When you visit our website, personal data is collected from you. This is data that is necessary for you to be able to use our internet pages, or that enables us to take your settings and preferences into account. In addition, this is information that you yourself provide to us via the contact options offered on these pages.
We use this data to ensure the proper operation of our website and to respond to your enquiries.
In the following, we would like to inform you about which data is collected on our website and for which purposes the processing takes place. We would also like to inform you about the use of so-called "cookies" and about the analysis tools used on our internet pages and the options for allowing (or rejecting) them.
We will also inform you about your rights and the contact details of our data protection officer at the end of this data protection policy.
The provider of our website automatically collects and stores information in so-called server log files, which are automatically transmitted to us by your browser. The following information can be recorded:
(1) Browser types and versions used,
(2) The operating system used by the accessing system,
(3) The website from which an accessing system arrives at our website (the so-called "referrer"),
(4) Sub-websites which are accessed via an accessing system on our website,
(5) The date and time that the website is accessed,
(6) An Internet Protocol (IP) address,
(7) The internet service provider of the accessing system and
(8) Other similar data and information that serve to avert danger in the event of an attack on our information technology systems.
When using this general data and information, we do not draw any conclusions about your identity. Rather, this information is needed to
(1) deliver the contents of our website correctly,
(2) optimise the content of our website and the advertising for it,
(3) ensure the permanent functioning of our information technology systems and the website technology, and
(4) provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.
Therefore, we evaluate this data and information on a statistical basis, with the aim of increasing data protection and data security within our enterprise, and with the aim of ensuring an optimal level of protection for the personal data we process. The anonymous data of the server log files is stored separately from any personal data you provide. This data is not combined with other data sources. However, if there is any indication of the illegal use of our website, it is possible for us to check this data retrospectively.
Insofar as the cookies are necessary to display the website properly, this is done so in our legitimate interest (Art. 6  Letter f General Data Protection Regulation [GDPR]).
So-called session cookies are used. These are automatically deleted when you close the browser. These save a so-called session ID used to attribute different requests from your browser to the joint session. The session cookies are deleted when you log out or close the browser.
However, cookies may also be used on the website for the purpose of analysing user behaviour or for marketing purposes. However, this use only takes place if you have given us your consent in accordance with Art. 6 (1) Letter a Letter f General Data Protection Regulation (GDPR) when you first access the website. In this case, you can prevent the placement of cookies by our website at any time by means of a corresponding setting of the Internet browser in use, and thus permanently object to the placement of cookies. Furthermore, cookies that have already been placed can be deleted at any time via an internet browser or other software programmes. This is possible in all common internet browsers. If the data subject deactivates the placement of cookies in the Internet browser used, not all functions of our website may be fully usable.
In the following, we have compiled links where you can find detailed information on how to deactivate cookies in common internet browsers:
Due to legal regulations, our website contains information that enables quick electronic contact to be established with our company, as well as immediate communication, which also includes a general address for so-called electronic mail (e-mail address). If you contact us by e-mail, the personal data you send us will be stored automatically. Such personal data transmitted on a voluntary basis will be stored for processing purposes, or for contacting you. This personal data will not be passed on to third parties.
II. Purposes and legal bases of data processing, order processors, transfer to third parties in third countries
We will only use the personal information you provide to us for the purposes for which it is intended.
Legal bases for the processing of your data can include, in particular:
- the initiation and processing of the contract (Art. 6  Letter b General Data Protection Regulation [GDPR]), if you contact us via the contact form, or
- our legitimate interest (Art. 6 (1) Letter f General Data Protection Regulation [GDPR]) in the context of public relations, quality assurance and fraud prevention.
- If necessary, we will use the data you have provided to us for the prosecution of criminal offences pursuant to Art. 6 (1) Letter f General Data Protection Regulation (GDPR).
If you have given us consent for a specific purpose, you can revoke this informally at any time with effect for the future.
Personal data will only be transferred to state institutions and authorities on the basis of mandatory, national statutory provisions.
The persons entrusted by us with the processing of data are obligated to maintain confidentiality and to process the data lawfully. In the event of the further processing of your personal data for a purpose other than the original purpose, we will notify you accordingly.
We use the support of external service providers (processors) for certain technical processes relating to data analysis, processing and/or storage.
Both we and the processor are obligated to comply with the technical and organisational measures pursuant to Art. 32 General Data Protection Regulation (GDPR), and the external service provider is also obligated to maintain confidentiality. Processing is carried out exclusively on our behalf, and on our instructions. Any processing of your personal data beyond the scope of data processing that has been commissioned will only be carried out with your explicit consent or in cases ordered by law and by the public authorities or courts.
Data is only transferred to third countries (countries outside the European Economic Area – EEA) if this is deemed necessary for contract fulfilment, it is required by law or you have given us your consent. We will inform you separately about the details, if required by law.
III. How long do we store your data?
If you contact us by e-mail with a request, we store your collected personal data from the time of collection. The data collected in this way will be stored by us for the duration of our business relationship, which includes, among other things, the initiation and processing of a contract. In addition, we are subject to various retention and documentation obligations resulting from the German Commercial Code (HGB) or the German Fiscal Code (AO), among others. The retention periods prescribed there are up to ten years after the end of the year in which the contractual relationship was terminated. Finally, the storage period – with regard to the possibility of defending against asserted legal claims and proof of compliance with data protection obligations – is also assessed according to the statutory limitation periods, which, for example, according to Sections 195 et seq German Civil Code (BGB), are usually 3 years from the end of the year in which they arose.
In connection with the strictly informational use of our homepage, we store the data that your browser transmits to our server for the period of time necessary to rectify faults or error messages. Deletion usually takes place within 7 days after the end of the internet connection.
IV. What rights do you have as a data subject?
You have the following rights as a data subject:
(1) The right to the disclosure of data concerning you as per Art. 15 GDPR
(2) The right to the rectification of data concerning you as per Art. 16 GDPR
(3) The right to the erasure of data concerning you as per Art. 17 GDPR
(4) The right to the restriction of processing regarding data concerning you as per Art. 18 GDPR
(5) The right to data portability as per Art. 20 GDPR and
(6) The right to object to the processing of data concerning you as per Art. 21 GDPR.
In addition, you have the right to lodge a complaint with a data protection authority in accordance with Art. 77 GDPR. The complaint can be lodged with the data protection authority in the country where you reside or work, or where the alleged infringement occurred. If the data protection authority of another member state is deemed to be the competent authority vis-a-vis the underlying case, the national data protection authority will coordinate with the other data protection authority. You can find an overview here:
The supervisory authority responsible for us is:
The Hamburg Commissioner for Data Protection and Information Security
Ludwig-Erhard-Str 22, 7th floor
Tel.: +49 40 428 54-4040
Fax: +49 40 42854-4000
V. Contact and data protection officer
This data protection declaration applies to the website of
von Beust & Coll. Beratungsgesellschaft mbH & Co KG
Neuer Wall 41, 20354 Hamburg
Tel.: +49 40 3496167-0
You can reach our data protection officer as follows:
ECOVIS Keller Rechtsanwälte PartG mbB
Attorney Axel Keller / Senior Associate Karsten Neumann
Am Campus 1 - 11, 18182 Rostock-Bentwisch
Tel.: +49 381 649210
You have the right to contact our data protection officer at any time, free of charge and confidentially if you wish, to assist you in enforcing your data protection rights.