top of page

Data Privacy Notice

Users of the website www.kronsteyn.law (hereinafter referred to as the “Website”) receive the following privacy notice in connection with and as a result of their use of the Website.

Controller

Kronsteyn

Owner Dr. Hendrik Müller-Lankow

Messeturm

Friedrich-Ebert-Anlage 49
60308 Frankfurt am Main

Germany

 

Server logfiles

For technical reasons, and in particular to ensure a secure and stable website presence, data are transmitted by the user’s web browser to Kronsteyn’s web hosting provider. These so-called server log files record, inter alia: the date and time of the respective server request, the type and version of the web browser used, the operating system employed, the so-called referrer URL (the website from which the user accessed Kronsteyn’s website), the subpage (path) of Kronsteyn’s website visited by the user, as well as the IP address of the internet connection used. Storage takes place on the legal basis of Article 6(1)(f) of the General Data Protection Regulation (GDPR). Kronsteyn’s legitimate interest lies in the stability, functionality and security of its website. The data are temporarily stored by the web hosting provider in compliance with statutory provisions and are subsequently deleted.

Cookies

When using this Website, a so-called session cookie is stored on the user’s device, which is deleted as soon as the user closes their web browser. In addition, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), stores so-called third-party cookies on the user’s device as a result of the integration of Google Fonts and Google Maps (see the following section). Use of Kronsteyn’s Website is also possible without cookies. Users may disable the storage of cookies in their web browser, restrict it to certain websites, or set their browser to notify them before a cookie is stored. Users can delete cookies from their device at any time via the privacy functions of their web browser.

Google Fonts and Google Maps

The Website of Kronsteyn uses Google Fonts to display external fonts and Google Maps to display the firm’s location. These are services provided by Google. By being certified under the EU–US Data Privacy Framework (DPF), Google guarantees compliance with EU data protection requirements also when processing personal data in the United States. To enable the display of certain fonts on the Website via Google Fonts, a connection to Google servers in the United States is established when the Website is accessed. If the user calls up the Google Maps component embedded on the Website, Google stores a cookie on the user’s device via the web browser. In order to display the location of Kronsteyn and to create a directions map, user settings and data are processed, and Google servers in the United States are regularly utilised. Through the connections established to Google servers in the context of Google Fonts and Google Maps, Google is able to identify the IP address of the internet connection used and to recognise that the request originated from the Website. The legal basis is Article 6(1)(f) GDPR. The legitimate interest lies in optimising the functionality of the Website. Users may prevent the installation of the cookies used for this purpose by configuring the corresponding settings in their web browser. For details, see the preceding section on “Cookies”. The use of Google Maps and the information obtained via Google Maps is otherwise governed by the Google Terms of Service and the Additional Terms of Service for Google Maps.

Contact

When users contact Kronsteyn (e.g. via email, telephone or the contact form on the Website), the personal data provided by the user will be processed in order to handle the enquiry. The legal basis for this processing is Article 6(1)(b) GDPR (performance of a contract or steps taken prior to entering into a contract) or Article 6(1)(f) GDPR (legitimate interest in processing enquiries). The data will not be passed on to third parties. The data will be deleted once the enquiry has been conclusively dealt with, unless statutory retention obligations require longer storage.

Rights of users

Users of the Website are data subjects within the meaning of the GDPR and are therefore entitled to the following rights in relation to the processing of their personal data:

  • Right of access (Article 15 GDPR) – Users have the right to obtain confirmation as to whether or not personal data concerning them are being processed and, where that is the case, access to such personal data and information about the processing.

  • Right to rectification (Article 16 GDPR) – Users have the right to request the rectification of inaccurate personal data concerning them and to have incomplete personal data completed.

  • Right to erasure (Article 17 GDPR) – Users have the right to request the erasure of personal data concerning them without undue delay, where the statutory grounds apply (“right to be forgotten”).

  • Right to restriction of processing (Article 18 GDPR) – Users have the right to obtain restriction of processing where the statutory conditions apply.

  • Right to data portability (Article 20 GDPR) – Users have the right to receive the personal data concerning them, which they have provided, in a structured, commonly used and machine-readable format, and to transmit those data to another controller without hindrance.

  • Right to object (Article 21 GDPR) – Users have the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them which is based on Article 6(1)(e) or (f) GDPR.

  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR) – Users have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the alleged infringement, if they consider that the processing of personal data relating to them infringes the GDPR.

Supervisory authority

The competent supervisory authority for data protection matters is:

Hessian Commissioner for Data Protection and Freedom of Information (HBDI)
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Germany

Telephone: +49 (0)611 1408-0
Fax: +49 (0)611 1408-900
E-Mail: poststelle@datenschutz.hessen.de

bottom of page