Data Protection Declaration

§ 1 Information on the Collection of Personal Data

In what follows, the owner and operator NEON Partnerschaft von Rechtsanwält:innen mbB well as the notaries associated to the partnership (see Sec. 2 ‘we’, ‘us’, ‘our’) provide information on the collection of personal data occurring when you are using our website (‘website’)Personal data is all data that can be related to you in person, e.g. name, address, e-mail addresses, user behaviour.
In addition, we provide information on the processing of personal data within the framework of our mandates. When providing our legal services, we generally also process personal data. We take our lawyer’s duty of confidentiality and the trust of our clients very seriously.

§ 2 Controller

Controller pursuant to Art. 4 para. 7 of the EU General Data Protection Regulation (“GDPR”) is NEON Partnerschaft von Rechtsanwält:innen mbB, limited liability partnershipregistered in the Partnership Register of the Local Court of Charlottenburg under the register number PR 472 B,, 30 8 89 19-0, Fax +49 30 8 89 19-100 (see our Legal Information). You can address enquiries to our data protection officer via or our postal addresses with the addition “Data protection matter”.

§ 3 Data protection rights

You have the right:

  • in accordance with Art. 7 para. 3 GDPR to revoke any consent given to us at any time. The consequence of this is that we may no longer continue any data processing based on this consent in the future;
  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you may request information on the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, limitation of processing or objection, the existence of a right of complaint, the origin of your data, unless it has been collected from us, as well as the existence of an automated decision making process including profiling and, where applicable, meaningful information on their details;
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
  • to demand the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR if the correctness of the data is disputed by you, the processing is unlawful, but you refuse to delete it, and
  • we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection against the processing pursuant to Art. 21 GDPR
  • in accordance with Art. 20 GDPR, to maintain your personal data which you have provided to us in a structured, common and machine-readable format or to request transmission to another responsible person; and
  • to complain to a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or of our office.

In order to exercise the above rights, please contact us by means of the options listed under § 2.

§ 4 Information about your right of objection

If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR if there are reasons to do so which result from your particular situation. If you wish to exercise your right to object, simply send an e-mail to

§ 5 Collection, processing and use of your data when using or website

When you are using our website we only collect the personal data that your browser is transmitting to our server, unless you have consented to further collection, processing and use, e.g. by cookies. This is the following data which we require technically in order to show you our website and to ensure stability and safety (the legal basis being Article 6 para. 1 sentence 1 lit. f GDPR, our legitimate interest being technical possibility of website operation):

  • IP address;
  • Date and time of request;
  • Time zone difference to Greenwich Mean Time (GMT);
  • Content of request (particular page);
  • Access status/HTTP status code;
  • Individual amount of data transferred;
  • Website from which the request originates;
  • Browser;
  • Operating system and its surface; and
  • Language and version of browser software.

In addition to the data aforementioned, we process your personal data only if there is a legitimate interest in the operation of the website, in particular:

  • replying to enquiries;
  • for the provision of services and/or information intended for you
  • for the operation and administration of our website;
  • for the prevention and investigation of fraud and criminal offences; and/or
  • for ensuring network and data security, insofar these interests are in accordance with the applicable law and with the rights and freedom of the user
  • you declared consent into collecting your data for specifically mentioned, legitimate purposes; or
  • we are legally obliged to do so.

§ 6 Third Party Cookies | Third Party Software

We obtain your express consent via our cookie banner in accordance with Section 25 (1) TDDDG or there is a technical necessity for the use of cookies in accordance with Section 25 (2) No. 2 TDDDG with regard to ensuring the permanent functionality and security of our websites and information technology systems. We base the following data processing on legal bases from the GDPR, regularly also on your express consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or Art. 6 Para. 1 S. 1 lit. f GDPR.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), to compile usage statistics for our website.
When using Google Analytics, so-called cookies are used, which are small text files that are temporarily stored in your internet browser via our website. The web analytics service is only used after you have given your consent by clicking on the consent button in the cookie banner on our website. The legal basis for collecting your data is Section 25 (1) TDDDG and the legal basis for further data processing by the web analytics service when using our website is Art. 6 para. 1 lit. a GDPR (consent). After granting your consent via our cookie banner, the advertising analysis process by Google Analytics begins. The information generated and collected by the cookies about your use of our website will be transmitted to and stored by Google on servers in the United States. You can find more information about Google’s data protection here.
The usage data collected includes:

  • IP address;
  • browser information (browser type, browser language);
  • date and time of the website visit;
  • length of stay on individual pages;
  • use of links on our website;
  • scrolling events;
  • playback of media;
  • internal searches;
  • frequency of page views.

Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected and any statutory retention obligations have expired.
You can revoke the consent you have given with regard to Google Analytics at any time in the settings of your web browser with effect for the future. Alternatively, you can stop the data processing by Google Analytics at any time by downloading, installing and using the browser add-on offered by Google here.


We use AWStats to statistically analyse our website. This programme is a free web analysis software. It is used to analyse log files that web servers create based on visitor requests. The programme does not use cookie files for analysis. The log files, which also contain shortened IP addresses, are used for statistical analysis. As a rule, this data cannot be linked to specific individuals. This data is not merged with other data sources and is used to ensure the smooth operation of the website.
Unlike other statistics programs, AWStats does not send any data to a third party server. The program is installed on our own hosting package. This also prevents data from being transferred abroad, for example, as our server is localised in Germany.

The legal basis for data processing by the AWStats service when using our website is Art. 6 para. 1 lit. f GDPR.


We use the human resources software solution of Personio (the ‘HR System’) from Personio SE & Co. KG, Seidlstraße 3, 80335 Munich, Germany. The connection between the HR system and the website is made on the server side via an XML interface. Current vacancies are dynamically published on the website If you click on “Apply now”, the application form will be opened on an external Personio page. We have a separate privacy policy for the processing of personal data in this context, which can be found here:

§ 7 Hosting

This website is hosted externally. The personal information collected on this website is stored on the host’s servers. This may include IP addresses, contact requests, meta and communication data, website access and other data generated via our website. External hosting is carried out for the purpose of fulfilling the contract with our potential and existing clients (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR). Our host will process your data only to the extent necessary to fulfil its obligations and will follow our instructions with respect to such data. We use the following host: hostNET Medien GmbH, Osterdeich 107, 28205 Bremen, Germany. The website is also maintained and developed by our technical support team: ALEKS & SHANTU GmbH, Seelower Str. 4, 10439 Berlin.

§ 8 Deletion of stored data

Your stored personal data will be deleted if the deletion does not conflict with statutory retention obligations or if the personal data is no longer required for its intended use in accordance with Art. 17 GDPR. If there is a legally permissible purpose for the further storage of personal data, their processing is restricted in accordance with Art. 18 GDPR in which these data are blocked and no longer processed. This applies in particular to data that must be kept for legal reasons.

§ 9 Collection and storage of personal data as well as type and purpose and their use in case of mandate

When you mandate us, we generally collect the following information:

  • your title, first name, surname and, if applicable, the name of your company,
  • your e-mail address,
  • your address,
  • the telephone numbers you provide us with, and
  • the information necessary for advising, asserting and defending your rights under the mandate.

These data shall be collected,

  • to identify you as our client;
  • to comply with our professional obligations (e.g. from BRAO, BORA and BNotO);
  • in order to be able to advise and represent you appropriately;
  • to correspond with you;
  • for invoicing; as well as
  • for the settlement of any mutual claims.

Data processing for these purposes is carried out on the basis of your request to accept a mandate and is necessary for the appropriate processing of the mandate and for the mutual fulfilment of obligations arising from the mandate agreement pursuant to Art. 6 para. 1 sentence 1 lit. b GDPR.
The personal data collected by us will be stored until the end of the legal retention obligation for lawyers (6 years after the end of the calendar year in which the mandate was terminated) and deleted thereafter, unless we are obliged to a longer storage due to tax and commercial storage and documentation obligations (such as from the German Commercial, Criminal or Fiscal Codes HGB, StGB and AO, currently between 2 and 10 years), legitimate interests in the storage exist,(e.g. during the course of limitation periods for the purpose of any legal defence which may be required) or you have consented to storage going beyond this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

§ 10 Passing on data from the mandate relationship to third parties

Your personal data will not be transferred to third parties for purposes other than those listed below. Insofar as this is necessary in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR for the processing of client relationships with you, your personal data will be passed on to third parties. This includes, in particular, passing on your personal data to negotiating partners, opponents of proceedings and their representatives (in particular their lawyers) as well as to arbitral tribunals and arbitration institutions, courts and other public authorities for the purpose of correspondence and for asserting and defending your rights. The data passed on may be used by the third party exclusively for the aforementioned purposes. The attorney-client privilege remains unaffected.
As far as the data concerned is subject to attorney-client privilege, the aforementioned disclosure to third parties shall only take place in consultation with you.

§ 11 Transfer of data from the mandate to third countries

Depending on the content of the client relationship, it may be necessary for us to transfer your data to a third country. If we do so, the data will be transferred in order to fulfil our obligations under the mandate or to assert, exercise or defend your legal claims.

to the top