Mandatory Information acc. to Art. 12 contd. GDPR
Protecting your personal information is a very important concern to us. Therefore, your personal information will be processed strictly in compliance with legal regulations (GDPR, German Federal Data Protection Act). This Privacy Policy provides information about the most important aspects of any data processing carried out in connection with our website.
General collection of data when the website is accessed
A series of general data and information are collected whenever a data subject or an automated system calls up the website. General data and information collected are stored in the server's log files. The following data is collected:
- an Internet Protocol address (IP address),
- the date and time when the website was accessed,
- the exact sub-page accessed on our website,
- the website or previous location, from which you accessed or were referred to our website (so-called referrers),
- the browser type and version used by you,
- and the operating system used for accessing our website.
The data stated above is used by us for the following purposes:
- to ensure a smooth connection set-up to the website,
- to optimize the contents on our website for you,
- and to ensure the security and stability of the system.
These purposes are in your and our legitimate interests. In addition, the data may be used to fulfil our legal obligations in cooperation with prosecuting authorities. Under no circumstances, will the data collected be used to determine your identity. The maximum storage duration of the log files is 2 months.
Contact form, requesting information, online application
If you contact us or apply for a job using the form on the website or by email, processing the data you provide is necessary as a pre-contractual step to handle your query. The data will be retained by us as a business letter for 14 months. Your data will not be shared with third parties without your prior consent.
Reminder service
When you sign-up for our reminder service, we will process and store your email address so that we can send you appointment reminders regularly by email according to your request. We will retain your data until you discontinue the contract. Your email address will not be shared with third parties without your prior consent.
Newsletter
You can subscribe to our newsletter on our website. For this purpose, we need your email address and a statement of consent that you agree to receiving the newsletter pursuant to Art. 6(1)(1)(a) GDPR. Once you have subscribed to the newsletter, we will send you a confirmation email with a link to confirm your subscription. Should you wish to unsubscribe from the newsletter, please use the link provided in our newsletter. Alternatively, you can also send an email requesting to be unsubscribed to info@btu-beraterpartner.com. We will retain your data until you terminate the contract by unsubscribing from this service. We will not share your data with third parties without your prior consent.
Your rights
As a rule, you have the right to information, rectification, erasure, restriction, data portability, revocation and objection. If you believe that the processing of your data violates data protection laws or that your data protection rights have been violated in any way, you have the right to lodge a complaint with a competent data protection supervisory authority. A list of competent data protection supervisory authorities is provided under www.datenschutz-wiki.de.
For more information on your rights, please go to the website of the German Federal Commissioner for Data Protection and Freedom of Information (BFDI): Bundesbeauftragte für den Datenschutz und die Informationsfreiheit.
Contact person and responsibilities
This Privacy Policy governs the processing of data on this website by btu beraterpartner Holding AG Steuerberatungsgesellschaft, represented by Thomas Schneider, btu beraterpartner GmbH Steuerberatungsgesellschaft, represented by Björn Liborius, btu beraterpartner GmbH Wirtschaftsprüfungsgesellschaft, represented by Benedikt Schilp, Feldbergstrasse 27-29, 61440 Oberursel, Phone: +49 (0) 6171/59040, email: Info@btu-beraterpartner.com.
The operational data protection officer is Mr. Marc Fuchs. Please address all inquiries, statements and questions regarding data processing to datenschutz@btu-beraterpartner.com.
Matomo
We use Matomo to understand how visitors use our website. For this purpose, we collect certain information on the behaviour of website visitors and aggregate the data to obtain a statistical analysis. The data collected and analysed for this purpose is, for example:
- the sub-pages called up on our website by a visitor,
- the length of time a visitor remains on the website, and
- from which website a visitor was referred to our website ("Referrer").
All data, without any exception, is collected and processed anonymously. In other words, we cannot identify a certain website visitor on the basis of the data. Moreover, we do not merge the data with data from other sources, do not share it with third parties in or outside of the European Union and do not use it to generate any profiles that can be linked to certain website visitors. Furthermore, we do not make any automated decisions.
Naturally you can object to the anonymized evaluation of your user behaviour for statistical purposes at any time by clicking here.
Use of social media
General information
- Purpose of data processing: We primarily use social media to communicate with existing and new clients and to make information about our company available to a large number of recipients. To this end, we particularly process contact and communication data as well as data required to determine the reach of the information published by us. Moreover, the operator of the social media platform processes personal information for tracking purposes (e.g. generating user profiles based on user behaviour or interests), remarketing (e.g. targeted advertising by cooperation partners) and to provide us with statistical analyses on the use of our service.
- Data subjects: As a rule, this relates to all profile visitors, i.e. all persons who call up our profiles on social media.
- Scope of data processing: In connection with the stated purposes, we or appropriately commissioned third parties process personal data to identify the profile visitor (e.g. name, address), data needed to make contact with the profile visitor (e.g. email address, phone number), data on user behaviour (e.g. length of stay, websites accessed, contents searched, services used), technical data (e.g. IP address, devices and programs used to call up the website), contents of the profile visitor (e.g. texts, photos, videos) and, if the appropriate consent has been given, also data on the physical location of the profile visitor.
This personal data of the profile visitor is aggregated in a user profile and stored on the end device of the profile visitor as a file ("Cookie"). Occasionally, other websites may access these user profiles to use them for the targeted selection of advertising content and to supplement them. In addition, the third parties who provide social media and other data processing tools used for marketing purposes may store the data contained in the user profiles on their servers.
- Legal basis for the data processing: Personal information is processed based on our legitimate interest in communication and direct marketing within the meaning of Art.6(1)(f) GDPR.
- Data processing outside the European Union: The operators of social media also occasionally process data outside the European Union.
- Data subject rights: We request visitors to our profiles to assert any rights to information and other data subject rights (e.g. erasure), if possible, directly with the operators of social media platforms, because only the operators have unrestricted access to the data that was processed. We will be glad to forward any queries regarding data protection (information, rectification, erasure) that are addressed to us to the operator of the social media platform concerned.
More information on how to exercise your data subject rights, especially the right to object to the processing of personal data, can be found in the Privacy Policy of the operator of the particular social media platform.
- Use of cookies: The user profiles are stored as a file ("Cookie") on the end device of the profile visitor. This file can only be stored if the profile visitor gives their consent, which can be revoked at any time.
Services used
- Service provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; a subsidiary of Facebook, Inc., 1 Hacker Way, Menlo Park, California, USA; website: https://www.facebook.com.
- Data processed: Data to identify the profile visitor (e.g. name, address), to make contact with the profile visitor (e.g. email address, phone number), contents of the profile visitor (e.g. texts, photos, videos), data on the user behaviour of the profile visitor (e.g. length of stay, websites accessed, contents searched, services used), technical data (e.g. IP addresses, devices and programs used to call up the profile) and, provided the appropriate consent has been given, also data on the physical location of the profile visitor.
- Data subjects: All profile visitors, i.e. persons who call up our profiles on Facebook.
- Legal basis: Legitimate interest in communication and direct marketing within the meaning of Art. 6(1)(f) GDPR.
- Cookies: Facebook uses cookies to store the data of the profile visitor. For more information, please refer to: https://www.facebook.com/policies/cookies/
- Objection: As a rule, Facebook provides the option to object to the processing of data for the purposes stated above (https://www.facebook.com/settings?tab=ads). You can also prevent processing of your data for the purposes stated above by declining the use of the cookies required for this. However, this may affect individual functions on our website.
Irrespective of this, general options to object are available in individual regions (Europe: https://www.youronlinechoices.eu; USA: https://www.aboutads.info/choices; Canada: https://www.youradchoices.ca/choices; international: https://www.youradchoices.ca/choices). - Information on data protection: Privacy Policy: https://www.facebook.com/about/privacy; agreement on the joint processing of personal data on Facebook profiles: https://www.facebook.com/legal/terms/page controller addendum;
data protection information for profiles on Facebook: https://www.facebook.com/legal/terms/information about page insights data.
- Service provider: New Work SE, Dammtorstrasse 30, 20354 Hamburg, Germany;
https://www.xing.com; Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung; option to object (Opt-Out): https://privacy.xing.com/de/datenschutzerklaerung/welche-rechte-koennen-sie-geltend- machen/widerspruchsrecht. - Data processed: Data to identify the profile visitor (e.g. name, address), to make contact with the profile visitor (e.g. email address, phone number), contents of the profile visitor (e.g. texts, photos, videos), data on the user behaviour of the profile visitor (e.g. length of stay, websites accessed, contents searched, services used), technical data (e.g. IP addresses, devices and programs used to call up the profile) and, provided the appropriate consent has been given, also data on the physical location of the profile visitor.
- Data subjects: All profile visitors, i.e. all persons who call up our Xing profiles.
- Legal basis: Legitimate interest in communication and direct marketing within the meaning of Art. 6(1)(f) GDPR.
- Cookies: Xing uses cookies to store the data of the profile visitor. For more information, please refer to: https://privacy.xing.com/de/datenschutzerklaerung
- Objection: As a rule, XING provides the option to object to the processing of data for the purposes stated above. For more information, please go to: https://privacy.xing.com/de/datenschutzerklaerung/welche-rechte-koennen-sie-geltend- machen/widerspruchsrecht
- Information on data protection: https://privacy.xing.com/de/datenschutzerklaerung
- Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; https://www.linkedin.com; Privacy Policy: https://www.linkedin.com/legal/privacy-policy; option to object (Opt-Out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
- Data processed: Data to identify the profile visitor (e.g. name, address), to make contact with the profile visitor (e.g. email address, phone number), contents of the profile visitor (e.g. texts, photos, videos), data on the user behaviour of the profile visitor (e.g. length of stay, websites accessed, contents searched, services used), technical data (e.g. IP addresses, devices and programs used to call up the profile) and, provided the appropriate consent has been given, also data on the physical location of the profile visitor.
- Data subjects: All profile visitors, i.e. all persons who call up our LinkedIn profiles.
- Legal basis: Legitimate interest in communication and direct marketing within the meaning of Art 6(1)(f) GDPR.
- Cookies: LinkedIn uses cookies to store the date of the profile visitor. For more information, please refer to: https://www.linkedin.com/legal/cookie-policy? l=de DE
- Objection: As a rule, LinkedIn provides the option to object to the processing of data for the purposes stated above. For more information, please go to: https://www.linkedin.com/help/linkedin/answer/93516/widerspruch-gegen-die-datenverarbeitung-einschrankung-der-datenverarbeitung?lang=de
- Information on data protection: Privacy Policy:
https://www.linkedin.com/legal/privacy-policy
- Service provider: Instagram is a Facebook product provided by Facebook Ireland Limited (https://www.facebook.com/help/15614854740741392ref5igtos); Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; a subsidiary of Facebook, Inc., 1 Hacker Way, Menlo Park, California, USA; Website: https://www.instagram.com
- Data processed: Data to identify the profile visitor (e.g. name, address), to make contact with the profile visitor (e.g. email address, phone number), contents of the profile visitor (e.g. texts, photos, videos), data on the user behaviour of the profile visitor (e.g. length of stay, websites accessed, contents searched, services used), technical data (e.g. IP addresses, devices and programs used to call up the profile) and, provided the appropriate consent has been given, also data on the physical location of the profile visitor.
- Data subjects: All profile visitors, i.e. persons who call up our profiles on Instagram.
- Legal basis: Legitimate interest in communication and direct marketing within the meaning of Art. 6(1)(f) GDPR.
- Cookies: Instagram uses cookies to store the data of the profile visitor. For more information, please refer to: https://help.instagram.com/155833707900388
- Objection: As a rule, Instagram provides the option to object to the processing of data for the purposes stated above (https://www.instagram.com/accounts/privacy and security/).
- Information on data protection: Terms of use: https://help.instagram.com/581066165581870
Privacy Policy:
https://help.instagram.com/519522125107875/?helpref=hc fnav&bc[0]=Instagram-Hilfebereich&bc[1]=Privatsph%C3%A4re%20und%20Sicherheit
YouTube Videos
We have integrated YouTube videos on our homepage. The videos are stored on www.youtube.com and can be played directly from our homepage. YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
All the videos are integrated into the page in the Privacy-Enhanced Mode. This means that no data about you, i.e. the user, is transferred to YouTube when you don't play the videos. The YouTube cookies stored on your computer will only be transferred when the videos are played. We have no influence on this transfer of data.
Moreover, if you are logged in to your YouTube account, you enable YouTube to relate your browsing behaviour directly to your personal profile. This can be prevented by logging out of your account in advance. YouTube stores your data as usage profiles and uses it for such purposes as advertising, market research and/or targeted design of their website. You have a right to object to the creation of such user profiles; however, any communication exercising this right needs to be addressed to YouTube. More information on the collection or use of your data by YouTube is provided in their Privacy Policy www.youtube.com/t/privacy at youtube. Google processes your personal data in the USA.
Using Google Maps
This website uses Google Maps to visualize our location and provide directions. Google Maps is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. By using this website, you agree that Google, one of their representatives or third-party providers collect, process and use the data that is collected automatically as well as data entered by you. Google Maps is responsible for the data processing. For more information on the Privacy Policy and Terms of Service of Google Maps, please go to: Datenschutzerklärung – Datenschutzerklärung & Nutzungsbedingungen – Google
Social Media Plugins
In order to promote our company and improve online exposure, we use social media plugins provided by the social networks Facebook, Xing and LinkedIn in accordance with Art. 6(1)(1)(f) GDPR. The underlying advertising purpose can be considered a legitimate interest within the meaning of GDPR. Ensuring that operation is compliant with data protection regulations shall be the responsibility of the particular provider. We use a "two-click" solution to integrate the plugins into the page and to enhance the security of our website visitors.
a) Facebook Plugin
Our website uses social media plugins of Facebook to make the website more engaging and personal. To this end, we use the "LIKE" or "SHARE" button. These features are provided by Facebook.
When you call up a page with a plugin on our website, your browser sets up a direct connection to Facebook's servers. The content of the plugin is transferred directly from Facebook to your browser, which integrates it in the website.
By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page on our website, even if you do not have a Facebook account or are not logged into Facebook at the time. This information (including your IP address) is transferred directly from your browser to one of Facebook's servers in the USA and stored there.
If you are logged into Facebook, Facebook is able to relate your visit to our website directly to your Facebook account. If you interact with the plugins, e.g. click on the "LIKE" or "SHARE" button, the corresponding information also is transferred directly to one of Facebook's servers and stored there. In addition, the information is published on Facebook and shown to your Facebook friends.
Facebook can use this information for such purposes as advertising, market research and targeted design of Facebook pages. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to analyze your use of our website with regard to the ads shown to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services connected to the use of Facebook.
If you do not want Facebook to link the data collected through our website to your Facebook account, you need to log out of Facebook before visiting our website.
The purpose and scope of the data collection, the further processing and use of the data by Facebook as well as your rights and control of privacy settings are described in Facebook's Privacy Policy under: https://www.facebook.com/about/privacy/.
b) XING Plugin
We use XING, a network designed to promote the professional contacts of its members, on our website. The network is provided by XING AG, a company having its headquarters at Dammtorstraße 29-32, 20354 Hamburg. When one of our pages with XING functions is accessed, a connection to XING servers is set up. We have no knowledge that XING stores personally identifiable data. As far as we know, XING does not analyze or store IP addresses. For more information on XING's Privacy Policy, please go to: https://www.xing.com/app/share?op=data protection.
c) LinkedIn Plugin
Our website uses functions offered by the LinkedIn network. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Whenever one of our website pages that contains LinkedIn functions is accessed, a connection is set up to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. When you click LinkedIn's "Recommend" button and are logged into your LinkedIn account, LinkedIn can relate your visit to our website to your user account. We would like to point out that in our function as provider of the pages we have no knowledge about the content of the data that is transferred or how it is used by LinkedIn. For more information, please refer to LinkedIn's Privacy Policy under: https://www.linkedin.com/legal/privacy-policy.
Data subject rights
You have the following rights:
- Pursuant to Art. 15 GDPR, the right to demand information about the personal data processed by us. In particular, you may demand information about the purposes of the processing, the category of personal data concerned , the categories of recipients to whom your data have been or will be disclosed, the planned period for which the data will be stored, the existence of the right to rectification, erasure, restriction of processing or objection to processing, the existence of the right to lodge a complaint with a supervisory authority, the source of your data, unless it was not collected by us, as well as the existence of automated decision-making, including profiling and, if applicable, meaningful information on related details.
- Pursuant to Art. 16 GDPR, the right to demand the rectification of inaccurate personal data or to have incomplete personal data completed without undue delay.
- Pursuant to 17 GDPR, the right to request erasure of the personal data stored by us, unless the processing of such data is required for exercising the right of freedom of expression and information, for compliance with a legal obligation, for tasks carried out in the public interest or in order to assert, exercise or defend legal claims.
- Pursuant to 18 GDPR, the right to demand restriction of processing your personal data, provided the accuracy of the data is contested by you, the processing is unlawful and you oppose the erasure of the personal data and we do not need the data any longer, but you require them for the assertion, exercise or defense of legal claims, or you have filed an objection to processing pursuant to Art. 21 GDPR.
- Pursuant to 20 GDPR, the right to receive the personal data that you provided to us in a structured, commonly used and machine-readable format or to request transmission of such data to another controller.
- Pursuant to 7(3) GDPR, the right to withdraw your previously given consent at any time. Consequently, we shall discontinue the processing of data that was based on the consent stated above.
- Pursuant to 77 GDPR, the right to lodge a complaint with a supervisory authority. As a rule, you can contact a supervisory authority at your habitual residence or place of work or the seat of our office.
Right to object
Provided that your personal data was processed on the basis of legitimate interests pursuant to Art. 6(1)(1)(f) GDPR, you have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data provided there are grounds for such objection relating to your particular situation or the objection concerns direct marketing purposes. In the latter case, you have a general right to object that will be implemented by us without statement of a particular situation.
If you would like to avail yourself of your right to revoke or object, you need only send an email to info@btu-beraterpartner.com.
Data security
To ensure the safety of visits to our website, we use the widespread SSL technology (Secure Socket Layer) in connection with the highest possible level of encryption that is supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we will revert to 128-bit v3 technology. You can see whether an individual page of our website is encrypted by checking the locked-key symbol or lock symbol in the lower status bar of your browser.
Apart from that, we implement suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction and against unauthorized access by third parties. We continuously improve our security measures in line with technological developments.
Updating and changing our Privacy Policy
The currently effective Privacy Policy is dated February 2024. It may be necessary to amend this Privacy Policy to reflect changes on our website, the services stated on it as well as regulatory changes or new specifications of authorities. You can find and print the effective version of our Privacy Policy at any time under https://www.btu-beraterpartner.com/datenschutz .