Orbit takes the privacy of your personal data seriously. We value the trust our clients place in us and are committed to safeguarding the integrity and security of personal data. This privacy notice (“Notice”) is to notify you about the processing of your personal data by Orbit Partnerschaft von Rechtsanwälten mbB Hillebrand Mogck Mostertz Neidel Schachinger (“Orbit”).
This Notice is addressed to any individual with whom Orbit has (or is about to have) an attorney-client relationship or any other contractual, communication or information relationship.
As the protection and confidentiality of your personal data is of the utmost importance to us, we process your personal data only as permissible under statutory law – in particular, the EU General Data Protection Regulation (“GDPR”) and the German Federal Data Protection Act (Bundesdatenschutzgesetz).
For questions on the processing of your personal data please contact us (as data controller) via:
Orbit Partnerschaft von Rechtsanwälten mbB
Hillebrand Mogck Mostertz Neidel Schachinger
The relevant personal data we process are your contact details and other personal information we need in order to provide the services requested. This may cover information included in our correspondence, information that is typically included in legal documents or public registers, information relating to your relationships with employers or third parties (such as file numbers or account numbers). You may have not shared your personal data with us directly, but we received it from our clients or business partners which have any kind of relationship with you. We may also have collected your personal data from sources publicly available (e.g., registers, websites or guest lists). We process your personal data on an as-needed-basis with respect to legitimate interests of Orbit pursuant to Art. 6 (1) lit. f GDPR, inter alia, relating to engagement letters, contracts, internal administration matters, KYC screenings, court or administrative proceedings, client information letters and events and any other communication purposes, service provider agreements, IT security matters and crime prevention. Also, we process your personal data to perform contracts entered into by individuals or to conduct pre-contractual measures requested by individuals pursuant to Art. 6 (1) lit. b GDPR. Without you providing your personal data, we cannot execute our contractual relationship or serve the aforementioned communication purposes. To limited extent, we also need to process your personal data pursuant to Art. 6 (1) lit. c) GDPR in order to comply with applicable law, e.g. to conduct identification measures under the German Anti-Money Laundering Act (Geldwäschegesetz), or to hold and manage out reference files under the German Federal Lawyers' Act (Bundesrechtsanwaltsordnung).
Every employee of Orbit or external service providers with access to your personal data is obliged to keep such data confidential.
Subject to legal retention obligations, we will delete your personal data once it is no longer needed for the purposes mentioned above.
Only in case of statutory obligations or your explicit consent we will transmit your personal data.
Where required in line with the purposes mentioned above (section “Data processing”), we may have to disclose your personal data to service providers within and outside the European Economic Area (EEA), e.g. with respect to IT service providers. In such case, service providers will process personal data only pursuant to our instructions and will be bound by a confidentiality undertaking. Furthermore, under the purposes mentioned above performance of our services may require us to transfer personal data to third parties within and outside the EEA, e.g. to business partners or collaborating legal counsel on a client case, as well as service providers and opponents involved. Where permitted under the law, we can also disclose your data to public bodies (e.g. tax agencies, supervisory authorities or public registers) and German and foreign courts on an as-needed basis, i.e. to comply with statutory obligations or protect the interests of Orbit.
Jurisdictions outside the EEA may not protect personal data by comparable rules and legislation. Therefore, we will implement adequate protection measures where needed in order to assure an appropriate level of protection for your personal data in such cases. Please contact us for further information.
You have the right to request (i) information on your personal data stored by us, (ii) rectification or deletion, (iii) restriction of procession of such data and (iv) data portability (e.g. be provided with your personal data stored in a machine readable standard format – in each case, subject to the relevant legal requirements). You may also object to the processing of your personal data, subject, however, to applicable statutory requirements. You can always (i.e. without indicating a reason) object to the processing of your personal data to the extent we process such data for the purpose of providing information on our services and general developments. You also have the right to lodge a complaint with the competent supervisory authority.
Changes to this Privacy Notice
We may change this Notice for reasons such as amendments to applicable law, technical developments or other business decisions, in which case the website will be updated accordingly.