Data protection declaration


We treat your data responsibly

Privacy Statement regarding internet presence and communication

The following privacy statement is applicable to the usage of our internet presence (referred to in the following as „Website“) and all sub-pages as well as the usage of e-mail for communication with our office.

The privacy statement will be updated or amended from time to time. Please note the date and version number. In case of a client relationship or other contractual relationship other or additional rules may apply.

We are committed to protect the privacy. The collection and processing of your personal data complies with the current rules of data security, especially the EU-GDPR and the German Bundesdatenschutzgesetzes (BDSG new).

1 Executive and data security officer

Responsible for the collection and usage of your personal data in the meaning of Art. 4 Nr. 7 DSGVO are the partners of

Tomik + Partner mbB
Kättkenstraße 8
33790 Halle in Westfalen

Register AG Essen, PR 2386

In case you object to the collection, processing and usage of your data by us according to this privacy statement as a whole or in parts you can send your objection to the executives.

You can reach the data security executive at:

Tomik + Partner mbB WPG StBG
– Datenschutzbeauftragter –
Kättkenstraße 8
33790 Halle in Westfalen

The usage of the contact details submitted within this privacy statement by third parties for advertisement and information is strictly prohibited. The website operator explicitly reserves the rights of legal action against receipt of advertisements e-mails e.g. as spam e-mail.

2 General purpose of data processing

We do not collect any personal data in order to operate this website. Exceptions will be detailed fully in this statement.

3 Which data is affected?
3.1 Hosting

The hosting services made use by us are for the purpose of providing and maintaining the website. The hosting firm processes usage data, meta and communication data of visitors to our website on the basis of our justified interest in efficient and secure providing of our website according to Art. 6 Para. 1 S. 1 f) DSGVO in connection with Art. 28 DSGVO.

3.2 Services

We use third parties to optimise our internet presence and insert their services and contents such as for example maps in our websites (in the following referred to as „Services“). This involves that third parties process your IP-address. As this cannot be pre-empted technically the processing of the IP-address is a necessity for the usage and implementation of these Services. We endeavour to only use such service providers that process the IP-address solely for the rendering of the Services.

The legal basis for the processing of this data is Art. 6 Para. 1 f DSGVO. The Services used are

Google Maps

Integration of Maps „Google Maps“ provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The privacy statement of this service provider can be found under Information regarding the restriction/ deactivation of information transmission/ advertisement may be assessed under

Google Fonts

Integration of Fonts provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (see The privacy statement of this service provider may be found under Information regarding the restriction/ deactivation of information transmission/ advertisement can be assessed under

3.3 Access Data

We do not collect any further information about you and your usage of our website: Log-files are not saved permanently.

3.4 E-Mail Contact

In case you contact us for example via e-mail we process your information given to answer your request and in case there are follow-up questions.

We process other personal data, if you agree (Art. 6 Para. 1 S. 1 a) DSGVO) or if we have a justified interest in processing your data (Art. 6 Para. 1 S. 1 f) DSGVO). A justified interest is for example answering your e-mails.

4 Your rights

According to the applicable law you have certain rights regarding your personal data.

If you want to claim these rights please address your request to the address set out in Section 1 via e-mail or mail clearly disclosing your identity.

In the following we have set out your rights.

4.1 Right of confirmation and information

You have the right of clear information about the processing of your personal data.

You have the right of confirmation, whether your personal data is processed. If your personal data is processed, you have the right to request information about your personal data saved and copies of the saved personal data free of charge.

4.2 Right of correction

You have the right to request the correction and supplementation of your personal data.

4.3 Right of clearance

In some cases we are obliged to clear your personal data. You have the right to request clearance of this personal data according to Art. 17 Para. 1 DSGVO.

4.4 Right of restricted processing

In some cases you have the right to request the restriction of processing of your personal data.

4.5 Right of transmission of data

You have the right to receive, to transmit or to have us transmit your personal data in a machine readable format.

The right of transmission includes your right to have us transmit the personal data directly to a third party responsible, if technically feasible.

4.6 Right of objection

You have the right to object to a rightful processing of your personal data, if this is based on your special circumstances and our interest in processing the data does not prevail.

4.7 Automated decision/ Profiling

You have the right not to be subjected to an automated processing of data – including profiling – that unfolds legal effects or affects you in other similar ways.

An automated decision- making based on the personal data collected through the website is not performed.

4.8 Right to revoke an agreement

You have the right to at any time revoke any agreement to process your personal data.

4.9 Right to appeal to the supervisory authority

You have the right to appeal to the supervisory authority, especially in the EU-member-state of your abode, your place of employment or at the place of the alleged violation, in case you are of the opinion that the processing of your personal data is unrightful.

5 Data security

We are making the ultimate effort to secure your data in the framework of the applicable data security laws and the technical possibilities.

Your personal data is transmitted in an encrypted way. We use the encryption system SSL (Secure Socket Layer), but herewith point out, that data transmission via internet (e.g. via e-mail) may contain security gaps. A gapless protection of data against access by third parties is not possible.

Within the Engagment Agreement we offer the implementation of a generally accepted process for the encrypted e-mail communication as well as other solutions for the encrypted submission of data. Please address your contact for further details.

To secure your data we maintain technical and organisational security measures according to Art. 32 DSGVO, which we adjust to the actual technical state of the art.

In addition we do not guarantee, that our service is accessible at all times; malfunctions disruptions and black outs may happen. The servers used by us are diligently secured.

6 Transmission of data to third parties

In general we only use your personal data internally within our business.

If and in so far as we use third parties to fulfil our engagements (e.g. IT-providers), these only receive personal data as far as necessary for providing the specific services.

In the case that we outsource parts of the data processing („commissioned data processing“), we legally bind the service providers of commissioned data processing in the contract to use personal data only in adherence with the data security laws and to safeguard the rights of the concerned person.

A data transmission to an institution or person outside the EU does not happen and is not planned.

35 KiB

Version 2.0 dated 24.05.2018