Privacy policy

We are pleased that you are visiting our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to take this opportunity to inform you which of your personal data we collect when you visit our website and for what purposes it is used.

This privacy policy applies to the attorneys FX legal website, which can be accessed under the domain fx-legal.de and the various subdomains (“our website”).

Who is responsible and how can I contact you?

Person responsible
for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)

FX legal Paloubis Gebhard Rechtsanwälte GbR
Christos Paloubis, Felix Gebhard
Widenmayerstrasse 4
80538 Munich
Phone: +49 89 21 11 22 90
Email: info@fx-legal.de

What is it about?

This privacy policy meets the legal requirements for transparency in the processing of personal data. This is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, e-mail address, IP address or user behavior when visiting a website. Information for which we cannot (or only with disproportionate effort) establish a connection to your person, e.g. through anonymization, is not personal data. The processing of personal data (e.g. the collection, retrieval, use, storage or transmission) always requires a legal basis and a defined purpose.

Stored personal data will be deleted as soon as the purpose of the processing has been achieved and there are no legitimate reasons for further storage of the data. We will inform you about the specific storage periods or criteria for storage in the individual processing operations. Irrespective of this, we store your personal data in individual cases for the assertion, exercise or defense of legal claims and in the event of statutory retention obligations.

Who receives my data?

We only pass on your personal data that we process on our website to third parties if this is necessary for the fulfillment of the purposes and is covered by the legal basis (e.g. consent or protection of legitimate interests) in individual cases. In addition, in individual cases we pass on personal data to third parties if this serves the assertion, exercise or defense of legal claims. Possible recipients may then be, for example, law enforcement authorities, lawyers, auditors, courts, etc.

Insofar as we use service providers for the operation of our website who process personal data on our behalf as part of order processing in accordance with Art. 28 GDPR, they may be recipients of your personal data. You can find more information on the use of processors and web services in the overview of the individual processing operations.

Are cookies used?

Cookies are small text files that are sent by us to the browser of your end device and stored there when you visit our website. As an alternative to the use of cookies, information can also be stored in the local storage of your browser. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Other cookies, on the other hand, enable us to carry out various analyses, so that we are able, for example, to recognize the browser you are using when you visit our website again and to transmit various information to us (non-essential cookies). With the help of cookies, we can, among other things, make our website more user-friendly and effective for you, for example by tracking your use of our website and determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly via your browser. Cookies do not cause any damage to your end device. They cannot execute programs or contain viruses.

We provide information about the respective services for which we use cookies in the individual processing operations. You can find detailed information on the cookies used in the cookie settings or in the Consent Manager of this website.

What rights do I have?

Under the conditions of the statutory provisions of the General Data Protection Regulation (GDPR), you have the following rights as a data subject:

• Access pursuant to Art. 15 GDPR to the personal data stored about you in the form of meaningful information on the details of the processing as well as a copy of your data;
• Rectification in accordance with Art. 16 GDPR of incorrect or incomplete data stored by us;
• Erasure pursuant to Art. 17 GDPR of data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
• Restriction of processing pursuant to Art. 18 GDPR if the accuracy of the data is contested, the processing is unlawful, we no longer need the data and you oppose their erasure because you require them for the establishment, exercise or defense of legal claims or you have objected to processing pursuant to Art. 21 GDPR.
• Data portability pursuant to Art. 20 GDPR, insofar as you have provided us with personal data on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR or on the basis of a contract pursuant to Art. 6 para. 1 lit. b GDPR and these have been processed by us using automated procedures. You will receive your data in a structured, commonly used and machine-readable format or we will transmit the data directly to another controller if this is technically feasible.
• Objection pursuant to Art. 21 GDPR to the processing of your personal data, insofar as this is carried out on the basis of Art. 6 para. 1 lit. e, f GDPR and there are reasons for this arising from your particular situation or the objection is directed against direct advertising. The right to object does not exist if overriding, compelling legitimate grounds for the processing can be demonstrated or the processing is for the establishment, exercise or defense of legal claims. If the right to object does not exist for individual processing operations, this is indicated there.
• Revocation pursuant to Art. 7 para. 3 GDPR of your consent with effect for the future.
• Complaint pursuant to Art. 77 GDPR to a supervisory authority if you believe that the processing of your personal data violates the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.

How is my data processed in detail?

Below we inform you about the individual processing operations, the scope and purpose of the data processing, the legal basis, the obligation to provide your data and the respective storage period. Automated decision-making in individual cases, including profiling, does not take place.

Provision of the website

Type and scope of processing
When you access and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a log file:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which the access was made (referrer URL)
• Browser used and, if applicable, the operating system of your computer, as well as the name of your access provider

Our website is not hosted by us, but by a service provider who processes the aforementioned data on our behalf in accordance with Art. 28 GDPR.

Purpose and legal basis
The processing is carried out to safeguard our overriding legitimate interest in displaying our website and ensuring security and stability on the basis of Art. 6 para. lit. f GDPR. The collection of data and storage in log files is absolutely necessary for the operation of the website. There is no right to object to the processing due to the exception under Art. 21 para. 1 GDPR. Insofar as further storage of the log files is required by law, the processing is carried out on the basis of Art. 6 para. 1 lit. c GDPR. There is no legal or contractual obligation to provide the data, but it is not technically possible to access our website without providing the data.

Storage duration
The aforementioned data is stored for the duration of the website display and, for technical reasons, for a maximum of 7 days.

Data processing for inquiries and in client relationships

Type and scope of processing
If you contact us or instruct us to provide legal services, the personal data you provide will be processed for the purpose of providing our advisory or representation services. Contact data such as addresses, e-mail addresses or telephone numbers are processed in particular for the purpose of contacting you or third parties. We store and process the data in a special cloud-based law firm management software. We have concluded an agreement with the provider for the processing of personal data on our behalf in accordance with Art. 28 GDPR and have also ensured that the provider has suitable technical and organizational measures in place to protect your data.

Purpose and legal basis
In particular, insofar as personal data of our clients or contact persons are concerned, the processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR for the purpose of fulfilling a contract or providing pre-contractual measures. Personal data of third parties, for example opposing parties, opposing lawyers or service providers are processed on the basis of Art. 6 para. 1 lit. f GDPR. We would like to point out that the right to erasure described above pursuant to Art. 17 GDPR may be restricted or excluded for personal data processed for the establishment, exercise or defense of legal claims (Art. 17 para. 3 lit. e GDPR).

Storage period
The data processed for the purposes of client processing will be processed for the duration of the client relationship and subsequently for the duration of statutory retention periods. As a rule, reference files are stored for six years (§ 50 (1) BRAO); longer retention periods may apply to other documents.