Unkelbach-Tomczak Logo

Privacy Policy

1. Controller

The con­troller respon­si­ble for data pro­cess­ing on this web­site is:

Sabine Unkel­bach-Tom­czak, Attor­ney at Law
Spe­cial­ist Lawyer for Tax Law
Taunus­Turm
Taunus­tor 1
60310 Frank­furt am Main
Ger­many

Phone: +49 (0)69 87 00 20 520
Fax: +49 (0)69 87 00 20 523
Email: info@unkelbach-tomczak.law

2. General Information

Per­son­al data is processed only to the extent nec­es­sary to pro­vide a func­tion­al web­site, to han­dle inquiries, or to per­form a mandate.

Unless a more spe­cif­ic reten­tion peri­od is stat­ed, per­son­al data is delet­ed once the pur­pose of pro­cess­ing ceas­es and no statu­to­ry reten­tion oblig­a­tions apply.

3. Legal Basis for Processing

Per­son­al data is processed on the fol­low­ing legal bases:

  • Art. 6(1)(b) GDPR (con­tract or pre-con­trac­tu­al measures)
  • Art. 6(1)© GDPR (legal obligation)
  • Art. 6(1)(f) GDPR (legit­i­mate interests)

If con­sent is obtained in indi­vid­ual cas­es, pro­cess­ing is based on Art. 6(1)(a) GDPR.

4. Hosting

This web­site is host­ed by IONOS SE, Ger­many.

When access­ing the web­site, tech­ni­cal data (e.g. IP address­es in log files) are processed.

The legal basis is Art. 6(1)(f) GDPR (legit­i­mate inter­est in secure and sta­ble web­site operation).

A data pro­cess­ing agree­ment pur­suant to Art. 28 GDPR has been concluded.

5. Data Collection on this Website

a) Cookies

This web­site uses only tech­ni­cal­ly nec­es­sary cook­ies required for the oper­a­tion and basic func­tion­al­i­ty of the website.

The legal basis is § 25(2) TTDSG and Art. 6(1)(f) GDPR.

No con­sent is required.

b) Server Log Files

The host­ing provider auto­mat­i­cal­ly col­lects and stores infor­ma­tion including:

  • brows­er type and version
  • oper­at­ing system
  • refer­rer URL
  • time of request
  • IP address

Pro­cess­ing is based on Art. 6(1)(f) GDPR.

c) Contact Form

Data sub­mit­ted via the con­tact form is processed to han­dle the request.

Pro­cess­ing is based on Art. 6(1)(b) GDPR where the request relates to a man­date, and Art. 6(1)(f) GDPR otherwise.

d) Contact via Email, Phone or Fax

Per­son­al data trans­mit­ted in this con­text is processed to han­dle your request.

6. Analytics

Independent Analytics

This web­site uses a local­ly host­ed ana­lyt­ics tool.

  • no cook­ies
  • no IP storage
  • no user profiling
  • no data trans­fer to third parties

Pro­cess­ing is based on Art. 6(1)(f) GDPR.

7. Security Measures

a) Local Fonts

Fonts are host­ed local­ly. No con­nec­tion to Google servers is established.

b) CleanTalk

CleanTalk is used to pro­tect against spam.

Tech­ni­cal data (e.g. IP address, request time, brows­er infor­ma­tion) may be processed.

The provider is based in the Unit­ed States. Accord­ing to the con­fig­u­ra­tion, data pro­cess­ing is pri­mar­i­ly car­ried out via servers with­in the Euro­pean Union.

Pro­cess­ing is based on Art. 6(1)(f) GDPR.

c) Ninja Firewall

Nin­ja Fire­wall is used for secu­ri­ty pur­pos­es. Pro­cess­ing is car­ried out local­ly and no per­son­al data is trans­ferred to third parties.

8. Online Meetings

Microsoft Teams

Microsoft Teams is used for online meetings.

Par­tic­i­pa­tion is vol­un­tary and arranged in advance.

Per­son­al data is processed to the extent nec­es­sary for communication.

Data may be processed in third coun­tries. Microsoft is cer­ti­fied under the EU-US Data Pri­va­cy Framework.

Pro­cess­ing is based on Art. 6(1)(b) GDPR and, where applic­a­ble, Art. 6(1)(a) GDPR.

9. Data Subject Rights

You have the right to:

  • access
  • rec­ti­fi­ca­tion
  • era­sure
  • restric­tion of processing
  • data porta­bil­i­ty
  • objec­tion

You also have the right to lodge a com­plaint with a super­vi­so­ry authority.

10. Encryption

This web­site uses SSL/TLS encryption.

11. Objection to Advertising Emails

The use of pub­lished con­tact data for unso­licit­ed adver­tis­ing is here­by prohibited.