy: https://www.google.de/intl/de/policies/privacy

jQuery

We use external code from the JavaScript framework “jQuery” – a free javascript library that provides enhanced functionality on our website. For this purpose, the scripts used (program routines) are partially downloaded by third-party servers. This happens the first time the web page is called, if the scripts are not already in your browser’s memory. The retrieval is made by servers of the jQuery Foundation.

Legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR.

The use of jQuery pursues the purpose and our legitimate interest in designing the website and loading required program routines faster from the network.

Beyond the provision of the website, we do not store usage data for this application.

The provider of the service described here is the jQuery Foundation. In third countries, ie countries outside the European Union, data protection rights comparable to EU data protection legislation may not apply.

Analysis of the website visitors(Tracking)

To analyze website visitors, we collect data that is processed in tables and graphics for better presentation.

Legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR.

The data processing for the analysis of the website visitors (tracking) takes place in the interest of a statistical collection of website visits and a needs-based design and continuous optimization of the website.

You can contradict this measure at any time (opt out).

In individual cases, we obtain a separate consent for data processing. In this case, you will receive a prior request for your consent (Opt In). The legal basis is then Art. 6 para. 1 sentence 1 lit. a GDPR.

The tracking method is described in more detail below

Tracking with Google Analytics

The analytics service Google Analytics works by means of pseudonymised usage profiles and cookies. The latter contain information about the use of this website including

• Browser type/version
• Operating System
• Referrer URL (address of previously visited website)
• Host name of the accessing computer (IP address)
• Time of server request

The IP address is not merged with other data. It is anonymized, so that an assignment is no longer possible (IP masking). This will remove the last octet of the user’s IP address before using and saving it. This results in less precision in creating geographic reports and anonymizing the website user.

The linked data will be deleted automatically after 14 months at the latest. The deletion of data whose retention period has been reached is done automatically once a month.

This way you can prevent the evaluation

The storage of cookies can be prevented by settings of your browser. The collection of the data generated by the cookie and related to the use of the website as well as the processing of this data can be prevented by a plugin which can be retrieved under the following link (https://tools.google.com/dlpage/gaoptout?hl=de)

The registration can also be prevented by clicking on the following link. An opt-out cookie is set, which should prevent the future collection of data when visiting the website on this device, as long as the cookie is present on the device; if you want to delete the cookie and continue to prevent tracking, you must set it again:
Deactivate Google Analytics.

We follow the recommendations of the data protection authorities for the use of this web analysis service. For this we have also concluded a contract for order processing with the provider.

Google Analytics is a web analytics service provided by Google LLC, 1600 Amphitheater Parkway Mountain View CA 94043, USA (“Google”). The data is transmitted to a Google server in the USA. In third countries, ie countries outside the European Union, data protection rights that are comparable to EU data protection legislation may not apply. However, Google is subject to EU-US. Privacy Shield and the Swiss-U.S. Privacy Shield. This is to ensure a comparable protection. For more information about Google Terms of Use and Privacy, please visit: https://www.google.com/analytics/terms/de.html bzw. unter: https://www.google.com/analytics/learn/privacy.html.