Data protection
On this page, we inform you about the data processing that takes
place in the context of the use of the site "Lexparency"
(hereinafter: Lexparency) and to what extent personal data is
processed in the process by openJur gUG (haftungsbeschränkt)
(hereinafter: operator or we). Our data processing at a glance:
- We do not store information about identifiable individual
accesses to content on Lexparency.
- We do not use cookies.
- We use your IP address and unique identifiers of your terminal
device only as technically necessary to enable the use of
Lexparency.
- We also use your IP address to protect our systems in the event
that you attempt to access or penetrate our systems without
authorization.
Information requirements according to Article 13 GDPR
Contact details of the persons responsible,
Article 13 para. 1 lit. a GDPR
- openJur gUG (haftungsbeschränkt)
- Tinsdaler Heideweg 48
- 22559 Hamburg
- Phone: (+49) 040/209 319 41 - 0
- Fax: (+49) 040/209 319 41 - 9
- E-mail address: post@openjur.de
Purposes and legal basis for data processing,
Art. 13 para. 1 lit. c and d GDPR
We process personal data when accessing the information technology
systems operated by us (physical or virtual server systems) for
various purposes. This concerns the IP address publicly used by
your terminal device on the Internet, insofar as you access the
Internet directly with your terminal device, or the corresponding
IP address of the respective last network component visible to our
information technology systems, insofar as you access the Internet
indirectly, for example when using a proxy server, VPN server,
router or NAT gateway (hereinafter: your IP address).
On the one hand, this is done insofar as it is technically necessary
for the operation of websites(a). On the other hand, this serves
to protect our information technology systems from unauthorised
access(b).
-
(a) Every time you call up a resource (pages,
images, documents), certain data is processed, including your
IP address. If you request a resource (for example, by calling
up a page with the URL openjur.de) that is located on an
information technology system operated by us, your end device
accesses an information technology system operated by us
directly or indirectly and initiates corresponding data
processing there, which results in the transmission of
corresponding information to your end device. In this context
and only to the extent necessary for this technical process of
compiling and transmitting information, your IP address is
processed and stored in a volatile form for the duration of the
compilation and transmission of information.
We rely on Article 6 (1) lit. f GDPR as the legal basis for
this data processing. The operation of Lexparency and the
provision of the information published here is a means to
achieve the non-profit corporate purpose pursued by us;
to this extent, our legitimate interest lies in the
implementation of this corporate purpose.
-
(b) If you access information technology systems
operated by us in a way other than via an HTTP or HTTPS
connection and attempt to circumvent access restrictions
(such as password entries) or use an HTTP or HTTPS connection
to automatically and repeatedly query parts of the database not
permitted for these purposes, you will be denied access to our
information technology systems after a certain number of
accesses for a period of 24 hours. For this purpose, your IP
address is stored and processed for this period.
We rely on Article 6 (1) lit. f GDPR as the legal basis for
this data processing. It serves to ensure the security and
integrity of our information technology systems and in this
respect our legitimate interest lies in ensuring the smooth
and secure operation of our information technology systems.
Recipients or categories of recipients of the personal data,
Article 13 para. 1 lit. e GDPR
Personal data is not transmitted to third parties.
Intention of the controller to transfer the personal data to
a recipient in a third country or an international
organisation, Article 13 para. 1 lit. f GDPR
Personal data is not transferred to recipients in third
countries or to international organisations.
Duration of the storage of personal data or criteria for determining the duration, Article 13 para. 2 lit. a GDPR
The storage of the IP address for the technical transmission
of the internet page requested by you takes place during the
period of compilation and transmission of the information
requested by you, i.e. at the latest until the information
technology system to which your browser establishes an HTTPS
connection closes this connection. Insofar as the storage takes
place to secure the security and integrity of our information
technology systems in the event of unauthorised access, storage
takes place at the latest 24 hours after the last unauthorised
access. Storage of a unique identifier to accelerate the TLS key
exchange is stored for a maximum of ten minutes after your last
access.
Data subject rights, Article 13 para. 2 lit. b GDPR
You are entitled to various data subject rights under the General
Data Protection Regulation (GDPR):
- You have the right to request information from us about the
personal data stored by us, Article 15 GDPR.
- You have the right to request the correction of incorrect
personal data, Article 16 GDPR.
- You have the right, under the conditions of Article 17 GDPR,
to request the deletion of personal data concerning you.
- You have the right to request the restriction of the
processing of personal data concerning you under the
conditions of Article 18 GDPR.
- You have the right, insofar as you have provided us with
personal data, to receive this data in a structured, common and
machine-readable format and, insofar as this is technically
feasible, to obtain its transfer to another controller,
Article 20 GDPR.
- Insofar as the processing is carried out on the basis of
Article 6 (1) lit. e or f GDPR, you have the right to object
to the processing of the personal data relating to you at any
time.
Right to complaint, Article 13 (2) lit. d GDPR
In addition to the aforementioned data subject rights, you also
have the right to lodge a complaint with a supervisory authority.
The supervisory authority responsible for us is:
- Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
- Ludwig-Erhard-Str 22, 7. OG
- 20459 Hamburg
- Phone: (+49) 040/42854-4040
- Fax: (+49) 040/42854-4000
- E-mail address: mailbox@datenschutz.hamburg.de