Privacy policy
Information on data protection
In accordance with Art. 13 of the EU General Data Protection Regulation (DSGVO), we hereby inform you about the processing of your personal data by us.
Responsible for data processing
MUNKERT & PARTNER
Steuerberater Wirtschaftsprüfer Rechtsanwälte mbB
Äußere Sulzbacher Straße 29
90491 Nürnberg
Telephone:: + 49 (0) 911 – 59 87 01
Fax: + 49 (0) 911 – 59 87 400
EMail: info@munkert.de
You can reach our data protection officer by e-mail at datenschutz@neumeier-edv.de.
1. Use of our website www.munkert.de
1.1 Data that are always processed
Server-log files
Each time the website is accessed, we automatically store access data such as the name of the Internet service provider, the operating system used, the website from which the user is visiting us, the date and duration of the visit or the name of the requested file, as well as the IP address of the end device used for security reasons, e.g. to detect attacks on our website. This data is evaluated exclusively to improve our services and does not allow any conclusions to be drawn about the person of the user. This data is not merged with other data sources.
Purpose(s) of the data processing
Technical security and defence against attempted attacks
Legal basis(s) for reading data from the user’s terminal device
§25 Para. 2 No. 2 TTDSG
Legal basis(s) for the processing of personal data
Art. 6 para. 1 lit. f DSGVO (legitimate interest in the reliable operation of the website)
Recipients or categories of recipients to whom data are disclosed
Web host
Data transfer to a third country and legal basis therefor
Does not take place
Storage period of the data or criteria for determining the storage period
14 days
Consent management tool
As we use cookies on our website that require consent, we need to manage your consent or refusal. For this purpose, we use a so-called “consent management tool” (cookie banner). This saves the settings you have made in cookies.
Purpose(s) of the data processing
Data processing consent management
Legal basis(s) for reading out/storing data from/on the user’s end device
§25 Para. 2 No. 2 TTDSG
Legal basis(s) for the processing of personal data
Art. 6 para. 1 lit. c DSGVO in conjunction with BGH ruling of 28 May 2020 – I ZR 7/16 (legal obligation)
Recipients or categories of recipients to whom data are disclosed
none
Data transfer to a third country and legal basis therefor
Does not take place
Storage period of the data or criteria for determining the storage period
Duration of the session or 365 days
WPML translation service
Purpose(s) of the data processing
Provision of our website and the services requested by the user.
Legal basis(s) for reading data from the user’s terminal device
§25 Para. 2 No. 2 TTDSG
Legal basis(s) for the processing of personal data
Art. 6 para. 1 lit. f DSGVO – Our legitimate interest in carrying out the translation requested by the user.
Recipients or categories of recipients to whom data are disclosed
none
Data transfer to a third country and legal basis therefor
Does not take place
Storage period of the data or criteria for determining the storage period
2 days
1.2 Data processed only with your consent
The following data processing only takes place if you have actively given your consent in the settings of our consent management tool (see point 1.1). The legal basis for the processing of your data is therefore Art. 6 para. 1 lit. a DSGVO. You can revoke your consent at any time by unchecking the corresponding box in our Consent Management Tool.
Data transfer to the USA
We expressly point out that with your consent, your data may be transferred to the USA. US authorities can access this data as well as data stored by the recipients outside the USA without you being informed. The transfer of your data to the USA is also covered by your consent; the legal basis is therefore Art. 49 (1) a in conjunction with Art. 6 (1) a DSGVO.
Purpose(s) of the data processing
Website analysis to optimise the offer, reach measurement, utilisation and evaluation of website interaction, conversion measurement. Provision of convenience functions and fonts.
Legal basis(s) for reading out/storing data from/on the user’s end device
§25 Para. 1 TTDSG
Legal basis(s) for the processing of personal data
Art. 6 para. 1 lit. a DSGVO (consent of the user)
Recipients or categories of recipients to whom data are disclosed
A detailed list of all recipients used can be found in our Consent Management Tool, section “Functional”.
Data transfer to a third country and legal basis therefor
Some of the service providers used transfer data to a third country. The legal basis for the transfer is Art. 49 para. 1 lit. a DSGVO (consent of the user). You can find more details in the detailed description of the respective service in our Consent Management Tool, section “Functional”.
Storage period of the data or criteria for determining the storage period
The storage period of the respective services can be found in our Consent Management Tool, section “Functional”.
1.3 Data that you transmit to us when contacting us
Purpose(s) of the data processing
Responding to your request to contact us.
Legal basis(s) for reading out/storing data from/on the user’s end device
§25 Para. 2 No. 2 TTDSG
Legal basis(s) for the processing of personal data
The legal basis is based on your request, which may include (non-exhaustive list):
- Art. 6 para. 1 lit. b DSGVO (enquiries or queries from customers)
- Art. 6 para. 1 lit. c DSGVO (legal obligation to process the request)
- Art. 6 para. 1 lit. f DSGVO (legitimate interest in responding to the request)
Recipients or categories of recipients to whom data are disclosed
When submitting your request, the web host and our IT service provider may have access to the content.
Data transfer to a third country and legal basis therefor
We do not transfer data from enquiries to a third country.
Storage period of the data or criteria for determining the storage period
We only store your personal data for as long as is necessary to process your enquiry and any resulting obligations or legitimate interests on our part.
2. Clients
Purposes of data processing
If we have received data from you, we will only process it for the purposes for which we received or collected it:
- Execution and settlement of the mandate relationship including correspondence,
- Fulfilment of our contractual and legal obligations as tax advisors, auditors and lawyers
- Processing within the scope of mutual claims arising from the consultancy contract (e.g. invoicing, claims for services, remuneration and liability, etc.)
- assertion, exercise or defence of legal claims of our clients or ourselves.
Data processing for other purposes can only be considered if the necessary legal requirements pursuant to Art. 6 (4) DSGVO are met. In this case, we will of course comply with any information obligations pursuant to Art. 13 (3) and Art. 14 (4) DSGVO.
The legal basis for the processing of personal data is Art. 6 DSGVO:
- Art. 6 para. 1 lit. b) DSGVO: Fulfilment of the mandate/advice contract,
- Art. 6 para. 1 lit. c) DSGVO: Fulfilment of the legal obligations to which we are subject as tax advisors, auditors and lawyers.
- Art. 6 para. 1 lit. f) DSGVO: As far as the data processing is necessary for the protection of legitimate interests of us or a third party; in particular, the continuous business relationship with our clients, as well as the assertion, exercise or defence of legal claims of our clients or us is in our legitimate interest.
The legal basis for the processing of special categories of personal data is Art. 9 para. 2 lit. f) DSGVO, Art. 9 para. 2 lit. b) DSGVO in conjunction with §11 para. 1 sentence 2, para. 2 sentence 2 StBerG.
To which recipients is personal data passed on?
Personal data is only transferred to third parties on your behalf and with your consent. We pass on personal data to the following recipients within the scope of the mandate relationship:
- Tax authority and courts
- Social insurance agency
- Bundesanzeiger Publishing House
- Banks, credit institutions, insurance companies and professional associations, KSK
- Contractors (e.g. data processors, IT service providers, etc.) whose services we only use insofar as they are obliged to maintain our professional secrecy as a participating person pursuant to Section 203 (3) of the German Criminal Code (StGB).
- to further recipients only after express release by the mandate
Will the data be transferred to a third country?
Data is only transferred to a third country outside the European Union (EU)/European Economic Area (EEA) if this is necessary for the execution of our mandate agreement (e.g. payment orders) or if the client instructs us to do so. We transmit data exclusively on the basis of the provisions of Articles 44 to 49 DSGVO.
How long is personal data stored?
The personal data concerned shall be deleted as soon as storage is no longer necessary to fulfil the respective processing purposes.
3. Social media channels
We maintain online presences on social networks and career platforms in order to be able to exchange information with the users registered there and to make contact in an uncomplicated manner.
In some cases, the data of users in social networks is used to conduct market research and thus pursue advertising purposes. User profiles can be created via the usage behaviour of the users, for example the indication of interests, and used to adapt advertisements to the interests of target groups. For this purpose, cookies are regularly stored on the end devices of the users, partly regardless of whether they are registered users of the social network.
In connection with the use of social media, we also use the associated messengers in order to be able to communicate with users in an uncomplicated manner. We would like to point out that the security of individual services may depend on the account settings of the user. Even in the case of end-to-end encryption, the service provider can draw conclusions about the fact that and when users communicate with us as well as possibly collect location data.
Depending on where the social network is operated, user data may be processed outside the European Union or the European Economic Area. This can result in risks for users, for example because it makes it more difficult to enforce their rights.
The processing of your data is based on Art. 6 para. 1 lit. f DSGVO.
Below you will find the operator and data protection details of the respective social network.
Facebook and Instagram
The further controller (besides us) of the data processing is:
Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland (Facebook).
We are joint data controllers according to Art. 26 DSGVO as well as the Facebook Page Insights Supplement:
https://www.facebook.com/legal/terms/page_controller_addendum
Information on data processing by Facebook can be found here:
https://www.facebook.com/privacy/explanation
Information on data processing by Instagram can be found here:
https://help.instagram.com/155833707900388
Facebook combines your IP address with other information that Facebook receives through cookies and provides us, as the operator of the Facebook page, with statistical information about the use of this Facebook page (so-called page insights). These are aggregated data that show how users interact with the page. These Page Insights may be based on personal data collected by Facebook in connection with a user’s visit to or interaction with this Facebook Page and its content. Facebook provides more information about this here: https://www.facebook.com/help/pages/insights.
We can use Page Insights to perform an anonymous evaluation of reach, page views, time spent on video posts, actions (likes, comments, sharing of posts), as well as by age, gender, and location (as indicated by users in their respective Facebook profiles). In this context, settings can be made for the evaluation of the reach or corresponding filters can be set with regard to the selection of a time period, the viewing of a specific post, and demographic groupings. This data is anonymized, aggregated and abstracted. It is therefore not possible to draw any conclusions about individuals. The evaluation serves to optimize the offer on the Facebook page for the purpose of public relations.
Further responsible (besides us) for data processing is:
New Work SE, Am Strandkai 1, 20457 Hamburg
Privacy policy: https://privacy.xing.com/de/datenschutzerklaerung
Further responsible (besides us) for data processing is:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Privacy policy: https://de.linkedin.com/legal/privacy-policy
4. Applicants
Purpose(s) of the data processing
We use your data to assess whether you are suitable for the advertised position. If recruitment takes place, we will inform you separately about the change in processing.
Legal basis(s) for reading out/storing data from/on the user’s end device
§25 Para. 2 No. 2 TTDSG
Legal basis(s) for the processing of personal data
Art. 6 para. 1 lit. b DSGVO.
Recipients or categories of recipients to whom data are disclosed
We do not forward your application documents to third parties. If you apply to us via our application form on our homepage or by e-mail, the service providers supporting us will have access to it due to technical necessity. We only use carefully selected service providers who are based in Germany and are contractually obliged to comply with data protection regulations.
All data is encrypted during storage and transmission in accordance with the state of the art and is therefore protected from unauthorised access.
Data transfer to a third country and legal basis therefor
We do not transfer your data to a third country, nor do we use service providers who process your data in a third country.
Storage period of the data or criteria for determining the storage period
If there is no discontinuation, we will keep your data for a further period of 6 months in order to be able to defend ourselves against any legal claims on your part. This is our legitimate interest, the legal basis for which is Art. 6 para. 1 lit. f DSGVO.
Your rights as a person affected by data processing
Right to withdraw consent
If we process your data on the basis of your consent, you have the right to revoke your consent at any time with effect for the future in accordance with Art. 7 (3) DSGVO.
Right to information
You can request information pursuant to Art. 15 DSGVO about your personal data processed by us. In your request for information, you should specify your request in order to make it easier for us to compile the necessary data. Please note that your right to information may be restricted under certain circumstances in accordance with the statutory provisions (in particular Section 34 BDSG).
Right of rectification
If the information concerning you is not (or no longer) correct, you can request a correction in accordance with Art. 16 DSGVO. If your data is incomplete, you can request that it be completed.
Right to erasure
You can request the deletion of your personal data under the conditions of Article 17 of the GDPR. Your right to erasure depends, among other things, on whether the data concerning you is still needed by us to comply with legal requirements.
Right to restrict processing
Within the framework of the requirements of Art. 18 DSGVO, you have the right to demand a restriction of the processing of the data concerning you.
Right to data portability
Within the scope of Art. 20 DSGVO, you have the right to receive the data you have provided to us from us in a structured, common and machine-readable format or to have it transferred to another controller.
Right to object
If the processing of your personal data is based on Art. 6 (1) lit. f DSGVO, you have the right to object to the processing in accordance with Art. 21 DSGVO.
Right to complain
If you are of the opinion that we have not complied with data protection regulations when processing your data, you can complain to a data protection supervisory authority in accordance with Art. 77 DSGVO.
Precautionary note on the above English version
We expressly point out that in the event of any contradictory provisions in the above translated version of our information on data protection compared to the wording of our information in German, as well as gene relly in the event of other deviations in the translated version, the wording in German shall generally and primarily prevail.
Status: 12.10.2023