Personal data is collected for the use of our services. We will inform you below about this collection, storage, use and your rights in this context.

Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.

The controller pursuant to Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is Reeg Rechtsanwälte PmbB, Rheinvorlandstr. 7, 68159 Mannheim (see our legal notice).

If you contact us, the data you provide (e.g. your e-mail address, your name and telephone number, if applicable) will be stored by us in order to answer your inquiry. We delete the data arising in this context after storage is no longer required, or restrict processing if there are statutory retention obligations. If your inquiry results in a client relationship, we will store the data necessary for processing the client in our files. Please refer to our information on data protection in connection with a client relationship.

Your rights

You have the following rights vis-á-vis us regarding your personal data:

• right of access
• right to rectification or erasure
• right to restriction of processing
• right to object to processing
• right to data portability

You also have the right to complain to a data protection supervisory authority about our processing of your personal data.

Use of our website

The use of our website is purely for information purposes. This means that when you use our website, only the personal data that your browser transmits to our server and that is technically necessary to display the website is collected and processed. To display our website, we collect the following data on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR in order to display our website to you and to ensure the stability and security of the connection:

• content of the request (domain and specific page or files accessed)
• date and time of the request including time zone difference to Greenwich Mean Time (GMT)
• access status/HTTP status code or notification of successful retrieval
• amount of data transferred in each case
• website from which the request originates (referrer URL)
• IP address and provider of the user
• browser (browser type, version and language of the browser software)
• the user's operating system and its interface.

Our website is hosted by STRATO. Contract data processing takes place in this relationship. STRATO has provided us with the following information on the security of the data in the data centers:

• STRATO operates two data centers in Berlin and Karlsruhe, whose level of security in terms of physical security, energy supply, air conditioning, network connection, reliability and access control is verified by certification in accordance with the ISO/IEC 27001 security standard.

• The data centers are used exclusively by STRATO. There is no co-location or server housing and therefore no access by third parties (except for maintenance etc., although STRATO employees are required to accompany them).

• STRATO hosts over 60,000 servers in its data centers. The data centers are designed for very large hosting dimensions in terms of both space and energy.

• The technology in the data centers is designed to be redundant as far as possible. Most systems are duplicated to ensure maximum availability of services.

• Data processing only takes place in these data centers and therefore exclusively in Germany, i.e. STRATO is fully subject to the legal data protection regulations applicable in Germany.

Use of our Nextcloud

You can upload digital data (especially data with sensitive content, large amounts of data and files that are sorted out by email filters due to their file format as possible malware) to our Nextcloud. We will be happy to provide you with an upload link on request.

The transfer to our Nextcloud is encrypted. Our Nextcloud links are valid for five days as standard. Data stored via Nextcloud is transferred to our internal servers and stored there with the other client-related data in accordance with our guidelines on data protection in the client relationship. Client-related data on the Nextcloud is deleted regularly.

When using our Nextcloud, the personal data that your browser transmits to our server and that is technically necessary for use is collected and processed. When using our Nextcloud, we collect the following data on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR in order to display our Nextcloud to you, to enable file transfer and to ensure the stability and security of the connection:

• content of the request (domain and specific page or files accessed)
• date and time of the request including time zone difference to Greenwich Mean Time (GMT)
• access status/HTTP status code or notification of successful retrieval
• amount of data transferred in each case
• website from which the request originates (referrer URL)
• IP address and provider of the user
• browser (browser type, version and language of the browser software)
• the user's operating system and its interface.

Nextcloud is an open-source software that enables secure, encrypted, password-protected and GDPR-compliant transmission of digital data. Our Nextcloud is a managed Nextcloud from Ionos and is hosted on Ionos servers. In this relationship, commissioned data processing is carried out by Ionos.

Data protection in the attorney-client relationship

We will be happy to provide you with information on the collection and processing of personal data at the beginning of the attorney-client relationship or here for download.