Privacy Policy

1. Information on the collection of personal data and provider identification.

(1) The protection of personal data is a matter of great importance to us. All web activities of the hkp///legal partnership of the solicitors Brinkkötter + Dörrwächter mbB (hereinafter hkp/// legal PartG mbB) are carried out in accordance with the applicable legal provisions on the protection of personal data and data security, in particular the GDPR (EU General Data Protection Regulation). This privacy policy provides you with information on how information collected during your visit to this website is handled. Personal data refers to all data that can be personally attributed to you, such as your name, address, email addresses and user behaviour. The use of the masculine form throughout is solely for the sake of simplicity and readability. This applies to persons of all genders (m/f/d), unless the context dictates otherwise.

(2) The controller responsible for the processing of your personal data is hkp///legal PartG mbB, Rote-Kreuz-Str. 3, 14482 Potsdam. Please refer to the legal notice on our website for further contact details.

2. Collection of personal data during informational use

(1) Personal data is information that can be used to identify a person, such as their name and email address, but also their browsing behaviour on the internet. When using the website for information purposes only – i.e. if you do not log in, register or otherwise provide us with information – we do not collect any personal data, with the exception of the data transmitted by your browser to enable you to visit the website (so-called log files, legal basis: Article 6(1)(f) of the GDPR). Log files are technically necessary for us to ensure that the webpage you have accessed can be sent to your computer and displayed to you. They are deleted within 7 days of accessing the website. The log files contain the following data:

  • truncated (anonymised) IP address
  • Date and time of the request
  • Time zone difference from Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred in each instance
  • Website from which the request originates
  • Browser
  • Operating system and its interface
  • Language and version of the browser software.

(2) Log files are also used for statistical analysis and to improve the website (legal basis: Article 6(1)(f) of the GDPR). This enables us, for example, to identify potential errors such as broken links. In connection with your use of the website, the IP address of the computer you are using is recorded, amongst other things. Under certain circumstances, it may be possible to identify users of the website via the IP address. However, we do not carry out any analysis of the IP addresses collected in accordance with paragraph (1) for this purpose. The analysis of IP addresses is carried out solely on a statistical basis in anonymised form.

3. Right to object

(1) You may object at any time, with effect for the future, to the processing of your personal data for marketing purposes (legal basis: Article 6(1)(f) and Recital 47 of the GDPR). This also applies to the evaluation of certain characteristics in this context, such as in the case of data analysis. An objection to marketing may be made informally; it may also be submitted using the contact details provided in the legal notice.

(2) In addition, you have the right to object, on grounds relating to your particular situation, to processing for other purposes which is carried out on the basis of a balancing of interests (Article 6(1)(f) of the GDPR). This may be the case, in particular, if the processing is not necessary for the fulfilment of obligations arising from a client relationship with you. If you exercise such an objection, we ask you to state the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either cease or adjust the data processing, or explain to you our compelling legitimate grounds on the basis of which we will continue the processing.

4. Data security

(1) We take state-of-the-art precautions to protect your data against loss, destruction, falsification, manipulation and unauthorised access. Where your data is collected and recorded by us, it is stored on specially protected servers. These are protected by technical and organisational measures against loss, destruction, unauthorised access, alteration or dissemination of your data by unauthorised persons. Access to your data is restricted to a small number of authorised persons. These individuals are responsible for the technical, commercial or editorial management of the servers. All our employees are bound by a duty of confidentiality.

(2) We have commissioned a service provider to handle the technical operation (hosting) of the website. This provider carries out data processing on our behalf. The collection, processing and use of your data by the service provider takes place exclusively in accordance with our instructions. The provisions of this privacy policy apply to them in the same way.

5. Cookies

(1) When you use the website, cookies are stored on your computer. Cookies are small text files that are stored on your hard drive and associated with the browser you are using, and through which certain information is transmitted to the entity that sets the cookie (in this case, us). Cookies cannot run programs or transfer viruses to your computer. They serve to make the website more user-friendly and effective overall. We may use cookies, for example, to identify you on subsequent visits if you have an account with us. Otherwise, you would have to log in again for each visit.

(2) This website uses cookies to the following extent:

  • Transient cookies (temporary use)
  • Persistent cookies (time-limited use)
  • Third-party cookies (from third-party providers in accordance with separate information)

(3) Transient cookies are automatically deleted when you close your browser. These include, in particular, session cookies. These store a so-called session ID, which allows various requests from your browser to be assigned to the same session. This enables your computer to be recognised when you return to the website. Session cookies are deleted when you close your browser.

(4) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. They are only used for as long as is necessary for their intended purpose and have a maximum lifespan of two years. You can delete the cookies from your computer’s hard drive at any time using your browser’s privacy settings. In this case, the functionality and user-friendliness of the website may be restricted.

(5) The legal basis for technically necessary cookies is Article 6(1)(b) and (f) of the GDPR; your consent is not required for this. These “necessary cookies” ensure functions without which you would not be able to use our website as intended, or serve to comply with security requirements for data transmission. Essential cookies also store your decision regarding the use of cookies on our website. Essential cookies cannot be deactivated via our opt-in cookie banner. However, you can configure your browser settings to ensure that you are informed about the setting of cookies and that they are only accepted once you have expressly confirmed this. You can also choose to generally refuse the acceptance of cookies.

(6) Cookies that are not technically necessary for the provision of our service are only set with your consent, which you may withdraw at any time (legal basis: Article 6(1)(a) of the GDPR). These are cookies used to record preferences, for statistical purposes and for marketing purposes. You can activate or deactivate your consent via our opt-in cookie banner or via a checkbox provided in individual cases. However, please note that you may then not be able to use all the functions of this website.

6. Third-party tools

(1) In the event of the transfer of personal, i.e. non-anonymous, data to providers based in the USA, following the termination of the EU-US Privacy Shield, the adequacy of the level of data protection in the third country has not currently been established by the European Commission pursuant to Article 45 of the GDPR, nor are there any appropriate safeguards in place pursuant to Article 46 of the GDPR. It is therefore possible that the level of data protection in the USA is not equivalent to that required under the GDPR. Potential risks that cannot be ruled out include, in particular, the lack of proportionality in the authorities’ access to data stored there, as well as the lack of a guarantee of effective legal protection.

7. Further information under the GDPR

(1) This privacy policy applies solely to this website (www.hkp-legal.de). To ensure you have the best possible information, you will find links on our pages that refer to third-party websites. Where this is not immediately apparent, we would like to point out that these are external links. This privacy policy does not extend to these other providers. When you leave this website, we recommend that you first read the privacy policy of each website carefully.

(2) Within the legal framework, you have the right to request information from us, the right to rectification of inaccurate data, the right to restriction of processing, a right to object (see Section 6 of this privacy policy) and a right to erasure (Articles 15 to 18, 21 of the GDPR; Sections 34, 35 of the BDSG). With regard to the personal data concerning you that you have provided to us, for example in an input mask or a contact form, on the basis of consent or for the performance of a client relationship between us, you have the right to data portability in a structured, commonly used and machine-readable format (Art. 20 GDPR). You may exercise these rights using the contact details provided in paragraph (2).

(3) Insofar as the processing of your data is based on consent (legal basis Art. 6(1)(1)(a) GDPR), you have the right to withdraw your consent at any time without this affecting the lawfulness of the processing carried out on the basis of your consent prior to withdrawal. Legal grounds for processing relating to the same data, such as retention obligations, remain unaffected by a withdrawal of consent.

(4) We have appointed a Data Protection Officer. The contact details are: Dr Jan Dörrwächter, Wasserwerksweg 28, 40489 Düsseldorf, Germany, jan.doerrwaechter@hkp-legal.de.

8. Changes to the Privacy Policy

We will update this policy as necessary to bring it into line with changes affecting the content of the website and with general legal developments. However, this applies only in respect of statements regarding data processing. Where user consent is required, or where parts of the privacy policy contain provisions governing the contractual relationship with users, changes will only be made with the users’ consent.

Date: March 2026