top of page

1) Introduction and Contact Details of the Controller

1.1 We appreciate your visit to our website and thank you for your interest. Below, we inform you about how your personal data is handled when you use our website. Personal data refers to any information that can be used to personally identify you.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:
Dr. Yannic Hübner, hübner Rechtsanwalt
Feldbergstraße 23, 60323 Frankfurt am Main, Germany
Phone: +49 69 380298930
Fax: +49 69 380298931
Email: kanzlei@huebner.legal

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.

2) Data Collection When Visiting Our Website

2.1 When you use our website for informational purposes only—i.e., without registering or otherwise transmitting information to us—we collect only the data that your browser sends to our server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary to display the website:

  • The page visited on our website

  • Date and time of access

  • Amount of data transferred (in bytes)

  • Referring source (referrer URL)

  • Browser used

  • Operating system used

  • IP address used (possibly in anonymized form)

Processing is carried out in accordance with Art. 6(1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website. This data is not shared or used in any other way. However, we reserve the right to retrospectively review server log files if there are specific indications of unlawful use.

2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the string “https://” and the padlock icon in your browser’s address bar.

3) Hosting & Content Delivery Network

3.1 Wix
We use the services of the following provider to host our website and display its content:
Wix HQ, 6350671, Nemal Tel Aviv St 40, Tel Aviv-Yafo, Israel
Data may also be transferred to:
Wix Inc., 500 Terry A. Francois Boulevard, San Francisco, California 94158, USA

All data collected on our website is processed on the provider’s servers.
We have entered into a data processing agreement with the provider to ensure the protection of our website visitors’ data and to prevent unauthorized disclosure to third parties.

For data transfers to the provider’s location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.
For data transfers to the USA, the provider is certified under the EU-U.S. Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision by the European Commission.

3.2 Wix (wixstatic)
We use a content delivery network (CDN) provided by:
Wix HQ, 6350671, Nemal Tel Aviv St 40, Tel Aviv-Yafo, Israel
Data may also be transferred to:

  • Wix Inc., 500 Terry A. Francois Boulevard, San Francisco, California 94158, USA

  • Fastly Inc., 475 Brannan St. #300, San Francisco, CA 94107, USA

  • Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

  • Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109, USA

This service enables us to deliver large media files such as graphics, page content, or scripts more quickly via a network of regionally distributed servers.
Processing is carried out in accordance with Art. 6(1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website.
We have entered into a data processing agreement with the provider to ensure the protection of our website visitors’ data and to prevent unauthorized disclosure to third parties.

For data transfers to the provider’s location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.
For data transfers to the USA, the data recipients are certified under the EU-U.S. Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision by the European Commission.

4) Cookies

To make your visit to our website more attractive and to enable the use of certain functions, we use cookies—small text files that are stored on your device. Some of these cookies are deleted automatically after you close your browser (so-called “session cookies”), while others remain on your device for a longer period and allow us to save site settings (so-called “persistent cookies”). You can find the storage duration of persistent cookies in your browser’s cookie settings overview.

If personal data is also processed by individual cookies we use, the processing is carried out either in accordance with Art. 6(1)(b) GDPR for the performance of a contract, in accordance with Art. 6(1)(a) GDPR if consent has been given, or in accordance with Art. 6(1)(f) GDPR to safeguard our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the site visit.

You can configure your browser to notify you when cookies are set and decide individually whether to accept them, or to exclude the acceptance of cookies in certain cases or generally.
Please note that disabling cookies may limit the functionality of our website.

5) Contacting Us

When you contact us (e.g. via email), personal data is collected. The specific data collected when using a contact form is indicated on the respective form. This data is used exclusively for the purpose of responding to your inquiry and for the associated technical administration.
The legal basis for processing this data is our legitimate interest in responding to your request pursuant to Art. 6(1)(f) GDPR. If your contact is aimed at concluding a contract, an additional legal basis for processing is Art. 6(1)(b) GDPR.
Your data will be deleted once your inquiry has been conclusively resolved, provided that no statutory retention obligations apply.

6) Data Subject Rights

6.1 Under applicable data protection law, you have the following rights with respect to the controller regarding the processing of your personal data (rights of access and intervention), with reference to the respective legal basis for exercising these rights:

  • Right of access pursuant to Art. 15 GDPR

  • Right to rectification pursuant to Art. 16 GDPR

  • Right to erasure pursuant to Art. 17 GDPR

  • Right to restriction of processing pursuant to Art. 18 GDPR

  • Right to notification pursuant to Art. 19 GDPR

  • Right to data portability pursuant to Art. 20 GDPR

  • Right to withdraw consent pursuant to Art. 7(3) GDPR

  • Right to lodge a complaint pursuant to Art. 77 GDPR

6.2 RIGHT TO OBJECT
IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTERESTS AS PART OF A BALANCING OF INTERESTS, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE AFFECTED DATA. HOWEVER, FURTHER PROCESSING MAY BE PERMITTED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS.
IF YOUR PERSONAL DATA IS PROCESSED BY US FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT TO SUCH PROCESSING AT ANY TIME. YOU MAY EXERCISE YOUR RIGHT TO OBJECT AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE AFFECTED DATA FOR DIRECT MARKETING PURPOSES.

Privacy Policy

7) Duration of Storage of Personal Data

The duration of the storage of personal data is determined by the applicable legal basis, the purpose of processing, and—where relevant—statutory retention periods (e.g. commercial and tax law retention requirements).
Where processing is based on explicit consent pursuant to Art. 6(1)(a) GDPR, the data will be stored until the consent is withdrawn.
If statutory retention periods apply to data processed under Art. 6(1)(b) GDPR in the context of contractual or quasi-contractual obligations, such data will be routinely deleted after the retention periods expire, unless it is still required for contract performance or initiation, or unless we have a legitimate interest in continued storage.
Where processing is based on Art. 6(1)(f) GDPR, the data will be stored until you exercise your right to object under Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.
Where personal data is processed for direct marketing purposes under Art. 6(1)(f) GDPR, it will be stored until you exercise your right to object under Art. 21(2) GDPR.
Unless otherwise stated in this privacy policy regarding specific processing situations, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.

Copyright Notice: This privacy policy was created by the specialist lawyers of the IT-Recht Kanzlei and is protected by copyright (https://www.it-recht-kanzlei.de).

Footer_Logo_2x_edited.png
bottom of page