Privacy
Information on the processing of personal data (privacy policy)
1. Data Controller
The data controller within the meaning of the General Data Protection Regulation (GDPR) for the processing of personal data described below is: Lausen Rechtsanwälte Partnerschaft mbB Residenzstraße 25 80333 Munich Email: kanzlei@lausen.com Phone: +49 89 24 20 96‑0 Fax: +49 89 24 20 96‑10 (hereinafter referred to as “we”). Contact details of the Data Protection Officer: Attorney-at-law Frank Michael Höfinger Lausen Rechtsanwälte Partnerschaft mbB Residenzstraße 25 80333 Munich Email: hoefinger@lausen.com Phone: +49 89 24 20 96‑0 Fax: +49 89 24 20 96‑102. Scope of this Privacy Policy
This privacy policy informs you in accordance with Articles 13 and 14 GDPR about the processing of personal data:- prior to concluding a contract (e.g., an assignment we issue to you as a supplier/service provider, or an engagement agreement or participation in an event);
- when we enter into a contract with you, during that contractual relationship and thereafter; or when you are an employee of one of our contractual partners (including clients), in relation to that contractual relationship;
- if you apply to us for employment, a clerkship referendariat, or internship, for the purpose of conducting the application process;
- when using our websites.
3. Subject and purposes of personal data processing
3.1 Provision of data when contacting us When you contact us, we process the personal data you provide (e.g., your name and contact details such as address, email address, telephone number) to handle your inquiry or matter. The legal basis is Article 6(1)(b) GDPR (pre-contractual measures), insofar as your inquiry is aimed at possibly concluding a contract with us (including an engagement agreement). 3.2 Contractual partners and clients We collect the following data: salutation, name, if applicable company, contact details such as address, telephone number, email address; information relevant to the decision on contract conclusion (submitted documents; information we obtain from third parties or public sources); and other information you provide; during the contractual relationship, also further required data such as identifiers at tax authorities and data that arises in the course of the contractual relationship. The purpose of processing this data is to carry out pre-contractual measures and, if we enter into a contract with you, to fulfill the contract. We process this data:- to identify you as the contractual partner (client);
- for contractual performance, including invoicing.
- advising and representing you as a client;
- asserting or defending claims on your behalf;
- corresponding with you and third parties (e.g., the opposing party, authorities, courts) on your behalf.
If we do not collect the stated data via a contact form on our website or directly via email, we use the “guestoo” service from Code Piraten GmbH (https://www.guestoo.de/) for participant management (sending invitations and booking the event).
When registering through “guestoo”, cookies are set, as described in detail at https://www.guestoo.de/datenschutzerklaerung/. Cookies that are technically required for functionality are deleted after seven days. Cookies that record whether the cookie notice for “guestoo” has already been shown to a user are deleted after twelve months. The use of cookies is based on our legitimate interest in providing a user‑friendly service for participant management and using secure technologies. The legal basis is Article 6(1)(f) GDPR.
3.4 Photo/video recordings and recordings at events If we take photos or make video recordings at an in-person event or record image and sound at an online event, we process such recordings either based on legitimate interests (legal basis: Article 6(1)(f) GDPR), namely for internal documentation and archiving of the event, or based on the consent of the persons depicted (legal basis: Article 6(1)(a) GDPR).
We always inform you in connection with a specific event as to the purposes for which recordings are made and used, e.g., to make a webinar recording available to other interested parties, and obtain your consent if required, which can be revoked at any time. If we rely on legitimate interests when processing recordings, you have the right to object to such interests (see section 8).
9. Privacy notice regarding our presence on the LinkedIn platform
9.1 Joint responsibility The provider of the social network “LinkedIn” is LinkedIn Ireland Unlimited Co., Wilton Place, Dublin 2, Ireland (hereinafter: LinkedIn). If you use the “LinkedIn” platform, LinkedIn itself regularly processes personal data about you as an independent data controller. We have no insight into LinkedIn’s data processing and no influence over it. You can find LinkedIn’s privacy policy here: https://de.linkedin.com/legal/privacy-policy If you visit our company presence on the “LinkedIn” platform, we are jointly responsible with LinkedIn for the processing of your personal data in connection with that visit under Article 26 GDPR. We have concluded an agreement on joint responsibility with LinkedIn in accordance with Article 26(1) GDPR, which you can view here: https://legal.linkedin.com/pages-joint-controller-addendum
9.2 Applicability of the above information With regard to the data protection responsibility assumed by us, the above statements apply mutatis mutandis to our presence on the “LinkedIn” platform.
9.3 Purpose, categories of personal data, and legal basis for data processing 9.3.1 Processing by us We use the “LinkedIn” platform for public relations, to market our services and products, and to stay in contact with our business partners and clients. For this purpose, we process the data entered by users themselves on our presence (e.g., user name, account content, comments). The legal basis for this processing is Article 6(1)(f) GDPR. Our legitimate interest in processing this data arises from our desire to present our law firm and our services to interested individuals on social networks. We do not share any of this personal data with third parties. The data is deleted by the social networks once it is no longer needed for the described purpose. You can object to this legitimate interest at any time.
9.3.2 Processing by LinkedIn Which of your personal data LinkedIn processes when you visit the “LinkedIn” platform and our presence on it, on what legal basis, whether this data is processed outside the EU, and how long LinkedIn retains this data, please refer to LinkedIn’s privacy policy and other information provided by LinkedIn. Please note that LinkedIn, according to its own statements, analyzes the behavior of visitors to our LinkedIn presence and generates reports (so-called page insights). LinkedIn processes a selection of your personal data for this purpose. The page insights made available to us by LinkedIn are aggregated and anonymized. They do not allow us to draw conclusions about individual users of the “LinkedIn” platform or individual visitors to our LinkedIn presence. How LinkedIn uses the data from visits to our LinkedIn presence for its own purposes, to what extent activities are attributed to individual users, how long LinkedIn stores this data, and whether data from visits is shared with third parties is not fully and clearly disclosed by LinkedIn and is unknown to us. In the joint responsibility agreement concluded with LinkedIn under Article 26 GDPR, LinkedIn, as the platform operator, acknowledges shared responsibility regarding Insight data and assumes significant data protection obligations concerning information to data subjects, data security, and notification of data breaches. LinkedIn is the primary contact for data subject rights. LinkedIn has direct access to the required information and can provide disclosures.
Date of last update: 17 July 2024