ATC Tax GmbH & Co. KG is responsible for data collection and processing.
As a matter of principle, we only collect the data that is either legally or contractually required or necessary for the conclusion and execution of the contract or that was provided to us voluntarily on the basis of a consent. The data that we consider necessary for data collection is marked accordingly. The provision of further information is voluntary. There are no negative consequences connected with the non-supply of further data. However, in individual cases, failure to provide further data may make subsequent communication more difficult or delay it.
We process the personal data made available to us in accordance with Art. 6 para. 1 lit. b) DSGVO for the purpose of fulfilling the contract. This also includes the use for the purpose of a detailed examination of whether an order may be accepted at all, as well as the subsequent mandate support and the necessary quality assurance.
The data required for the fulfilment of the contract will not be deleted if and as long as mutual claims are still open after termination of the contract and are to be collected if necessary. In addition, we shall retain all documents which we have collected for the purposes of a client relationship for the duration of the statutory retention period in accordance with § 51b (2) WPO (German Code of Professional Conduct), unless otherwise agreed upon in individual contracts.
If you have given your separate consent to be informed by us by telephone, by letter post or by e-mail as well as comparable information channels about the company’s own products and services as well as events or to pass on your data to third parties, the data will be processed accordingly on the basis of Art. 6 Para. 1 letter a DSGVO. We also process your personal data for the purposes of personalised tracking, if and insofar as your declaration of consent is available. Your consent can be revoked at any time without affecting the legality of the processing carried out to date. If your consent is revoked, we will stop the corresponding data processing.
We only process your data in accordance with Art. 6 Para. 1 lit. f DSGVO in order to safeguard legitimate interests if no corresponding consent has been given and no other legal basis for data processing is apparent, and only if the further requirements of Art. 6 Para. 1 lit. f DSGVO are met, i.e. if our interests in data processing or the interests of a third party outweigh your interests or fundamental rights and freedoms in the individual case. The data will be stored for as long as the legitimate interest continues, but at least for the duration of the legal storage obligations in accordance with § 51b WPO, you have the right to object to the data processing. You can find out more details under the following item “Rights of the data subject”.
We process your data – as far as permissible – for the purpose of direct advertising, in particular for the dispatch of our advertising, such as invitations, product information, event and comparable information. In this case, data processing is also carried out on the basis of Art. 6 Para. 1 lit. f DSGVO and in the interest of informing you about new products, events and services. Each customer has the right to object to this processing, the exercise of which will lead to the termination of processing for the purpose of direct advertising. If data are stored exclusively for the purpose of direct advertising, they will be deleted after the objection has been made.
If and to the extent necessary, we process your data in order to comply with any legal documentation obligations, e.g. towards tax offices and supervisory authorities. The data processing is carried out on the basis of Art. 6 para. 1 lit. c DSGVO. A legal obligation results in particular from § 147 AO and § 51b WPO. The data will be deleted after the periods of time specified in § 147 AO and § 51b WPO, unless otherwise agreed in individual cases by individual contract or unless there is a justified interest in further storage.
We will only transfer your data to third parties (e.g. to lawyers for the enforcement of outstanding claims), if we have the authority to transfer data in accordance with data protection law (e.g. according to the case groups mentioned above). Your data may also be passed on by us to external service providers (e.g. IT service providers, companies that destroy or archive data, cloud providers, Datev) who support us in data processing within the scope of order processing strictly in accordance with instructions. Data processing outside the EU or the EEA does not take place on principle. If such a data transfer should be necessary in individual cases, it will be carried out exclusively on the basis of the EU standard contractual clauses or to countries with regard to which the EU has passed an appropriateness decision, as well as within the scope of commissioned processing. Upon your request we will be pleased to provide you with a copy of the contract or to give you access to it. We will neither sell your personal data to third parties nor market it in any other way.
a.) Security through use of TSL and SSL
If you transmit your data to us via our website, we use current secure technologies, in particular the so-called “Transport Layer Security” transmission (TSL) or the “Secure Socket Layer” transmission (SSL) known. All information and data transmitted using these secure methods are encrypted before they are sent to us. This applies in particular to all personal customer data, such as credit card number, bank code, bank account number, name and address. In order to protect you and us against misuse, the IP address of your computer is transmitted to us when concluding online contracts.
b.) Use of cookies
We use so-called cookies on our Internet pages in order to allocate your inquiries and requests sent to us via the Internet. Cookies are a kind of electronic business card that make it easier for you to use our online service. These small files are automatically stored on your hard disk by your browser and are necessary for the error-free use of our website. Our cookies do not contain any person-specific information, so that your privacy remains protected. Of course, you can delete the cookies after you have finished using our website by configuring your browser accordingly. You can also object to the creation of a user profile in the form of non-personal data. Please deactivate the cookies on your browser for this purpose.
c.) Use of Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your IP address, which is, however, anonymised using the method anonymizeIp() so that it can no longer be assigned to a connection) is transferred to a Google server in the USA and stored there. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties if required by law or if third parties process this data on behalf of Google. Google may link your IP address with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you agree to the processing of the data collected about you by Google in the manner described above and for the aforementioned purpose. You can object to the collection of data by Google Analytics with effect for the future by installing a deactivation add-on (http://tools.google.com/dlpage/gaoptout?hl=de) for your browser. You can find more information on this at http://www.google.com/intl/de/analytics/privacyoverview.html (general information on Google Analytics and data protection). We would like to point out that on this website Google Analytics has been extended by the code “gat._anonymizelp();” in order to guarantee an anonymized collection of IP addresses (so-called IP-Masking).
d) Contents of third parties
Our portal cooperates with various partners who in turn offer websites and Internet services, which are accessible, for example, via links from our websites. These partners usually have their own data protection declarations and/or their own data protection guidelines. We assume no responsibility or liability for these declarations and guidelines which are not related to our offers.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
This data is not merged with other data sources. The basis for data processing is Art. 6 para. 1 lit. f DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
If you send us enquiries via the contact form, your details from the enquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent. The processing of the data entered in the contact form is therefore exclusively based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing procedures carried out up to the time of revocation remains unaffected by the revocation.
The data entered by you in the contact form will remain with us until you request us to delete it, revoke your consent for storage or the purpose for which the data was stored ceases to apply (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.
Data subjects have the right to obtain from the controller information on the personal data concerning them, as well as the correction of inaccurate data or its deletion, if one of the reasons listed in Art. 17 DPA is present, e.g. if the data is no longer needed for the purposes pursued. There is also the right to restrict processing if one of the conditions specified in Art. 18 DSGVO is met and, in the cases of Art. 20 DSGVO, the right to data transferability. If data are collected on the basis of Art. 6 para. 1 lit. f (data processing to safeguard legitimate interests), the data subject has the right to object to processing at any time for reasons arising from his or her particular situation. We will then no longer process the personal data unless there are demonstrably compelling reasons for processing which are worthy of protection and which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
Every data subject has the right to complain to a supervisory authority if he or she considers that the processing of data relating to him or her is in breach of data protection legislation. The right of appeal may in particular be lodged with a supervisory authority in the Member State in which the data subject is resident or in which the alleged breach occurred. In Hamburg this is the Berlin Commissioner for Data Protection and Freedom of Information, An der Urania, 10787 Berlin.
Ilona Müller
ATC Tax GmbH & Co. KG
Friedrichstraße 100, 10117 Berlin
+49 (30) 20 64 151-0
info@atc-services.de
DATENCOACH.DE für fachgerechte Datenhaltung UG (haftungsbeschränkt)
Köpenicker Straße 95 A, 12355 Berlin
+49 163 3524891
mail@datencoach.de
The collection of your data is always carried out by yourself. The processing of the personal data provided by you is necessary to fulfil the contractual obligations arising from the contract concluded with us. Due to your obligations to cooperate, it is essential to provide the personal data requested by us, otherwise we will not be able to fulfil our contractual obligations. Accounting and/or tax disadvantages for you can otherwise no longer be excluded.
In the context of pre-contractual measures (e.g. master data acquisition in the prospective customer process), it is necessary to provide your personal data. If the requested data is not provided by you, a contract cannot be concluded.
In order to provide our services, it may be necessary to process personal data which we have received from other companies or other third parties, e.g. tax offices, your business partner or similar, in a permissible manner and for the respective purpose.
Furthermore, we may process personal data from publicly accessible sources, e.g. websites, which we use permissibly and only for the respective contractual purpose.
DThe personal data provided by you will be processed in accordance with the provisions of the European Data Protection Regulation (DS-GVO) and the Federal Data Protection Act (BDSG): On the basis of a consent (in accordance with Art. 6 para. 1 lit. a DS-GVO). The purposes of the processing of personal data result from the granting of consent. You can revoke your consent at any time with effect for the future. Consent granted prior to the validity of the DS-GVO (25 May 2018) may also be revoked. Processing that took place before the revocation remains unaffected by the revocation. Example: Sending a newsletter, release from the obligation of professional secrecy to pass on the data provided by you to third parties (e.g. banks, insurance companies, shareholders, etc.) at your request.
To fulfil contractual obligations (pursuant to Art. 6 (1) lit. b DS-GVO). The purposes of the data processing result, on the one hand, from the initiation of pre-contractual measures that precede a contractually regulated business relationship and, on the other hand, to fulfil the obligations arising from the contract concluded with you.
Due to legal requirements (pursuant to Art. 6 Para. 1 lit. c DS-GVO) or in the public interest (pursuant to Art. 6 Para. 1 lit. e DS-GVO). The purposes of the data processing result from legal requirements or are in the public interest (e.g. compliance with retention obligations, proof of compliance with the tax advisor’s duties to provide information and advice).
Within the framework of the balancing of interests (pursuant to Art. 6 (1) lit. f DS-GVO). The purposes of the processing result from the protection of our legitimate interests. It may be necessary to process the data provided by you beyond the actual fulfilment of the contract. Our legitimate interest may be used to justify the further processing of the data you have provided, provided that your interests or fundamental rights and freedoms do not prevail. Our legitimate interest may be in individual cases: Assertion of legal claims, defense of liability claims, prevention of criminal offences.
Within our company, access to the personal data provided by you is granted to those areas that require this data to fulfil contractual and legal obligations and that are authorised to process this data.
In fulfillment of the contract concluded with you, only those departments that require the data for legal reasons, e.g. tax authorities, social insurance carriers, competent authorities and courts, will receive the data you have provided.
As a professional secrecy holder, we are obliged to observe and implement professional secrecy. Other recipients will only receive the data you have provided at your request if you release us from the obligation of professional secrecy.
Within the scope of our service provision, we commission contract processors who contribute to the fulfilment of the contractual obligations, e.g. computer centre service providers, IT partners, document shredders, etc. These contract processors are contractually obliged by us to observe professional secrecy and to comply with the requirements of the DS-GVO and the BDSG.
Under no circumstances will the data you provide be transferred to a third country or international organisation. If, in individual cases, you wish to transfer the data you have provided to a third country or international organisation, we will only do so with your written consent and release you from the obligation of professional secrecy.
No fully automated decision making (including profiling) in accordance with Art. 22 DS-GVO is used to process the data provided by you.
The processing of the data provided by you is carried out as long as it is necessary to achieve the contractually agreed purpose, in principle as long as the contractual relationship with you exists. After the termination of the contractual relationship, the data provided by you will be processed to comply with statutory storage obligations or on the basis of our legitimate interests. After the expiry of the statutory retention periods and/or the loss of our legitimate interests, the data you have provided will be deleted.
Expected periods of the storage obligations that apply to us and our legitimate interests:
This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
Google Analytics cookies are stored based on Art. 6 (1) (f) DSGVO. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.
For video conferencing and online meetings, we use Cisco Webex Meetings.
In this context, the user’s personal data necessary for the use of the service will be transmitted to our processor, the provider Cisco International Ltd. and its affiliates, in order to carry out the video conferencing. There is an order processing contract with Cisco International Ltd. including its affiliates.
Cisco Webex services have been tested according to the BSI requirements catalog “Cloud Computing Compliance Controls Catalogue” (BSI C5). An internal verification process at Cisco ensures C5 compliance for all cloud services.
In the video conferencing, both the signaling and the conversation content are encrypted.
The following personal data will be processed when using the service:
—Host and usage information:
—IP address
—User agent identification
—Type of hardware
—Operating system type and version
—Client version
—IP addresses along the network path
—MAC address of the endpoint (if applicable)
—service version
—Measures taken
—Information on the meeting session (title, date and time, frequency, average and actual duration, number, quality, network activity and network connectivity)
—Number of meetings
—Number of screen sharing and non-screen sharing sessions
Number of participants
—Host name
—screen resolution
—accession method method
—Information on performance, troubleshooting and diagnosis
The processing of the above-mentioned personal data serves in particular the provision of the service, registration, diagnostics of technical problems, execution of analyses and statistical analyses in aggregated form in order to improve the technical performance of the service.
The purposes and legal bases for data processing in the conduct of “online meetings” are
– Art. 6 Paragraph 1 lit. f DS-GVO – we have a legitimate interest in the effective conduct of “online meetings
– Article 6(1)(b) DPA – the meetings are held in the context of contractual relations or for the purpose of carrying out pre-contractual measures
– Section 26 (1) sentence 1 BDSG – if personal data of employees are processed, the data processing is carried out to establish, implement and terminate the employment relationship
– Art. 6 para. 1 lit. a DS-GVO and, if applicable, Art. 26 para. 2 BDSG (for employees) – Your participation in “online meetings” may result from the granting of consent. You can revoke your consent at any time with effect for the future.
Translated with www.DeepL.com/Translator (free version)
User-generated information:
— meeting and call recordings where applicable
— files uploaded if necessary
A recording of the video conferencing using the recording possibilities of the Cisco Webex Meetings takes place only with the consent of the participants and after prior notice. The records will be deleted immediately after the recording purpose specified in the consent (such as log creation) has been achieved.
Any user may request the deletion of his/her personal data stored on the Cisco Webex platform by sending a request to privacy@cisco.com.
A transfer of the data provided by you to a third country or an international organisation takes place when participants in “online meetings” are in a third country. In this case, the routing of data is carried out via Internet servers located outside the EU. The data is encrypted during transport over the Internet and thus protected against unauthorised access by third parties.
A transfer to a third country takes place because we use the video conferencing system of a provider from a third country (e.g. USA). An adequate level of data protection is guaranteed by the “Privacy Shield” certification of the provider and by the conclusion of the so-called EU standard contract clauses.
Translated with www.DeepL.com/Translator (free version)
For more relevant information on data protection at Webex Meetings, see the Cisco Trust Center here.
IP anonymization
We have activated the IP anonymization feature on this website. Your IP address will be shortened by Google within the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases is the full IP address sent to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and Internet usage for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google.
Browser plugin
You can prevent these cookies being stored by selecting the appropriate settings in your browser. However, we wish to point out that doing so may mean you will not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Objecting to the collection of data
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site:
For more information about how Google Analytics handles user data, see Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.
Outsourced data processing
We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Demographic data collection by Google Analytics
This website uses Google Analytics’ demographic features. This allows reports to be generated containing statements about the age, gender, and interests of site visitors. This data comes from interest-based advertising from Google and third-party visitor data. This collected data cannot be attributed to any specific individual person. You can disable this feature at any time by adjusting the ads settings in your Google account or you can forbid the collection of your data by Google Analytics as described in the section “Refusal of data collection”.
This page uses so-called web fonts, which are provided by Google, for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display text and fonts correctly. To do this, the browser you are using must connect to Google’s servers. This enables Google to know that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and attractive presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. If your browser does not support Web Fonts, a standard font will be used by your computer. Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in the Google privacy policy: https://www.google.com/policies/privacy/.
This site uses the map service Google Maps via an API. Provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the places we indicate on the website. This represents a legitimate interest in the sense of Art. 6 para. 1 lit. f DSGVO.
More information on the handling of user data can be found in the privacy policy of Google: https://www.google.de/intl/de/policies/privacy/.
We use information services of the Deubner Verlag on our website. Please note: The separate data protection information applies here, which you can access at https://www.deubner-verlag.de/datenschutzerklaerung-homepageservice.
We use the Facebook Pixel from Facebook on our website. We have implemented code on our website to do this. The Facebook pixel is a snippet of JavaScript code that loads a collection of functions that allow Facebook to track your user actions if you have come to our website via Facebook ads. For example, when you purchase a product on our website, the Facebook pixel is triggered and stores your actions on our website in one or more cookies. These cookies allow Facebook to match your user data (customer data such as IP address, user ID) with your Facebook account data. Facebook then deletes this data again. The collected data is anonymous and not visible to us and can only be used in the context of ad placements. If you are a Facebook user and are logged in, your visit to our website is automatically assigned to your Facebook user account.
We only want to show our services and products to people who are really interested in them. With the help of Facebook pixels, our advertising measures can be better tailored to your wishes and interests. In this way, Facebook users (provided they have allowed personalised advertising) see suitable advertising. Furthermore, Facebook uses the collected data for analysis purposes and its own advertisements.
In the following, we show you those cookies that were set by integrating Facebook Pixel on a test page. Please note that these are only sample cookies. Different cookies are set depending on the interaction on our website.
Name: _fbp
Figure: fb.1.1568287647279.257405483-6311910683-7
Purpose: This cookie is used by Facebook to display advertising products.
Expiry date: after 3 months
Name: fr
Figure: 0aPf312HOS5Pboo2r..Bdeiuf…1.0.Bdeiuf.
Purpose: This cookie is used to make Facebook Pixel work properly.
Expiry date: after 3 months
Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062311910683-3
Figure: Name of the author
Purpose: This cookie stores the text and name of a user who leaves a comment, for example.
Expiry date: after 12 months
Name: comment_author_url_50ae8267e2bdf1253ec1a5769f48e062
Figure: https%3A%2F%2Fwww.testseite…%2F (URL of the author)
Purpose: This cookie stores the URL of the website that the user enters in a text field on our website.
Expiry date: after 12 months
Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062
Figure: Author’s email address
Purpose: This cookie stores the user’s email address if they have provided it on the website.
Expiry date: after 12 months
Note: The cookies mentioned above refer to individual user behaviour. Especially with the use of cookies, changes can never be ruled out with Facebook.
If you are logged in to Facebook, you can change your settings for advertisements at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen yourself. If you are not a Facebook user, you can generally manage your usage-based online advertising at http://www.youronlinechoices.com/de/praferenzmanagement/. There you have the option of selecting providers. There you have the option to deactivate or activate providers.
Facebook also processes your data in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the lawfulness and security of the data processing.
As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, Facebook uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, Facebook undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
You can find the Facebook data processing condition, which corresponds to the standard contractual clauses, at https://www.facebook.com/legal/terms/dataprocessing.
If you want to learn more about Facebook’s data protection, we recommend reading the company’s own data policies at https://www.facebook.com/policy.php.
We have also enabled Automatic Advanced Matching as part of the Facebook Pixel feature. This feature of the Pixel allows us to send hashed emails, name, gender, city, state, postcode and date of birth or phone number as additional information to Facebook if you have provided us with this information. This activation enables us to tailor advertising campaigns on Facebook even more precisely to people who are interested in our services or products.
All texts are protected by copyright.
Source: Created with the data protection generator from AdSimple
