Engelmann Advisory Logo

Data Protection Policy

The legal provisions for the protection of your data can be found in the German General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). 

The responsible person in terms of data protection regulations is Benno Engelmann, Horst-Schulmann-Str. 1, 60314 Frankfurt.

Below you will find information about which personal data - data that identifies you or makes you identifiable, such as name, address, e-mail address or user behaviour - we collect when visiting to our site and how it is used. If you have any questions, please contact us at benno@engelmann-advisory.com.

You also have the right to complain to the responsible supervisory authority in the event of unlawful use of data:

The Hessian Commissioner for Data Protection and Freedom of Information.

Gustav-Stresemann-Ring 1

65189 Wiesbaden

Telephone: 0611-1408 0

E-mail: poststelle@datenschutz.hessen.de

1. Server data collection

When you visit our site, various server statistics are automatically stored, which your browser transmits to the server of our provider. Among other things name of the website accessed, file, date and time of retrieval, data volume transferred, message about successful retrieval, browser type and version, the operating system of the user, referrer URL (the previously visited page) and IP address and the requesting provider will be logged.

This data is used for statistical evaluation of the visits to our site and cannot be assigned to specific persons. 

Legal basis for data collection is Art. 6 para 1 lit. f) GDPR. A consolidation of this data with other data sources will not be carried out. The IP address will be made anonymous. Our legitimate interest in the collection of this data is based on the fact that we can use the data to optimise our offer for users, e.g. by preventing access from malicious sites or optimising access via certain browsers, and that the log of the IP address is what makes it possible to deliver the site to the visitor.

In principle, you have the right to object to this data collection. However, objection is not possible in this case, as the use of the site would otherwise be impossible.

The data will be deleted as soon as they are no longer required for the above-mentioned purposes.

1a. Security of data transmission

For the transmission of your data, we use a secure server with SSL technology (Secure Socket Layer) with 256-bit encryption. Thus, your data is transmitted to us securely and unreadable for unauthorised persons.

Your passwords are hashed, i.e. stored cryptologically, and are thus protected from access by third parties as well as persons responsible for this site. 

2. Use and transfer of personal data

2a. General

If you have provided us with personal data, we use this data to answer your enquiries, to advise you and to process contracts concluded with you as well as for technical administration. Except in the cases explicitly mentioned in this declaration, your personal data will only be passed on or otherwise transferred to third parties if this is necessary for the purpose of processing contracts, if this is necessary for billing purposes or if you have given your prior consent. You have the right to revoke your consent at any time with effect for the future, see also section 4 on your data subject rights.

2b. Contract processing

Within the scope of contracts concluded with you, we collect and store personal data you provide, e.g. name, address, for the purpose of processing the contract, e.g. also for invoicing. 

The data is passed on to banks or the responsible tax offices in the context of billing. Billing data is transferred to banks for payment processing and to tax offices within the framework of the tax law requirements. 

The legal basis for the collection, processing and transfer of the data is Art. 6 para. 1 lit. b) GDPR in the context of contract processing. The legal basis for the transfer of data to tax offices is Art. 6 para. 1 lit. c) GDPR. 

This data is deleted after expiry of the applicable statutory retention obligations. If we are not subject to any statutory retention obligations, the data will be deleted when the purpose ceases to apply. 

You have the right to information and the right to object to your data stored by us at any time, see below section 4 on your rights as a data subject.

2c. Enquiry by e-mail

If you send us an enquiry by e-mail, we collect and store the e-mail address and the data contained in the e-mail in order to answer your enquiry.

Legal basis: If a contractual relationship develops from the enquiry by way of contract initiation or if the enquiry relates to an existing contractual relationship, the legal basis is Art. 6 para. 1 lit. b) GDPR, as the storage of the data is necessary for the fulfilment of a pre-contractual or contractual obligation. Furthermore, we also have a legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR in processing the data for the purpose of communicating with you and responding to your enquiries.

The deletion of the data takes place when the purpose of the storage has ceased to exist, i.e. after answering your e-mail/contact form enquiry or when the matter connected with the enquiry has been conclusively clarified. In the case of an existing contractual relationship or a contractual relationship resulting from the enquiry, the data will be deleted after expiry of the statutory retention periods.

For the right to deletion and information, see section 4 below on your data subject rights.

3. Cookies

The internet pages use so-called cookies in several places. They serve to make our offer more user-friendly, effective and secure. A cookie is text information that our website places on the end device you use via the web browser. 

The legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest results from the fact that we merely facilitate the retrievability of the page for you with the aforementioned cookies, do not collect any tracking data in the process and thus there is no interference with your personal rights and fundamental freedoms. 

You can exclude the acceptance of cookies in your web browser. However, this may impair the functionality of the site. For more information on your rights as a data subject, see section 4 below.

These cookies are only valid for the duration of your browser session and are deleted when you end your visit to our site. 

We do not use cookies from third-party providers.

4. Data subject rights 

a. Right to object

If we process your data to protect legitimate interests (Art. 6 para.1 lit. f) GDPR), you may object to this processing on grounds relating to your particular situation. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. 

In the event of an objection to data processing for the purpose of direct marketing, processing for this purpose will no longer take place.

b. Right to information

You have the right to request confirmation from us as to whether we are processing personal data relating to you and, if so, a right of access to the personal data and related information in accordance with Art. 15 GDPR.

c. Right to rectification

You have the right to request to correct or complete any inaccurate or incomplete personal data relating to you without undue delay in accordance with Art. 16 GDPR.

d. Right to deletion

You have the right to demand that we delete personal data relating to you without delay and we are obliged to delete it without delay if one of the reasons stated in Art. 17 GDPR applies.

e. Right to restriction of processing

You have the right to request that we restrict the processing of personal data relating to you if one of the conditions set out in Art. 18 GDPR applies. 

f. Right to data portability

You have the right to receive the personal data that you have provided to us in a structured, commonly used and machine-readable format, and you have the right to request that we transfer the data to another controller, where this is technically feasible.

Contact details

Benno Engelmann