Ihr Webbrowser ist veraltet!

Sie versuchen diese Webseite mit einem nicht mehr unterstützten Browser aufzurufen.
Es kann daher zu Darstellungsfehlern oder einer fehlerhaften Bedienung der Webseite kommen.
Bitte aktualisieren Sie Ihren Browser.

Klicken Sie, um dieses Fenster zu schließen.

Data protection notice

Information in accordance with Art. 13, 14 of the General Data Protection Regulation

We, the KSB INTAX v. Bismarck Rechtsanwälte Wirtschaftsprüfer Steuerberater PartGmbB (hereinafter referred to as either “KSB INTAX” or “Controller”), take the protection of personal data seriously and respect the applicable data privacy regulations, in particular the provisions of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (“Bundesdatenschutzgesetz” (BDSG)). We would like to inform you about how your personal data are processed and which rights you have in connection therewith.

A. Data Protection Notice for Clients and Business Partners

Information concerning the processing of personal data from clients and business partners can be found here:

B. Data Protection Notice for the Website, E-Mail Contacts, E-Mail Newsletter and Direct Marketing

I. Controller

Controller in the sense of the GDPR and other national data protection acts of the EU Members States as well as other provisions of data protection law is:

KSB INTAX v. Bismarck

Rechtsanwälte Wirtschaftsprüfer Steuerberater PartGmbB

Lüerstr. 10-12

D-30175 Hannover

Telephone: +49 (0) 511 - 854 04 - 0

Fax: +49 (0) 511 - 81 58 74

E-Mail: zentrale(at)ksb-intax.de

Website: www.ksb-intax.de

Full contact information (Impressum) can be found here:

www.ksb-intax.de/en/contact/imprint/

II. Contact Information of the Data Protection Officer

The contact information for the data protection officer of the controller is:

datenschutz@ksb-intax.de

III. Contact Information of the Regulatory Body

The State Commissioner for Data Protection of Lower Saxony, Barbara Thiel

Prinzenstr. 5

30159 Hannover

Telephone: +49 (0) 511 - 120 4500

E-Mail: poststelle@lfd.niedersachsen.de

 

IV. General

1. Scope of Data Processing

We collect and use personal data of our users in principle only if this is necessary for the provision of a functional website as well as for our content and our services. The collection and usage of our users’ personal data only takes place where the processing of the data is permitted by statutory provisions or where the user has granted its consent.

2. Legal Basis for the Data Processing

Where we receive the consent of a user for processing operations of personal data on our website, point (a) of Art. 6 paragraph 1 GDPR provides the legal basis for the processing of personal data.

For the processing of personal data necessary for the fulfillment of a contract where the user is a party to such, point (b) of Article 6 paragraph 1 GDPR is the legal basis. This also applies to processing operations that are necessary for the performance of a quasi-contractual obligation (“vertragsähnliches Schuldverhältniss”) or for pre-contractual obligations (“vorvertragliche Maßnahmen”).

If the processing of personal data is necessary for the fulfillment of legal obligations, to which our company is subject, point (c) of Article 6 paragraph 1 GDPR is the legal basis.

If the processing is necessary for the preservation of a legitimate interest of our company or of a third party, and where the interests, fundamental rights and fundamental freedoms of the user affected do not outweigh such, then point (f) of Article 6 paragraph 1 GDPR is the legal basis for the data processing (so-called weighing of interests).

In addition to the above, further statutory legal grounds exist for the processing of personal data that we, where applicable, concretely name below.

3. Length of Storage

The personal data of the users will be erased or made unavailable as soon as the purpose of the storage no longer exists. Storage can furthermore take place where this is provided for by the European or national legislators in EU regulations, acts or other regulations applicable to our company. Data will also be made unavailable or erased when storage deadline expires in one of the provisions named except where the continued storage is necessary for the execution of a contract or for contractual performance.

4. Transfer of Personal Data

When we transfer personal data, we do this exclusively to service providers that support us with the fulfillment of the purposes named above. These companies may only use your personal data as processors for the fulfillment of their tasks within the scope of our assignment and are obligated to observe the applicable data protection provisions. The processors with whom we work are:

  • Windrich & Sörgel, Färberstraße 14, 30453 Hanno 
  • hosting.de GmbH, Franzstraße 51, 52064 Aachen

No other transfer of personal data takes place to third parties.

5. Place of Data Processing

The processing of your personal data that we store takes place exclusively within states belonging to the European Economic Area.

V. Processing of Personal Data

1. Provision of the Website and Generation of Log Files

a) Description of Data Processing

Each time our website is accessed, our system automatically records data and information that are sent by the computer system and browser of the computer accessing the site.

The following data are collected thereby:

  • Information about the type of browser and the version used
  • The operating system of the user
  • The IP address of the user
  • Date and time of access
  • The websites from which the user’s system reaches our website

 

Storage of these data together with the personal data of the user does not take place.

b) Legal Basis for the Data Processing

The legal basis for the temporary storage of the data and the log files is point (f) of Article 6 paragraph 1 GDPR.

c) Purpose of the Data Processing

The storage of log files takes place in order to ensure the functionality of the website. Furthermore, the data serve to help us optimize the website and to ensure the security of our IT-systems. An evaluation of the data for marketing purposes does not take place in this context. These purposes also provide our legitimate interest in the processing of the data as per point (f) of Article 6 paragraph 1 GDPR.

d) Length of Storage

The data will be erased as soon as they are no longer necessary for the fulfillment of the purpose for which they were collected. In the case of the storage of data in log files, this is the case after 7 days, at the latest.

e) Possibility to Object to Processing and Rectify

The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. As a result, the user has no right to object.

2. Email Contact

a) Description of Data Processing

On our website, it is possible to contact us through the email addresses provided. In such cases, the personal data of the user sent with the email (name and email address) will be stored.

No transfer of this data to third parties takes place in this context. The data are used exclusively for the processing of the conversation.

b) Legal Basis for the Data Processing

The legal basis for the processing of the data is point (f) of Article 6 paragraph 1 GDPR. Where the goal of the contact is to conclude a contract or a similar obligation, point (b) of Article 6 paragraph 1 GDPR is additionally the legal basis.

c) Purpose of the Data Processing

The processing of personal data serves us solely for the processing of your contact request. In the case of a contact request, this is also the necessary legitimate interest for the processing of the data.

d) Length of Storage

The data will be erased as soon as they are no longer necessary for the fulfillment of the purpose for which they were collected. This is the case for personal data sent per email when the corresponding conversation with the user is concluded. The conversation is concluded when it can be assumed from the surrounding circumstances that the situation in question has been conclusively clarified.

e) Possibility to Object to Processing and Rectify

If a user contacts us per email, it can object to the storage of its personal data at any time. The objection can be made by communication to the contact information contained above (see item B. I. of the Data Protection Notice). In case of an objection, the conversation with the user will not be able to be continued and we will erase all personal data saved in the course of the contact request.

3. Direct Applications

a) Description of Data Processing

If you use our form for direct applications on our website for sending your application, the information requested (first name, last name, email address, message, uploaded documents) will be sent to us.

The data will be used exclusively for the processing of your application.

b) Legal Basis for the Data Processing

The legal basis for the processing of the data after the direct application has been sent by the applicant by means of the form provided are point (b) of Article 6 paragraph 1 GDPR, Sec. 26 paragraph 1 of the German Data Protection Act (“BDSG”) (taking steps to enter into an employment contract).

c) Purpose of the Data Processing

The collection of the data serves the processing of the direct application in the scope of the review of the potential establishment of an employment relationship as well as to establish contact with the applicant.

d) Length of Storage

The data of the applicant will only be stored until the application process is completed and the retention deadline of six months after delivery of a rejection has been exceeded.

e) Possibility to Object to Processing and Rectify

The applicant can in principle object to the storage of its personal data at any time. The objection can take place by means of notification to our contact information above under item B. I. of the Data Protection Notice. If the data are necessary for the fulfillment of a contract, then the prior erasure of the data is only possible if contractual and/or statutory obligations do not prevent the erasure.

4. Emai Newsletter

a) Description of Data Processing

Where you register for the receipt of our email newsletter (which inter alia includes invitations to our company events or to our tax circular), we use your email address for the purpose of sending you the newsletter and/or circular.

b) Legal Basis for the Data Processing

The legal basis for the processing of the data is in the case of the consent of the user point (a) of Art. 6 paragraph 1 GDPR.

c) Purpose of the Data Processing

The processing of the user’s contact information named above serves for the delivery of the newsletter(s).

d) Length of Storage

The email address of the user will only be stored as long as the user wishes to receive the newsletter and/or the circular.

e) Possibility to Object to Processing and Rectify

The user can withdraw its consent to the receipt of the newsletter(s) at any time. The withdrawal can be made through the link contained directly in the newsletter(s) or by notification to the contact information under item B. I. of the Data Protection Notice.

VI. Use of Cookies

We currently use no cookies on our website.

VII. Rights of Data Subjects

If your personal data are processed, you are a data subject as per the GDPR and have the following rights vis-à-vis the controller:

1. Right to Request Access to Personal Data

You are entitled to request confirmation as to whether or not personal data concerning you are being processed; if this is the case, then you are entitled to request confirmation as to what these personal data are and to the information requests listed individually contained in Art. 15 GDPR.

2. RIght to Rectification

You have the right to obtain without undue delay the rectification and/ or completion of personal data concerning yourself (Art. 16 GDPR).

3. Right to Restriction of Processing

You are entitled to require the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g. where you made an objection to the processing, then for the time required for the review of whether or not the objection can be  upheld.

4. Right to Erasure

You are entitled to demand that the personal data concerning yourself is deleted without undue delay to the degree that one of the grounds listed individually in Art. 17 GDPR is applicable, e.g. if the data are no longer necessary for the intended purposes and the statutory provisions concerning retention do not stand in the way.

5. Right to Data Portability

In accordance with Art. 20 DSGVO, you have the right to receive the personal data relating to yourself that you have provided us with in a structured, common and machine-readable format in order to be able to transmit it either yourself or - if technically feasible - through us to a third party.

6. Right to Object

You have the right to object to the processing of personal data relating to you for reasons arising from your particular situation at any time, within the framework of the requirements of Art. 21 GDPR.

8. Right to Withdraw Consent of the Data Protection Consent Notification

You have the right to withdraw your notification of consent as provided to us at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent performed before its withdrawal.

10. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to yourself infringes legal provisions of data protection law.

You can find the contact information for the regulatory body responsible for us under item B. III. of the Data Protection Notice.

10. Miscellaneous

Please note that the above rights of data subjects may be limited by EU law or applicable national law.

To exercise the above rights, please contact us using the contact information in item B. I. of the Data Protection Notice. Inquiries that are submitted to us electronically will generally be answered electronically, unless you have specified otherwise in your inquiry.

VIII. Links to other Websites

Our website may contain links to third party websites. We have no influence on the content and design of third party websites. This data protection statement thus is not applicable there.

IX. Changes to the Data Protection Notice

The continuous evolution of the internet and the changes to the applicable legal provisions that often accompanies such make adjustments to our data protection notice necessary from time to time. We will inform you here about such about such modifications.

Status: May 2019