Privacy Policy

I. Information on the processing of your data pursuant to Art. 13 of the General Data Protection Regulation (GDPR)

1. Controller

The controller responsible for this website is:

Attorney Zerrin Karadag
Kollwitzstr. 76
10435 Berlin
Email: office@schwarzberglaw.de

2. Data processed for the provision of the website and the creation of log files

a. Which data is processed and for what purpose?

With every access to the content of this website, data that may allow for identification is temporarily stored. The following data is collected during this process:

  • Date and time of access

  • IP address

  • Hostname of the accessing computer

  • Website from which the access originated (Referrer URL)

  • Websites accessed via this website

  • Pages visited on this website

  • Confirmation of whether the access was successful

  • Amount of data transferred

  • Information regarding the browser type and version used

  • Operating system

The temporary storage of data is necessary for the duration of the website visit to enable the delivery of the website. Further storage in log files is conducted to ensure the functionality of the website and the security of the information technology systems. These purposes also constitute the legitimate interest in data processing.

b. What is the legal basis for processing this data?

The data is processed on the legal basis of Art. 6 (1) (f) GDPR.

c. Are there other recipients of personal data besides the controller?

The website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany [hereinafter: “IONOS”]. The hoster receives the aforementioned data as a processor. Reference is made to the privacy policy of IONOS, which can be accessed at

https://www.ionos.de/datenschutzerklaerung .

d. How long is the data stored?

Data is deleted as soon as it is no longer required to achieve the purpose of its collection. For the provision of the website, this is the case when the respective session has ended. Log files are kept directly and exclusively accessible to administrators for a maximum of 24 hours. After that, they are only indirectly available via the reconstruction of backup tapes and are definitively deleted after a maximum of four weeks.

3. Rights of the data subject

a. Right of access

In accordance with Art. 15 GDPR, access may be requested regarding the personal data processed.

b. Right to object

A right to object exists based on grounds relating to a particular situation (see Section II).

c. Right to rectification

Should the information concerning the data subject no longer be accurate, rectification may be requested in accordance with Art. 16 GDPR. Should the data be incomplete, completion may be requested.

d. Right to erasure

Erasure of personal data may be requested in accordance with Art. 17 GDPR.

e. Right to restriction of processing

In accordance with Art. 18 GDPR, the right exists to request a restriction of the processing of personal data.

f. Right to lodge a complaint

If it is believed that the processing of personal data violates data protection law, the right exists under Art. 77 (1) GDPR to lodge a complaint with a data protection supervisory authority of choice. This includes the supervisory authority competent for the controller: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen, https://www.ldi.nrw.de/kontakt/ihre-beschwerde.

g. Right to data portability

In the event that the requirements of Art. 20 (1) GDPR are met, the right exists to receive data processed automatically on the basis of consent or in fulfillment of a contract, or to have it handed over to a third party. The collection of data for the provision of the website and the storage of log files are mandatory for the operation of the website. Therefore, they are not based on consent pursuant to Art. 6 (1) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR, but are justified under Art. 6 (1) (f) GDPR. Accordingly, the requirements of Art. 20 (1) GDPR are not met in this regard.

II. Right to object pursuant to Art. 21 (1) GDPR

The right exists to object at any time, on grounds relating to a particular situation, to the processing of personal data conducted on the basis of Art. 6 (1) (f) GDPR. The controller shall then no longer process the personal data unless compelling legitimate grounds for the processing can be demonstrated which override the interests, rights, and freedoms of the data subject, or the processing serves the establishment, exercise, or defense of legal claims. The collection of data for the provision of the website and the storage of log files are mandatory for the operation of the website.

III. In-house services (Contact options)

The website provides the option to contact Schwarzberg Law via email or an inquiry form. In this context, the information provided in the email, including the contact details specified therein, will be stored and processed for the purpose of handling the inquiry and in the event of follow-up questions. This data (e.g., name, address, telephone number, email address) will not be disclosed to third parties without prior consent. No merging of this data with other data collected on this website takes place. The contact form is transmitted via TLS encryption. This encryption serves to prevent unauthorized third-party access to personal data. Processing of this data is conducted on the basis of Art. 6 (1) (b) GDPR, provided the inquiry is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on the legitimate interest in the effective handling of inquiries (Art. 6 (1) (f) GDPR). Data provided via email remains stored until a request for deletion is made, the processing is objected to, or the purpose for data storage no longer applies (e.g., after the request has been fully processed). Mandatory statutory provisions – in particular retention periods – remain unaffected.