Privacy Policy

Responsible entity under data protection laws, in particular the General Data Protection Regulation (GDPR), is:

KXP
Rechtsanwalt Dr. Claudio Kühn
Schöneberger Straße 18
10963 Berlin, Germany
T: +49 30 20643610
E: info@kxp-law.de

Visiting the Website

When accessing our website http://www.kxp-law.de, your browser automatically transmits information to our server. This data is temporarily stored in a so-called log file. The following information may be collected:

• Browser type and version
• User’s operating system
• Referring website
• Subpages visited on our website
• Date and time of access
• IP address
• Internet service provider of the user
• Other relevant information for the security of our systems
• User’s operating system
• Referring website

The legal basis for this data processing is Art. 6 (1) sentence 1 lit. f GDPR. Our legitimate interest arises from the purposes listed above for data collection. Under no circumstances do we use the collected data to draw conclusions about your identity.

Our website may contain links to external providers. Please note that this privacy policy applies exclusively to services offered by KXP. When using third-party websites, please refer to their respective privacy policies. We cannot guarantee or monitor that other providers consistently comply with applicable data protection regulations.

Engagement of Legal Services

When engaging our legal services, we collect personal data such as your name, email address, postal address, phone numbers, and other information relevant to the mandate. The purpose of this data collection is to identify you as a client, provide appropriate legal advice and representation, communicate with you, issue invoices, manage potential liability claims, and assert or defend legal claims.

This data processing is necessary for proper mandate execution and mutual contractual performance in accordance with Art. 6 (1) sentence 1 lit. b GDPR. Data collected during the engagement will be stored in accordance with the statutory retention obligations for lawyers (six years after the end of the calendar year in which the mandate was terminated). Longer retention may occur if required by law (e.g., HGB, StGB, AO) or based on your consent under Art. 6 (1) sentence 1 lit. a GDPR.

Electronic communication, especially via email, may pose risks to confidentiality. Emails are transmitted using industry standards such as TLS/SSL encryption but are generally not end-to-end encrypted. If you contact us via email or other electronic means, we assume your consent to continue using these communication channels (§ 2 (2) BORA). Nevertheless, we inform you of the existing confidentiality risks associated with such communication.

Elektronische Kommunikationswege, insbesondere E-Mails, können Risiken für die Vertraulichkeit bergen. E-Mails werden auf Basis von Branchenstandards wie TLS/SSL verschlüsselt übertragen, sind allerdings regelmäßig nicht Ende-zu-Ende-verschlüsselt. Wenn Sie uns per E-Mail oder auf sonstige Weise elektronisch kontaktieren, dürfen wir von Ihrem Einverständnis mit der weiteren Nutzung dieser Kommunikationswege durch uns ausgehen (§ 2 Abs. 2 BORA). Gleichwohl wiesen wir Sie auf die bestehenden Risiken für die Vertraulichkeit der Kommunikation hin.

Disclosure of Data

Your personal data will not be disclosed to third parties for purposes other than those listed in this privacy notice. We only share your data in the following cases:

• You have given explicit consent under Art. 6 (1) sentence 1 lit. a GDPR.
• Disclosure is necessary to assert or defend legal claims under Art. 6 (1) sentence 1 lit. f GDPR, particularly to opposing parties, their representatives, or public authorities. These third parties may only use the data for these purposes.
• There is a legal obligation to disclose under Art. 6 (1) sentence 1 lit. c GDPR.
• Disclosure is necessary for contract execution under Art. 6 (1) sentence 1 lit. b GDPR.
• Disclosure is necessary to assert or defend legal claims under Art. 6 (1) sentence 1 lit. f GDPR, particularly to opposing parties, their representatives, or public authorities. These third parties may only use the data for these purposes.
• There is a legal obligation to disclose under Art. 6 (1) sentence 1 lit. c GDPR.
  

The attorney-client privilege remains unaffected. Data subject to legal confidentiality will only be disclosed to carefully selected service providers who are contractually bound to confidentiality under § 43e BRAO, including being informed of the criminal consequences of breaching confidentiality.

Your Rights as a Data Subject and Right to Object / Withdraw Consent

You may exercise the following rights at any time:

• Request confirmation whether we process your personal data (Art. 15 (1) GDPR).
• Request detailed information about your processed data, including purposes, categories, recipients, retention periods, rights to rectification, erasure, restriction, objection, complaint rights, data origin, and any automated decision-making including profiling (Art. 15 (1) GDPR).
• Request a copy of your processed data (Art. 15 (3) GDPR).
• Request correction or completion of inaccurate or incomplete data (Art. 16 GDPR).
• Request deletion of your data (Art. 17 GDPR).
• Request restriction of processing (Art. 18 GDPR).
• Request data portability in a structured, commonly used, machine-readable format or transfer to another controller (Art. 20 GDPR).

If your data is processed based on legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR), you may object to processing for reasons arising from your particular situation or to direct marketing (Art. 21 GDPR). In the case of direct marketing, you have a general right to object without stating a specific situation.

You may withdraw your consent at any time (Art. 7 (3) GDPR), which will affect future data processing based on that consent.

To exercise your rights, simply send an email to: info@kxp-law.de