English | Deutsch

Privacy Policy

Name and contact of the responsible person according to Art. 4 para. 7 GDPR

m patent group
Theresienstraße 6
80333 München
Tel. + 49 89 23 88 68 60
Fax +49 89 23 88 68 80
office@mpatentgroup.de

Safety and protection of your personal data

We consider it our primary task to protect the confidentiality of personal information you provide and to protect them from unauthorized access. Therefore, we take the utmost care and use the highest safety standards to ensure maximum protection of your personal data.
As a private company we are subject to the provisions of the European General Data Protection Regulation (GDPR) and the regulations of the German Federal Data Protection Act (BDSG). We have taken technical and organizational measures to ensure that the rules on data protection are observed both by us and by our external service providers.

Definitions of terms

Law requires that personal data are processed lawfully, in good faith and in a comprehensible way for the person concerned ( "legality, processing in good faith, transparency"). To ensure this, we inform you about the various legal definitions that are used in this Data Protection Statement:

1. Personal data
"Personal data" is any information relating to an identified or identifiable natural person (the "person concerned"); a natural person is considered identifiable if being able to be identified, directly or indirectly, in particular by means of assignment to an identifier such as a name, to an identification number, location data, to an online identifier or to one or more special features that reflect the physical , physiological, genetic, mental, economic, cultural or social identity of that natural person.

2. Processing
"Processing" is any process or any series of processes performed, with or without the aid of automated processes, associated with personal data, such as acquisition, collection, organization, arrangement, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or concatenation, deletion or destruction.

3. Restriction of processing
"Restriction of processing" is the marking of stored personal data with the aim of limiting their future processing.

4. Profiling
"Profiling" means any type of automated processing of personal data, which consists in these personal data being used to evaluate or predict certain personal aspects relating to a natural person, in particular aspects related to job performance, economic situation, health, personal preferences, interests, reliability, behaviour, location or relocation of this natural person.

5. Pseudonymisation
"Pseudonymisation" is the processing of personal data in a way that personal data can no longer be assigned to a specific subject concerned without the assistance of additional information, provided that this additional information is kept separately and that technical and organizational measures are in place to ensure that personal data can not be assigned to an identified or identifiable natural person.

6. File system
"File system" means any structured collection of personal data which is accessible according to certain criteria, regardless of whether this collection is centralized, decentralized or ordered on a functional or geographical basis.

7. Responsible person
"Responsible person" is a natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; if the purposes and means of this processing are determined by Union law or the law of the Member States, the responsible person or the specific criteria according to which he or she is appointed may be determined in accordance with Union law or the law of the Member States.

8. Instruction processor
"Instruction processor" means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the person responsible.

9. Recipient
"Recipient" means any natural or legal person, public authority, agency, or other body to whom personal data are disclosed, regardless of whether this is a third party or not. Authorities that may receive personal data in the context of a particular inquiry in accordance with Union law or the law of the Member States are not regarded as recipients, however; the processing of this data by these authorities shall comply with the applicable data protection regulations in accordance with the purposes of the processing.

10. Third party
"Third party" is a natural or legal person, public authority, agency, or other entity other than the person concerned, the responsible person, the instruction processor and the persons under the direct authority of the responsible person or the instruction processor authorized to process the personal data.

11. Consent
"Consent" of the person concerned is any voluntary declaration of intent made for the particular case, in an informed manner and unequivocally, in the form of a declaration or another recognizable affirmative act with which the person concerned indicates that he or she agrees to the processing of the personal data concerning him or her.

Lawfulness of processing

The processing of personal data is lawful only if there is a legal basis for the processing. The legal basis for the processing, according to Article 6 para. 1 litt. a to f GDPR may be in particular:

a. the person concerned has given consent to the processing of his or her personal data for one or more specific purposes;
b. processing is necessary for the performance of a contract to which the person concerned is party or in order to take steps at the request of the data subject prior to entering into a contract;
c. processing is necessary for compliance with a legal obligation to which the responsible person is subject;
d. processing is necessary in order to protect the vital interests of the person concerned or of another natural person;
e. processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the responsible person;
f. processing is necessary for the purposes of the legitimate interests pursued by the responsible person or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the person concerned which require protection of personal data, in particular where the data subject is a child.

Information about the collection of personal data

(1) Below we provide information on the collection of personal data when using our web site. Personal data are e.g. name, address, e-mail addresses or user behaviour.

(2) After contacting with us via e-mail the data provided by you (your e-mail address, if applicable, your name and phone number) is stored by us to answer your questions. We delete the data incurred in this regard after the data is no longer required, or the processing is restricted if legal record retention requirements exist.

Collecting personal data when visiting our web site

In the merely informational use of the web site, i.e. if you do not register or otherwise provide us with information, we only acquire the personal information that your browser sends to our server. If you want to look at our web site, we collect the following data that are technically necessary for us to show you our web site and to ensure the stability and security (legal basis is Art. 6, para. 1 sentence 1 lit. f GDPR):

- IP address
- date and time of the request
- time zone difference from Greenwich Mean Time (GMT)
- content of the request (concrete side)
- access Status/HTTP status code
- each volume of data transferred
- web site from which the request comes
- browser
- operating system and its surface
- language and version of browser software.

Use of cookies

(1) In addition to the aforementioned data, cookies are stored on your computer when using our web site. Cookies are small text files that are stored on your hard drive assigned to the browser you are using and via which certain information will pass to the body that sets the cookie. Cookies can not run programs or deliver viruses to your computer. They are used to make the internet as a whole more user friendly and effective.

(2) This web site uses the following types of cookies, their scope and function are described in the following:

- transient cookies (see a.)
- persistent cookies (see b.).

a. Transient cookies are automatically deleted when you close the browser. These include in particular the session cookies. These store a session ID with which several requests from your browser can be associated to a common session. This allows your computer to be recognized when you return to our site. Session cookies are deleted when you log out or close the browser.

b. Persistent cookies are automatically deleted after a predetermined duration, which may differ depending on the cookie. You can always delete the cookies in your browser security settings.

c. You can configure your browser settings according to your wishes and e.g. refuse to accept third-party cookies or all cookies. So called "third party cookies" are cookies that were set by a third party, thus not by the particular web site on which one currently is. We point out that you may not be able to use all features of this web site by disabling cookies.

Other functions and features of our web site

(1) Apart from the purely informational use of our web site, we offer various services that you can use if you are interested. To this purpose, in general, you must provide further personal data that we use to provide the respective service for which the principles mentioned above for data processing apply.

(2) Sometimes we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound to our instructions and are checked regularly.

(3) We may also disclose your personal data to third parties if participation in actions, competitions, contracts or similar services is offered by us together with partners. More information are provided to you when you provide your personal data or below in the description of the offer.

(4) As far as our service providers or partners are based in a country outside the European Economic Area (EEA), we inform you of the consequences of this fact in the description of the offer.

Children

Our offer is intended primarily for adults. Persons under 18 should not, without the consent of parents or guardians, provide personal data to us.

Rights of the person concerned

(1) Revocation of consent
Provided that the processing of personal data is based on consent given, you have the right, at any time, to revoke the consent. By the revocation of the consent, the legality of the data processing until the revocation is not affected.
For the exercise of the right, you can always contact us.

(2) Right to confirmation
You have the right to ask for a confirmation from the responsible person whether we process personal information concerning you. The confirmation you can at any time request under the above contact details.

(3) Right of information
If personal data are processed, you can at any time request information about the personal data and following information:

a. processing purposes;
b. the categories of data being processed;
c. the recipients or categories of recipients to whom the personal data have been disclosed or are to be disclosed, particularly when recipients in third countries or international organizations are concerned;
d. If possible, the planned duration for which the personal data are stored, or, if this is not possible, the criteria for determining such a duration;
e. the existence of a right to correct or delete any personal data or to restrict the processing by the responsible person or the right of appeal against this processing;
f. the existence of a right of appeal to a regulatory body;
g. if the personal data are not collected from the person concerned, all available information on the origin of the data;
h. the existence of an automated decision making, including profiling, in accordance with Art. 22, paras. 1 and 4 GDPR and – at least in these cases – meaningful information about the logic involved and the scope and the desired impact of such processing for the person concerned.

If personal data are transferred to a third country or to an international organization, you have the right to be informed of the appropriate guarantees in accordance with Art. 46 GDPR in connection with the submission. We provide a copy of the personal data which are the subject of the processing. For all other copies that you apply as a person, we can demand a reasonable fee based on the administrative costs. If you send the request electronically, the information must be provided in a standard electronic format, unless he or she indicates otherwise. The right to receive a copy in accordance with para. 3 shall not affect the rights and freedoms of others.

(4) Right to correct
You have the right to request from us immediately the correction of incorrect personal data concerning you. Taking into account the purposes of the processing you have the right to complement incomplete personal data –also by means of a supplementary statement.

(5) Right to delete ("right to be forgotten")
You have the right to request from the responsible person, that personal data concerning you are immediately deleted, and we are obliged to delete personal data immediately unless one of the following reasons applies:

a. the personal data are, for the purposes for which they were collected or processed in any other way, no longer necessary.
b. the person concerned revokes consent to the processing which was based on Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR, and there is a lack of other legal basis for the processing.
c. the person concerned objects to the processing in accordance with Art. 21 para. 1 GDPR and there are no overriding legitimate grounds for the processing, or the person concerned objects to the processing in accordance with Art. 21 para. 2 GDPR.
d. the personal data has been unlawfully processed.
e. the deletion of personal data is necessary for compliance with a legal obligation under Union law or the law of the Member States, the responsible person is subject to.
f. the data were collected in connection with the offered services by an information society in accordance with Art. 8, para. 1 GDPR.

Has the responsible person made the personal data public, and is he or she it obliged under para. 1 to its deletion, he or she shall take appropriate action, also of technical nature, to inform those responsible for data processing, who process the personal data, as to that a person concerned has requested the deletion of all links to these personal data or of copies or of replications of these personal data.

The right to delete ("right to be forgotten") does not exist as far as processing is necessary:
- to exercise the right to freedom of speech and information;
- for compliance with a legal obligation that requires processing by the law of the Union or the Member States, the responsible person is subject to, or the performance of a task that is of public interest and is carried out in the exercise of official authority, which was transferred to the responsible person;
- for reasons of public interest in the field of public health in accordance with Art. 9 para. 2 litt. h and i, and Art. 9 para. 3 GDPR;
- for archiving purposes in the public interest, scientific or historical research or statistical purposes in accordance with Art. 89 para. 1 DSGVO, as far as the right referred to in para. 1 is expected to make the objectives of this processing impossible or seriously impaired, or
- for the establishment, exercise or defence of legal claims.

(6) Right to restrict the processing
You have the right to require us to restrict the processing of your personal data if one of the following conditions applies:

a. the accuracy of personal data is contested by the person concerned, namely for a period which allows the responsible person to verify the accuracy of the personal data
b. the processing is unlawful and the person concerned objects to the deletion of the personal data and instead requests the restriction of the use of the personal data;
c. the responsible person does not longer need the personal data for the purposes of processing, but the person concerned needs it for the establishment, exercise or defence of legal claims, or
d. the person concerned has objected to processing in accordance with Art. 21 para. 1 GDPR, as long as is not yet clear whether the legitimate reasons for the responsible person outweigh those of the person concerned.

If the processing was restricted in accordance with the conditions set out above, these personal data are – apart from their storage – only processed with the consent of the person concerned for the establishment, exercise or defence of legal claims or to protect the rights of any other person or entity, or for reasons of an important public interest of the Union or a Member State.

In order to exercise the right to restrict the processing of claims, the affected person can always contact us at the above address.

(7) Right to data portability
You have the right to obtain the personal data concerning you and which you have provided to us in a structured, consistent and machine readable format, and you have the right to provide this data to another responsible person without hindrance by the responsible person to which the personal data was provided, provided that:

a. the processing is based on a consent according to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a or on a contract according to Art. 6 para. 1 lit. b GDPR

b. the processing is carried out using automated procedures.

In the exercise of the right to data portability under para. 1, you have the right to effect that the personal data is transferred directly from a responsible person to another responsible person, to the extent technically feasible. The exercise of the right to data portability leaves the right to delete ("right to be forgotten ") untouched. This right does not apply to processing that is necessary for the performance of a task carried out in the public interest or done in the exercise of public authority that has been delegated to the responsible person.

(8) Right to object
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you, which takes place according to Art. 6 para. 1 lit. a or f; this also applies to profiling based on these provisions. The responsible person does no longer process the personal data, unless he or she can demonstrate compelling legitimate grounds for the processing which outweigh the interests, rights and freedoms of the person concerned, or the processing serves for the establishment, exercise or defence of legal claims.

If personal data are processed in order to operate direct mailing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such mailing; this also applies to the profiling, as far as it is in connection with such direct mailing. If you object to the processing for direct mailing purposes, the personal data will not be processed for these purposes.

In connection with the use of services of the information society, you can exercise your right to object by means of automated processes in which technical specifications are used regardless of Directive 2002/58/EC.

You have the right, for reasons arising from your particular situation, to object against the processing of personal data concerning you carried out for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 para. 1, unless the processing is required to meet a need in the public interest.

You can exercise the right at any time by contacting the responsible person.

(9) Automated decisions in individual cases, including profiling
You have the right not to be subjected to a decision solely based on automated processing – including profiling – which has legal effect to you or seriously affects you in a similar way. This does not apply if the decision:

a. is required for the conclusion or execution of a contract between the person concerned and the responsible person,

b. is allowable according to the laws of the Union or the Member State which the responsible person is subject to and this legislation contains adequate measures to safeguard the rights and freedoms and the legitimate interests of the person concerned, or

c. is done with the express consent of the person concerned.

The person in charge shall take appropriate measures to safeguard the rights and freedoms and the legitimate interests of the person concerned, including at least the right to the intervention of a person on the part of the person responsible, to a statement of his or her own position, and to challenging the decision.

This right the person concerned can exercise at any time by addressing the responsible person.

(10) Right to appeal to a supervisory authority
You also have, without prejudice to any other administrative or judicial remedy, the right to complain to a supervisory authority, in particular in the Member State of your residence, your place of work or the location of the alleged violation, if the person concerned is of the opinion that the processing of personal data concerning him or her violates this regulation.

(11) Right to effective judicial remedy
You have, without prejudice to any available administrative judicial or extrajudicial remedy including the right to appeal to an authority pursuant to Art. 77 GDPR, the right to an effective judicial remedy, if he or she considers that his or her rights arising from this regulation have been violated as a result of processing of personal data not complying with this regulation.

Integration of Google Maps

(1) On this web site we use the services of Google Maps. By this, we can show interactive maps directly on the web site and allow you to comfortably use the map function.

(2) By visiting the web site Google receives the information that you have accessed the corresponding sub site of our web site. Moreover, the data referred to in § 3 of this statement are submitted. This is done regardless of whether Google provides a user account via which you are logged in, or if there is no user account. If you are logged into Google, your data will be assigned to your account directly. If you do not wish to assign to your profile on Google, you must log out before activating the button. Google will store your data as user profiles and uses them for purposes of advertising, market research and/or customized design on its web site. Such evaluation is carried out in particular (even for users not logged in) for the provision of need based advertising and to inform other users of the social network about your activities on our web site. You have a right to object to formation of these user profiles, wherein you address Google to exercise these.

(3) For more information on the purpose and scope of data acquisition and its processing by the plug in provider, see the privacy policy of the provider. You can also get more information about your corresponding rights and settings options for protecting your privacy there: http://www.google.de/intl/de/policies/privacy. Google processes your personal data in the US and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Google Web Fonts

This site uses for the uniform appearance of fonts so called Web Fonts, which are provided by Google. When your browser requests a site, the required Web Fonts loads in your browser cache to display text and fonts correctly.

The browser to this purpose must make a connection to Google's servers. In this way, Google gains knowledge that through your IP address our site was called. The use of Google Web Fonts is done in the interests of uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a default font is used by your computer.

For more information about Google Web Fonts, see https://developers.google.com/fonts/faq and in the privacy policy of Google: https://www.google.com/policies/privacy/.