In all data processing procedures of this website we take into account the applicable legal regulations of the European Data Protection Regulation (DSGVO) as well as the respective national data protection rules. Data processing procedures may include the collection, processing and use of personal data. Personal data is information about an identified or identifiable individual person, such as their name, address or e-mail address.

With this data protection declaration we would like to inform you to what extent and for what purpose your personal data will be processed in connection with the use of this website.

Name and Contact Details of the Person Responsible for Data Protection

Compliance Law Office
Anika Feger (Lawyer)
Certified Compliance Professional (CCP)
Alfred-Bozi-Straße 12
33602 Bielefeld / Germany
Phone: +49 521 32930340
Fax: +49 521 32930349
info@legalandcompliance.de

Transmission, Collection, Storage and Automatic Deletion of Personal Data for the Purpose of Accessing this Website

When you access this website, the following information is collected by a web host: IP address, date and time the website was accessed, the data called up and the status of the data accessed as well as product and version information of the browser and operating system used. Web hosting means the provision of web space and the accommodation (hosting) of websites on the web server of an Internet Service Provider (ISP).

The complete IP address of your computer will only be transmitted for the time of use for the purpose of enabling you to access the website and will then be saved in a shortened and therefore anonymous form. All of the above-mentioned data will be automatically deleted by the web host no later than one week after accessing this website. When you visit our website, your personal data will be used exclusively for the purpose of providing the services you requested when you accessed our website. At no time will the above-mentioned data be transmitted to us by the web host.

Use of Personal Data when Visiting this Website

The use of personal data transmitted to a web host when visiting our website is solely for the purpose of ensuring a connection and for the operational purposes. From this follows the legitimate interest in the use of your personal data in accordance with sec. 6 para. 1 S. 1 lit. f DSGVO. Under no circumstances will the data be used with the intention or for the purpose of drawing conclusions about your person as a user of this website.

Possibility of Access by Selected External Service Providers and Failure to Disclose Personal Data to Unauthorized Third Parties

To maintain the functionality of our IT systems, we sometimes use external IT service providers. These have been committed to secrecy, are bound by instructions, are regularly checked and only receive access to our data systems as long as it is absolutely necessary for functionality and maintenance.

All external service providers have been carefully selected and are subject to the requirements of the European Data Protection Regulation (DSGVO). Technical and organisational measures ensure compliance with the applicable data protection requirements. Your data will not be forwarded to unauthorized third parties without your express consent.

Measures for Data Security

All personal data is transmitted via the internet in encrypted format. This is done by a SSL (Secure Socket Layer) encryption. This applies to the data transmitted when accessing this website as well as when using our whistleblower system.

Cookies

Cookies are small text files stored on the visitor's hard disk. When visiting our website, only technically necessary functional cookies are used, as so-called session cookies, which are automatically deleted when leaving our website. We do not use any tracking or advertising cookies in connection with the operation of our website.

When the technically necessary function cookies are used, information is temporarily stored which is related to the specific terminal device used. This does not mean, however, that we obtain knowledge of your identity as a result. Our legitimate interest in the use of cookies results from sec. 6 para. 1 S. 1 lit. f DSGVO.

Most browsers automatically accept cookies. However, you can set your browser at any time to allow or deny the use of cookies or to require confirmation when using cookies. The complete deactivation of cookies limit some functions of this website. Cookies do not cause any damage to your end device and do not contain viruses, trojans or other malware.

Rights for Users of our Website

We are committed to informing you about your rights with the highest possible level of transparency. If you would like further information, or exercise your rights, we will be happy to answer any questions you may have.

You are entitled to extensive rights with regard to the processing of your personal data. This includes, first of all, a comprehensive right to information and, if necessary, the right to correct and/or delete or block your personal data. In addition, you have the right to demand a restriction of the processing, as well as the right to object with regard to the existence of a legitimate interest in data processing. With regard to the data you have transmitted to us, you also have the right to receive this data. Finally, you also have the right to complain to the following competent supervisory authority (State Commissioner for Data Protection and Freedom of Information):

Landesbeauftragte für Datenschutz und Informationsfreiheit
Nordrhein-Westfalen
Kavalleriestraße 2 - 4
40213 Düsseldorf / Germany
Phone: +49 211 384240
Fax: +49 211 3842410
poststelle@ldi.nrw.de

Revocation of Consent or Opposition to Legitimate Interests

Once you have given your consent, it can be revoked at any time with immediate effect without giving reasons. If the processing of your personal data is not based on consent but on legitimate interests, you can object to this data processing. An objection will lead to a verification of the existence of a legitimate interest in data processing. You can send a revocation or opposition by e-mail to info@legalandcompliance.de.

Additional Security Instructions for Communication by E-Mail

If you contact us by e-mail, we store personal data so as to be able to contact you, if necessary, whether for further inquiries or to answer your e-mail. When you contact us, we assume that you agree to our use of the data transmitted by e-mail and that you are entitled to receive an answer to your e-mail. If this is not the case, we ask you to express this.

Internet-based communication, for example by e-mail, can generally have security gaps. Absolute protection can therefore not be guaranteed. Of course, you are free to send us personal data by other communication channels.

Further Information on Data Security

In order to ensure that your personal data is protected as completely as possible, we use technical and organisational measures. Nevertheless, due to increasing cyber crime, absolute data protection cannot be completely guaranteed for internet-based transmissions. For this reason, you are free to transmit personal data to us by alternative communication channels, such as post, fax or telephone.

Please first take into account the general information on data protection described above. For users of our whistleblowing system for anonymous submission of information, the following supplementary information on data protection applies.

Transmission, Collection, Storage, Use and Deletion of Data Provided by Whistleblowers via the Whistleblowing System

Your data transmitted to us via the whistleblowing system will only be used to fulfil our ombudsperson mandate. Technical and organisational measures are taken to ensure compliance with the applicable data protection requirements in relation to this data. The data is stored on special protected servers within the European Union. They are specially protected by technical and organisational measures against loss, destruction, access, modification or distribution. Access to this data is only possible for a few authorized persons.

By using our whistleblowing system to enter data, we initially assume that you have given us your consent to further process this data, sec. 6 para. 1 lit. a DSGVO. Data transmitted via the whistleblower system will initially be stored as long as the clarification and final assessment of a report requires its storage. After investigation of a whistleblowing case has been completed, the stored data is deleted after expiry of the applicable legal retention periods.

You can revoke your consent for the use of this data at any time in an informal manner by e-mail to info@legalandcompliance.de or request for to delete it. The lawfulness of the data processing operations concerned up to a revocation or a request for deletion remains unaffected. The data will not be forwarded to the respective client affected by the whistleblowing case without your express consent.

Purpose of the Whistleblowing System

The whistleblowing system ensures that the clients of Compliance Law Office of Anika Feger (Lawyer), who has been assigned the function of ombudsperson, are able to receive confidential information on criminal or administrative offences while maintaining the anonymity of the whistleblower.

Important Notes for Sending Attachments

The whistleblowing system offers the possibility of sending attachments. Please take into account that files usually contain hidden personal data that could potentially compromise your anonymity. If you do not want to be possibly identified by attachments, it may be advisable to print and scan files before uploading them as attachments.

Confidential Treatment of Whistleblowing Cases

All employees of Compliance Law Office of Anika Feger (Lawyer) are subject to the professional applicable legal requirements on confidentiality. Incoming information will be received by Anika Feger (Lawyer) or, in case of her absence, by an employee of the Compliance Law Office and will be treated confidentially. If the whistleblower has approved the forwarding of information about a whistleblowing case to the respective client, the information and data will be forwarded to the client's employees responsible for receiving it. These employees may also be located in countries outside the European Union or the European Economic Area, where different regulations for the protection of personal data may exist.

We also take into account compliance with the applicable data protection regulations during the process of forwarding the information and data from us to the client's responsible employees. As soon as the data has been transferred to the respective client's employees, the client and his employees are responsible for compliance with the applicable data protection regulations.

The data protection declarations are currently valid and were correct at the time of publication in February 2020. The contents of the data protection declarations may be subject to changes, in particular in relation to new regulatory requirements. Please check our website regularly for the current valid contents. If you have any questions regarding the protection of your data, please feel free to contact us at any time via e-mail to info@legalandcompliance.de or telephone +49 521 32930340.