Eichler Kern Klein Rechtsanwälte PartG mbB (hereinafter: Eicher Kern Klein) processes personal data only in accordance with the statutory provisions, in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
This privacy policy provides information about the processing of personal data at
- the use of our website (see section 2),
- the conclusion of contracts with us (see section 3),
- your involvement as a third party - e.g. negotiating partner, opposing party - in a client relationship (see section 4),
- the application for a job (see section 5) and
- the use of Internet video telephony in contact with us (Section 6).
This privacy policy also contains information on the transfer of personal data to third parties (see section 7), the deletion of your personal data and retention periods (see section 8), your rights as a data subject (see section 9) and automated decision-making (see section 10).
1. responsible person
Responsible: Eichler Kern Klein Rechtsanwälte PartG mbB, Kleine Präsidentenstraße 3, 10178 Berlin. For further information see our imprint at: https://www.eichlerkernklein.de/impressum
2. use of our website
When you visit our website www.eichlerkernklein.de, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:
IP address of the requesting end device,
Date and time of access,
Time zone difference to Greenwich Mean Time (GMT),
Name and URL of the retrieved file,
Access status/HTTP status code,
Website from which access is made (referrer URL),
the browser used and, if applicable, the operating system of your computer and the name of your access provider.
We process the aforementioned data for the following purposes:
Ensuring a smooth connection to the website,
To ensure a comfortable use of our website,
Evaluation of system security and stability and
for other administrative purposes.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
We also use cookies when you visit our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.
Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity. On the one hand, the use of cookies serves to make the use of our website more convenient for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.
The data processed by cookies are necessary for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
The storage of cookies can be deactivated in the system settings of your browser. However, this may mean that you will not be able to use all the functions of our website.
Our website contains links to social networks. These services are operated exclusively by third-party providers. If you follow the links, information may be transmitted to these providers. The purpose and scope of the data collection and the further processing and use of the data by the provider as well as your rights in this regard and setting options to protect your privacy can be found in the data protection information of the respective provider. You can find this here:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
https://policies.google.com/privacy?hl=de&gl=de
LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA
http://www.linkedin.com/legal/privacy-policy/
Xing AG, Gänsemarkt 43, 20354 Hamburg, DE
3. conclusion and execution of contracts
Insofar as this is necessary for the conclusion or performance of contracts with you (legal mandate), we process personal data relating to you. The legal basis for processing in this case is Article 6(1)(b) GDPR. The purpose of the processing is to establish and implement the contractual relationship with you. This requires the provision of your personal data. You are not obliged to provide your personal data, but if you do not provide it, it will not be possible to establish and execute the contractual relationship. Otherwise there are no consequences for you.
In addition, insofar as this is necessary for the initiation or execution of client relationships, we also process data of persons with whom no (direct) client relationship exists. For example, we may process your data if you are a representative, contact person or employee of a company that is our client. In this case, the legal basis is our legitimate interest in the initiation or execution of the respective client relationship (Art. 6 para. 1 letter f GDPR).
In the areas of law in which we provide advice, the processing of special categories of personal data within the meaning of Art. 9 (1) GDPR is generally not necessary and does not take place. However, if the processing of special categories of personal data is exceptionally necessary for the purposes mentioned in this section 3, the legal basis is the assertion, exercise or defense of legal claims (Art. 9 para. 2 letter f GDPR).
4. assertion of our clients' interests against you; other involvement as a third party in a client relationship
If we assert the interests or claims of our clients against you (or against a company whose representative or contact person you are) in or out of court, we may process your personal data in the course of this. The same applies if you (or a company whose representative, employee or contact person you are) are involved in any other way in or out of court (e.g. as a business or negotiating partner, as an intervening party, as a party to a dispute, or as an employee of an authority or a court) and the processing is necessary for the performance of the client relationship.
The legal basis for processing your personal data in this context is Article 6(1)(f) GDPR. Our legitimate interest lies in effectively implementing the interests and claims of our clients. This interest also requires direct contact and the collection of data from opposing parties, potential witnesses and other third parties relevant to case processing.
In the areas of law in which we provide advice, the processing of special categories of personal data within the meaning of Art. 9 (1) GDPR is generally not necessary and does not take place. However, if the processing of special categories of personal data is exceptionally necessary for the purposes mentioned in this section 4, the legal basis is the processing for the establishment, exercise or defense of legal claims (Art. 9 para. 2 letter f GDPR).
Data will only be passed on to third parties in this context insofar as this is necessary for the execution of the mandate and insofar as other legal requirements to be observed exist.
5. application for a job
We process your personal data as part of the application process, regardless of whether the application is made by email or post. Below you will find information about the legal basis, the purposes and, if applicable, the legitimate interests and the necessity of processing your personal data.
The legal basis for the processing of your personal data is § 26 para. 1, para. 8 sentence 2 BDSG or § 26 para. 2, para. 8 sentence 2 BDSG. The processing is carried out for the purpose of establishing contact and assessing your suitability for the position for which you are applying. It is not possible to apply to Eichler Kern Klein without providing personal data. You are neither obliged to apply to Eichler Kern Klein nor to provide personal data. If you do not provide us with any personal data, we will not be able to consider your application. Otherwise there will be no consequences for you.
6. internet video telephony in contact with us
You may receive an invitation from us by e-mail or other means to a meeting, a telephone call or a meeting via Internet video telephony using software provided by a third-party provider. If you participate in such meetings, information may be transmitted to the respective provider.
The legal basis for processing your personal data in this context is Article 6(1)(b) GDPR (if we are holding the meeting for the performance of a contractual relationship with you) or Article 6(1)(f) GDPR (if we are holding the meeting for other business purposes); in the latter case, our legitimate interest lies in being able to use functional and widely used tools for video conferencing and the associated Voice over IP telephony in order to communicate efficiently with external partners.
We do not record video conferences and telephone conferences. Video conferences are secured according to the state of the art, but are not end-to-end encrypted.
Insofar as we use the "Microsoft Teams" service for the technical implementation, the following applies: The service provider we use is Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA). Microsoft processes personal data of the participants on our behalf, in particular the IP address, the content of the conversation, e-mail addresses, names and, if applicable, other service-related data, and stores these for the duration of the video conference or, if you use Microsoft Teams beyond this, for the duration of use. Microsoft is duly obliged by us as a processor to comply with data protection. The provider may also process the data outside the European Economic Area. In order to ensure a level of data protection that complies with the EU General Data Protection Regulation (GDPR), we have agreed the EU standard data protection clauses with Microsoft in accordance with the EU Commission's decision (2010/87/EU). You can find more information on processing by Microsoft at: https://docs.microsoft.com/de-de/microsoftteams/teams-privacy.
If we use another provider, you will find further information on the purpose and scope of data collection and the further processing and use of the data by the provider as well as your rights in this regard and setting options to protect your privacy in the data protection information of the respective provider.
7. transfer of personal data to third parties
We only transfer personal data to third parties insofar as this is necessary for the provision of our service or is required by law in this context. Within the scope of the purposes mentioned here, personal data is forwarded to service providers who work for us and support us in particular in the provision of services. In addition to their legal obligation to comply with all data protection regulations, these service providers are bound by further contractual data protection requirements. In particular, this includes an obligation as a processor in accordance with Art. 28 GDPR.
In particular, we pass on personal data to the following categories of service providers, insofar as this is necessary for the purposes stated in this data protection declaration within the scope of the law firm's operations:
- Accounting, financial institutions, tax and legal advice
- IT service and infrastructure, e.g. for the application process
- IT support and maintenance
- Data destruction and facility services
- Provider of software for Internet video telephony
Otherwise, we only transfer personal data to other recipients if we have legal permission to do so or if you have given your prior consent. You can revoke any consent you have given at any time with effect for the future. We only pass on your data to government agencies within the scope of legal obligations or on the basis of an official order or court decision and only insofar as this is permitted under data protection law.
8. deletion
We delete your personal data as soon as it is no longer required for the aforementioned purposes of processing, in the event of an objection there are no compelling legitimate grounds on the part of Eichler Kern Klein to the contrary or in the event of a revocation there is no other legal basis for the processing. In certain cases, e.g. if there is a legal obligation to retain data, your personal data will initially be blocked and deleted upon expiry of the retention period.
Personal data from an application process will be stored until a decision is made and then deleted after six months at the latest or, if your application is successful, transferred to your personnel file.
9. your rights
As a data subject, you have the right to obtain confirmation as to whether or not personal data concerning you is being processed by Eichler Kern Klein and, where that is the case, the right to access this personal data (Art. 15 GDPR), the right to rectification of inaccurate data (Art. 16 GDPR), the right to erasure (Art. 17 GDPR) and the right to restriction (blocking) of your data (Art. 18 GDPR). In addition, in the case of processing on the basis of Art. 6 para. 1 lit. e or f GDPR, you can object to the processing (Art. 21 GDPR), whereby you must provide a special reason, except in the case of direct advertising. If you have provided this data, you can request the transfer of the data (Art. 20 GDPR). If the processing is based on consent within the meaning of Art. 6 sentence 1 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR, you can revoke this consent at any time for the future (Art. 7 para. 3 GDPR). You also have the right to contact the competent data protection supervisory authority (Art. 77 GDPR).
Whether and to what extent these rights exist in individual cases and under what conditions they apply is defined by law in the specified standards.
If you have any questions or complaints about data protection at Eichler Kern Klein, we recommend that you first contact us using the contact details in section 1).
10. no automated decision in individual cases
We do not use your personal data for automated individual case decisions within the meaning of Art. 22 para. 1 GDPR.
11. amendment of the privacy policy
New legal requirements, business decisions or technical developments may require changes to our privacy policy. The privacy policy will then be adapted accordingly. You will always find the latest version on our website.
Status: April 2025