Data protection
1. name and contact details of the entity responsible for data processing
This privacy policy applies to data processing by
Thole Legal
Lawyer & Notary Corinna Thole
Frankfurter Straße 9, 63500 Seligenstadt
Phone 0 61 82 - 89 58 0
Fax 0 61 82 - 89 58 11
E-mail: datenschutz@thole-legal.de
The responsible external data protection officer is
Dr. Frank Tykwer
Cäcilienhöhe 173, 45657 Recklinghausen
Phone 02361 - 26991
E-mail: rechtsanwalt@dr-tykwer.de
The Deputy External Data Protection Officer is:
Katharina Stern
c/o DSB für Notare und Ärzte GmbH
Cäcilienhöhe 173, 45657 Recklinghausen
Phone 02361 - 26991
E-mail: rux@dsb-notare-aerzte.de
2. collection and storage of personal data and the nature and purpose of their use
a) When visiting the website
When you visit our website www.thole-legal.de, the browser used on your device automatically sends information to the server of our website for technical reasons. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted:
The IP address of the requesting computer/device
Date and time of the request or access
Name and URL of the retrieved file, if applicable the status and the amount of data transferred as part of the request/access
Website from which the Thole Legal website was accessed (referrer URL)
Product and version information of the browser used and the operating system of the requesting computer/terminal device as well as the name of the access provider
We process the aforementioned data for the following purposes:
Ensuring a smooth connection to the website
Ensuring a comfortable use of our website
Evaluation of system security and stability and
for other administrative purposes.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
b) When using our notary forms
Our website is linked to a button for online data collection, which gives you the opportunity to send us data via an online form. If you use this online service from NotarNow (LegalNow GmbH, Lena-Christ-Straße 2, 82031 Grünwald, Germany), your details, including the contact details you provide there, will be automatically stored on the NotarNow servers for a short time for the purpose of processing the request and in the event of follow-up questions and then forwarded to us. Data transmission is encrypted using transport encryption via Secure Socket Layer (SSL/TLS).
The data is stored solely for the purpose of processing or contacting the data subject. The data will not be passed on to other third parties. The legal basis for the processing of the data is Art. 6 para. 1 lit. b GDPR, provided that your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR), if this has been requested.
We will retain the data you provide on the online form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions - in particular retention periods - remain unaffected.
When using the „cache“ function, your online form entries are encrypted and stored anonymously for 30 days. If the online form is not sent to us within these 30 days, the form entries will be deleted automatically. A request for deletion on your part is not necessary in this case.
c) When using our contact form
We offer you the opportunity to contact us via a form provided by us. This requires you to provide a valid e-mail address so that we know who sent the request and can assign it and answer the request. The provision of further data is optional.
The information you provide voluntarily will be stored for the purpose of processing your inquiry and for possible follow-up questions and/or for the provision of our legal and/or notarial services. Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily given consent.
The personal data collected by us for the use of the contact form will be automatically deleted after your request has been dealt with.
d) When using an application or an application procedure
We collect and process personal data from applicants for the purpose of handling an application process. Processing may also be carried out electronically. This is regularly the case when an applicant sends us their application documents electronically, e.g. by email. If we then conclude an employment contract or training contract with an applicant, the transmitted data will be stored for the purpose of processing the subsequent employment relationship in compliance with the statutory provisions. If no employment/training contract is concluded with the applicant, their application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests prevent deletion. Another legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR may lie, among other things, in the burden of proof for proceedings under the General Equal Treatment Act (AGG).
3. disclosure of data
Your personal data will not be transferred to third parties for purposes other than those listed below.
We only pass on your personal data to third parties if:
you have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
in the event that there is a legal obligation for disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.
4. cookies
Cookies are small files that your browser automatically creates and that can be stored on your end device (laptop, tablet, smartphone, etc.) when you visit a website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.
Information is stored in a cookie that results in each case in connection with the specific end device used. However, this does not mean that your identity can be directly identified.
The use of cookies also serves to make the use of the website more pleasant. Session cookies can be used to recognize which individual pages of a website the user has already visited. Such cookies are automatically deleted after leaving the website.
The data processed by cookies is required for these purposes to safeguard legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created.
No cookies are used on our website.
5. analysis tools
No web analysis tools are used on our website.
6. rights of data subjects
You have the right:
in accordance with Art. 15 GDPR, to request information about your personal data processed by us. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information about its details;
in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
in accordance with Art. 17 GDPR, to demand the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller;
in accordance with Art. 7 para. 3 GDPR, to withdraw your consent once given to us at any time. The consequence of this is that we may no longer continue the data processing that was based on this consent in the future and
to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority at your usual place of residence or workplace or at the registered office of our law firm.
7. right of objection
If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.
If you wish to exercise your right of revocation or objection, simply send an e-mail to datenschutz@thole-legal.de.
8. data security / SSL encryption
When you visit our website, we use the widely used SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. An encrypted connection can be recognized by the fact that the address line of the browser changes from „http://“ to „https://“ and by the lock symbol in the browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
9. up-to-dateness and amendment of this privacy policy
This privacy policy is currently valid and is dated May 2024.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this privacy policy. You can call up and print out the current data protection declaration at any time on our website under data protection.