Find out more about us.
The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the statutory provisions. In this privacy information, we inform you about the most important aspects of data processing in the context of our websites.
The controller for data processing is
RD Legal GmbH
Saarbrücker Str. 18
10405 Berlin
Deutschland
Phone: +49-30-809 332 940
Email: contact@rightsdefend.com
We use cookies or similar technologies such as pixels, tags, or web beacons (hereinafter collectively: “cookies”) on our website. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device, do not contain viruses, trojans, or other malware. Pixels are small graphics embedded via the HTML code of our website. No information is stored or altered on your device through the pixel tag itself, so pixels also do not cause any damage to your device, nor do they contain viruses, trojans, or other malware.
Information is stored in the cookie that arises in connection with the specifically used device. However, this does not mean that we thereby obtain direct knowledge of your identity. Cookies transmit your IP address, the referrer URL of the visited website, the time the website was viewed, the browser used, and previously set cookie information to a web server. This enables us to perform and offer the services described in this privacy information.
The use of cookies serves, on the one hand, to technically enable the basic use of our services for you.
For this purpose, we use so-called session cookies or transient cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site. The data processed through these cookies is required for the aforementioned purposes to safeguard our legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR and technically pursuant to Sec. 25 para. 2 no. 2 TDDDG in order to offer you a requested service.
In addition, we use temporary or persistent cookies to optimize user-friendliness, which are stored on your device for a specific, defined period. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you made. The data processed through these cookies is required for the aforementioned purposes to safeguard our legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR and technically pursuant to Sec. 25 para. 2 no. 2 TDDDG in order to offer you a requested service.
We also use third-party tools based on cookies to statistically record the use of our website and to optimize our offering. Cookies are set if you have explicitly consented to cookies when accessing our website, Art. 6 para. 1 sentence 1 lit. a GDPR and Sec. 25 para. 1 TDDDG.
When you access our website for the first time or wish to change your previous decision, you can adjust your settings via our cookie banner. The cookie banner can be found at any time in the lower section of our page. We store your settings on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. We have a legitimate interest in a functioning consent management. The technical implementation is based on Sec. 25 para. 2 no. 2 TDDDG, as this is necessary for the functionality of the website. We use the cookie banner of our service provider CookieYes Ltd., 3 Warren Yard Warren Park, Wolverton Mill, Milton Keynes, MK12 5NW, United Kingdom. For the transfer of data to the United Kingdom, there is an adequacy decision by the EU, so an adequate level of data protection can be assumed.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a notice always appears before a new cookie is created. Completely deactivating cookies may, however, result in you not being able to use all functions of our website. You can prevent the use of cookies on our pages using appropriate tools or browser add-ons (e.g., the “AdBlock” add-on for the Firefox browser).
Cookies are automatically deleted after a defined period. More detailed information can be found in the respective data processing activities.
In the context of data processing, data may be transferred to third countries, i.e., to recipients outside the EU or the European Economic Area (EEA). If the European Commission has issued a decision pursuant to Art. 45 para. 3 GDPR confirming an adequate level of protection for the third country, no additional measures are required for the data transfer. In the case of data transfers to recipients based in the USA, this is based on the so-called Transatlantic Data Privacy Framework (DPF) of 10 July 2023, provided the recipient has an appropriate certification. A list of currently certified companies is available here: https://www.dataprivacyframework.gov/s/participant-search. In other cases, and for data transfers to other so-called unsafe third countries, a data transfer only takes place if the requirements under Art. 46 et seq. GDPR are met. Specifically, this means that a transfer to third countries only occurs if
– the recipient offers adequate so-called safeguards for the protection of personal data in accordance with Art. 46 GDPR,
– you have expressly consented to the transfer after being informed of the risks, pursuant to Art. 49 para. 1 lit. a GDPR,
– the transfer is necessary for the performance of contractual obligations between you and us, or
– another exception under Art. 49 GDPR applies.
Which of the aforementioned bases applies in each individual case will be stated for the relevant processing activity.
Data transfers to recipients based in the USA who do not have DPF certification and for whom an adequate level of data protection cannot be established through safeguards within the meaning of Art. 46 GDPR will only take place with your consent pursuant to Art. 49 para. 1 lit. a GDPR. We point out that for recipients based in the USA without DPF certification, no adequate level of data protection comparable to that in the EU can be guaranteed. Such transfers of personal data entail the following risks: There is a risk that U.S. authorities may access the personal data based on surveillance programs under Section 702 of the FISA (Foreign Intelligence Surveillance Act), such as PRISM and UPSTREAM, and on the basis of Executive Order 12333 or Presidential Policy Directive 28. EU citizens have no effective legal remedies against such access either in the USA or in the EU.
Further information and a copy or reference to the applicable safeguards can be found in the description of the respective processing.
When you access our website, certain information is automatically transmitted to our server by the browser used and stored in so-called server log files. This particularly includes:
– IP address of the requesting device
– Date and time of access
– Name and URL of the requested file
– Website from which access occurs (referrer URL)
– Browser and operating system used
– Name of the access provider
The processing of this data is carried out for the following purposes:
– Ensuring smooth connection establishment
– Correct display of our content
– Ensuring system security and stability
– Technical evaluation in the event of errors or attacks
The legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in the secure and functional provision of the website.
The recipient of the data is our hosting service provider IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, which technically operates the website and its basic functions on our behalf.
The data is generally stored for seven days and then automatically deleted. A longer storage period only occurs if a security-relevant incident is detected and then only until its complete clarification.
If you send us a general inquiry via our contact form or by email, we process your personal data exclusively for the purpose of handling and responding to your request. This particularly concerns your contact details (e.g., name, email address) and the content of your inquiry.
The legal basis for this processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in appropriate communication with interested parties and in responding to general inquiries.
Your data will be deleted as soon as it is no longer required for processing, usually no later than six months after the conclusion of the communication.
You may commission us as a client to represent your interests in the event of a rights infringement. For this, we process the contractual data and case-related information you provide. Your data may be obtained from the provider Media Ident GmbH.
We use this data to assess your case and communicate with you.
The processing of your data is based on Art. 6 para. 1 sentence 1 lit. b GDPR.
The data is processed for the duration of the contractual relationship and deleted upon expiry of the statutory retention periods.
In the event of a rights infringement, we may contact you directly on behalf of our clients, processing your contact details and case-related information. If you then contact us (e.g., via contact form or email), we also process your information. If we contact you first, we obtain your data from our clients.
We use this data to assess your case and communicate with you.
The legal basis for processing data when contacting you on behalf of a client is Art. 6 para. 1 sentence 1 lit. f GDPR. We have a legitimate interest in supporting our contractual partners in asserting legal claims.
The data is stored for the duration of relevance for the assignment or contractual relationship and deleted upon expiry of the statutory retention periods.
Following an assignment, we may proceed with debt collection. Clients also have the option of assigning us their claims.
In such cases, we process all case-related information received from our client or through further communication. The processing is carried out to assert civil law claims on behalf of our client or ourselves.
The legal basis is Art. 6 para. 1 lit. b GDPR if debt collection is part of the contract with the client, and Art. 6 para. 1 sentence 1 lit. f GDPR if we enforce the claim in our own interest. Our legitimate interest lies in enforcing our own claims.
The data is processed for the duration of relevance of the procedure and deleted after expiry of the statutory retention periods.
You can register as a client or opponent on the platform to view the status of your case or manage your matter. For this, we require your email address and case number.
Once you confirm your email address via the double opt-in procedure, you can log in using a secure password of your choice.
We process your data to provide access to the platform on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. We have a legitimate interest in providing a platform for managing the case.
The data is processed until the account is deleted. Data related to a case is deleted upon conclusion of the matter and expiration of the statutory retention periods.
You also have the option of using the platform via an app. Downloading the app is voluntary via the respective app stores (e.g., Apple App Store or Google Play Store). Please note that the app stores are data controllers in their own right. We have no influence on their data processing and ask that you review the respective privacy policies before downloading.
After successfully downloading and installing the app, you can register and log in just as with the web platform. In addition to the data processed via the web platform, device-specific information (e.g., operating system, device ID) may also be processed when using the app.
The processing of your personal data is carried out to provide access to the platform in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in enabling you to use the platform flexibly via the app.
Data processing continues until the deletion of the account or the app. Data associated with a specific case is deleted upon conclusion of the matter and expiration of the statutory retention periods.
An interactive map element from Google Maps is integrated on our website. Activation establishes a connection to Google’s servers, during which personal data is processed by Google. This particularly includes:
– IP address of the requesting device
– Date and time of the access
– URL of the accessing page
– Location data (if location sharing is enabled)
– If applicable, technical browser data (e.g., device type, language, operating system)
– Google-specific cookies or identifiers
Google Maps is only activated after you have given your consent. The storage and access of information on your device is governed by Sec. 25 para. 1 TDDDG. The subsequent processing of personal data is based on Art. 6 para. 1 lit. a GDPR. Your consent is recorded via the consent banner and can be withdrawn there at any time with future effect.
The recipient of the data is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. A transfer to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA cannot be ruled out. Google LLC is a participant in the EU-U.S. Data Privacy Framework (DPF), ensuring an adequate level of data protection for transfers to the USA.
If Google does not link your data to your logged-in account, your data will generally be deleted after 30 days.
If you apply to us, e.g., by email, we process your personal data that you submit to us in the context of your application. This includes, in particular, your contact details, information on your qualifications, and any attachments such as your résumé or certificates.
The processing of your data is carried out for the purpose of conducting the application process. The legal basis is Art. 6 para. 1 sentence 1 lit. b GDPR.
If no employment is offered, we delete your data no later than six months after the conclusion of the procedure, unless longer storage is required due to legal obligations or for the defense against legal claims.
You have the following rights under the GDPR:
Pursuant to Art. 15 GDPR, you have the right to obtain information about all data we store about you at any time. This includes, in particular:
– the purposes for which we process your data,
– the categories of data we process,
– the recipients or, if unknown, categories of recipients to whom we disclose your data,
– the period for which we store your data or, if this is not determinable, the criteria used to determine that period, and
– if applicable, the origin of the data, if not collected directly from you.
If your data processed by us is incorrect or incomplete, you can request that we correct or complete it at any time under Art. 16 GDPR.
If the original legal basis for processing no longer applies, or if you have withdrawn your consent or objected to processing, or if we are not allowed to process your data for one of the other reasons listed in Art. 17 para. 1 GDPR, you may request the deletion of your personal data.
This right does not apply if the processing is necessary for exercising the right to freedom of expression and information, for fulfilling public interests, due to a legal obligation, or for the establishment, exercise, or defense of legal claims.
Pursuant to Art. 18 GDPR, you may also request the restriction of processing. This applies if you contest the accuracy of the data, if processing is unlawful, if we no longer need the data for the specified purposes, or if you have objected and we may not lawfully process the data in the latter two cases.
You may also request, pursuant to Art. 20 GDPR, the transfer of your data in a structured, commonly used, and machine-readable format either to yourself or to another controller.
If you have given your consent to us for processing your data under Art. 6 para. 1 sentence 1 lit. a or Art. 9 para. 2 lit. a GDPR, you may withdraw this consent at any time pursuant to Art. 7 para. 3 GDPR. Upon withdrawal, we will cease processing your data. However, the lawfulness of processing prior to withdrawal remains unaffected.
Pursuant to Art. 77 GDPR, you also have the right to lodge a complaint with a supervisory authority. This is usually the authority of your habitual place of residence or work, or alternatively, the supervisory authority at the seat of our company.
RIGHT TO OBJECT
PURSUANT TO ART. 21 GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA IF WE PROCESS YOUR PERSONAL DATA SOLELY ON THE BASIS OF OUR LEGITIMATE INTERESTS AND IF THERE ARE GROUNDS RELATING TO YOUR PARTICULAR SITUATION.
IF YOUR OBJECTION RELATES TO DIRECT MARKETING, YOU HAVE A GENERAL RIGHT TO OBJECT WITHOUT STATING ANY PARTICULAR REASONS.
YOU MAY SUBMIT YOUR OBJECTION BY EMAIL TO [contact@rightsdefend.com].