Privacy Policy
in accordance with the EU General Data Protection Regulation (GDPR)
KINDL Rechtsanwalt GmbH
1. Personal data
We collect, process and use your personal data as the controller within the meaning of Art 4(7) GDPR only with your consent or mandate or order for the purposes agreed with you or if there is another legal basis in accordance with the GDPR (in particular Art 6(1)(a) GDPR); this is done in compliance with the provisions of data protection and civil law.
We only collect personal data that is necessary for the performance and processing of our services or that you have provided to us voluntarily. Insofar as it is mandate-related and necessary for the execution and processing of your order, we will pass on your data to our co-operation firms KINDL Steuerberater GmbH and KINDL Advisory GmbH or subcontractors engaged.
Personal data is all data that contains individual details about personal or factual circumstances, such as name, address, email address, telephone number, date of birth, age, gender, national insurance number, video recordings, photos, voice recordings of persons and biometric data such as fingerprints. Sensitive data such as health data or data in connection with criminal proceedings may also be included.
2. Information & deletion
As a client or generally as a data subject, you have the right to information about your stored personal data, its origin and recipients and the purpose of the data processing as well as a right to rectification, data transfer, objection, restriction of processing and blocking or erasure of incorrect or inadmissibly processed data at any time – subject to compliance with any professional confidentiality obligations.
If there are any changes to your personal data, please inform us accordingly.
You have the right to withdraw your consent to the use of your personal data at any time. Your request for information, deletion, correction, objection and/or data transfer, in the latter case, provided that this does not cause a disproportionate effort, can be sent to the address of the law firm stated in point 9 of this declaration.
If you are of the opinion that the processing of your personal data by us violates the applicable data protection law or your data protection claims have been violated in any other way, you have the option of complaining to the competent supervisory authority. In Austria, the data protection authority is responsible for this. The contact details of the data protection authority:
Address: Barichgasse 40-42, 1030 Vienna
Telephone: +43 1 52 152-0
E-Mail: dsb@dsb.gv.at
Homepage: www.dsb.gv.at
3. Data security
Your personal data is protected by taking appropriate organisational and technical precautions. These precautions relate in particular to protection against unauthorised, unlawful or accidental access, processing, loss, use and manipulation.
Notwithstanding our endeavours to maintain an appropriately high level of due diligence at all times, it cannot be ruled out that information that you disclose to us via the Internet may be viewed and used by other persons.
Please note that we therefore accept no liability whatsoever for the disclosure of information due to errors in data transmission not caused by us and/or unauthorised access by third parties (e.g. hacking attack on email account or telephone, interception of faxes).
4. Use of the data
We will not process the data provided to us for purposes other than those covered by the mandate agreement or by your consent or otherwise by a provision in accordance with the GDPR, or for marketing purposes (in particular invitations to events). An exception to this is the use for statistical purposes, provided that the data provided has been anonymised.
5. Cookie Consent Tool
We use the ‘Real Cookie Banner’ consent tool to manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents. Details on how ‘Real Cookie Banner’ works can be found at https://devowl.io/de/rcb/datenverarbeitung/.
The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consent.
6. Google Maps
Google Maps enables the embedding of maps directly into websites in order to improve the website. This requires the processing of the user’s IP address and metadata. Cookies or cookie-like technologies can be stored and read. These may contain personal data and technical data such as user IDs, consents, card software settings and security tokens. This data can be used to record websites visited, to compile detailed statistics on user behaviour and to improve Google’s services.
This data may be linked by Google with the data of users logged in to Google’s websites (e.g. google.com and youtube.com). Google makes personal data available to its affiliated companies, other trustworthy companies or persons who can process this data on the basis of Google’s instructions and in accordance with Google’s data protection provisions.
7. Google Fonts (local use)
Our website uses fonts from Google Inc. These fonts are loaded directly from our web server, which means that no connection to Google’s servers is established.
8. Transmission of data to third parties
In order to fulfil your order, it may also be necessary to forward your data to third parties (e.g. substitutes, insurance companies, service providers that we use and to whom we make data available, etc.), courts or authorities. Your data will only be forwarded on the basis of the GDPR, in particular to fulfil your order or on the basis of your prior consent.
We would also like to inform you that, as part of our representation and support, we regularly obtain factual and case-related information from you from third parties (in particular courts and authorities).
Some of the above-mentioned recipients of your personal data may be located outside your country or process your personal data there. The level of data protection in other countries may not be the same as in Austria. However, we only transfer your personal data to countries for which the EU Commission has decided that they have an adequate level of data protection or we take measures to ensure that all recipients have an adequate level of data protection, for which we conclude standard contractual clauses (2010/87/EC and/or 2004/915/EC).
9. Notification of data breaches
We endeavour to ensure that data breaches are detected at an early stage and, if necessary, reported immediately to you or the competent supervisory authority, including the respective categories of data affected, a description of the likely consequences and the measures taken to remedy the data breach.
10. Storage of data
We will not store data for longer than is necessary to fulfil our contractual or legal obligations and to defend against any liability claims.
11. Our contact details
KINDL Rechtsanwalt GmbH
Address: Geusaugasse 17, 1030 Vienna
Telephone: +43 1 997 42 91
E-Mail: office@teamkindl.legal
Homepage: www.teamkindl.legal
Data protection officer: Dr Caroline TOIFL
Dr Caroline TOIFL, managing partner
KINDL Rechtsanwalt GmbH in co-operation with KINDL Steuerberater GmbH und KINDL Advisory GmbH
Status: 19.08.2024