Data Protection Declaration

1. Information on the Collection of Personal Data and Contact Details of the Officer Responsible

We are pleased that you are visiting our website and thank you for your interest. The following information explains our handling of your personal data when you use our website. Personal data is all data by which you can be personally identified.   


The office in charge of data processing on this website in accordance with the Datenschutz-Grundverordnung (DS-GVO) – General Data Protection Regulation (GDPR) - is stetter Rechtsanwälte, Managing Partner, Dr. Sabine Stetter, Amiraplatz 3, 80333 Munich, Germany, Tel.: +49 89 13 92 791-0, Fax: +49 89 13 92 791-29, email:


Responsibility for the processing of personal data lies with the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2. How We Process Personal Data

In this section we explain for what purposes we process personal data, the legal basis upon which data is processed and for what duration the data is stored. This depends in each case upon the context of the data processing as explained under the following sub-headings.


2.1 Provision of the website and log files

When you visit our website the web server collects your IP address, the date and time of your visit to the website, the pages which you have visited on our website, the internet sites which you have previously visited, the browser you are using (e.g. Mozilla, Firefox, Google Chrome etc.), the operating system you are using (e.g. Windows 10), as well as the domain names and addresses of your internet provider (e.g. Deutsche Telekom).  These details are used to organize and facilitate the transmission of the requested websites. In order to provide the basic functions of the website we make use of technically necessary cookies. Further details can be found in Section 3.1.


In cases of system abuse the information collected by the web server can be used in collaboration with your internet provider and/or public authorities to determine the originator of such abuse.  
The legal basis for such processing is our legitimate interests (Art. 6 Abs. 1 Buchst. f DS-GVO) in securing data transmission and the integrity of the website and our systems. We assume that these interests mirror those of the user, since only by such means can the website be accessed and such functionalities ensured.


The afore-mentioned data will be deleted as soon as it is no longer required for the purpose for which it was collected. For the processing of data related to the opening of the website this will mean, in general, when the visit is terminated. Above and beyond this it may be that, for the purpose of website security, data is stored in log files. Such data will routinely be deleted after seven days at the latest. The log files will be deleted on a routine basis after 14 days at the latest.

2.2 Establishing contact

When contacting us (e.g. by means of a contact form or email) personal data will be collected. In the case of a contact form the data to be collected can be seen in the form in question. This data will be stored and used solely for the purpose of answering your request or for establishing contact and for the pursuant technical administration.

The legal basis for processing data is our legitimate interest in responding to your concern in accordance with Art. 6 Abs. 1 lit. f DS-GVO. If your reason for contacting us is the conclusion of a contract, the legal basis for processing data is also covered by Art. 6 Abs. 1 lit. b DS-GVO.

Your data will be deleted once your request has been processed.  This is the case if it can be inferred that the points in question have been fully clarified and insofar as there are no legal storage obligations.


3. Cookies

We use cookies to facilitate the basic functions of our website, to analyze our website and to be able to regularly improve the site. Cookies are small text files stored on your hard drive which are assigned to the browser selected by you and which, by the positioning of the cookies, allows certain information to flow. Cookies cannot run programs or transmit viruses to your computer. They serve to make the internet site more user-friendly and more effective. The following details those cookies used by us.  


3.1 Essential Cookies


Essential cookieshelp to make a website accessible, insofar as they facilitate basic functions such as site navigation and access to secure areas of the site. Without such cookies a website cannot function effectively.

We make use of the following essential cookies:




Storage duration


We use the content management system TYPO3 to run our platform. TYPO3 uses cookies to provide different functions oft he website. The cookie „fe_typo_user“ allows fort he identification oft he user session.

End oft he browser session.

3.2 Use of the web analysis service Matomo (formerly Piwik)

Description and scope of data processing

We use Matomo (formerly PIWIK), a web analysis service, to analyze the surfing behavior of our users. For this purpose the following cookies will be stored on your computer: 



Storage duration


Collects anonymous statistics about a user’s visits to the website, such as (for example) the number of visits, the average length of a visit to the website and which pages were accessed.

1 year


Used by the Piwik Analytics platform to track a user’s page requests during the session.

1 day


Used by the Piwik Analytics platform to obtain a user’s session status based on page requests.



The statistics gathered allow us to improve our services and to make the website more interesting for you.

The software runs exclusively on our own servers. Storage of the user’s personal data only occurs here. There is no sharing of data with third parties. 


We use Matomo with the enhancement ‘Automatically Anonymize Visitor IPs’. As such, IP addresses are not stored in full – two bytes of the IP address are masked (e.g.: By this means, it is no longer possible to assign the abbreviated IP address to the requesting computer.


Legal basis of data processing

The legal basis for the processing of a user’s personal data is the protection of our legitimate interests (Art. 6 Abs. 1 lit. f DS-GVO).

The processing of a user’s personal data with the help of Matomo allows us to analyze a user’s surfing behavior. An evaluation of the data gathered enables us to compile information about the use of individual components of our website. This helps us to continuously improve the user-friendliness of our website. These purposes also underlie our legitimate interest in the processing of personal data in accordance with Art. 6 Abs. 1 lit. f DS-GVO. By anonymizing IP addresses and hosting on our own servers, the interests of the user in terms of the protection of personal data are adequately covered. 


Storage duration

The data will be deleted as soon as it is no longer required for our record-keeping purposes. In our case this means after three months.


Opt-out provision

We offer users of our website the possibility to opt out of the analysis process. To this end you have to object below via mouse-click. This allows a cookie to be set on your system which signals to our system that user data may not be stored. If, in the meantime, the user deletes the corresponding cookie from their own system, the opt-out cookie must be set once again.    


You can decide here whether an explicit web analysis cookie may be set on your browser to allow the operator of the website to collect and analyze various statistical data.


If you decide against this, click on the following link to set the Matomo deactivation cookie on your browser.

Further information on Matomo Software privacy statements can be found under the link:


4. Google Maps

Our website is linked to Google Maps (API) of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland (“Google”). Google Maps is a web service providing interactive maps to display geographic information visually. Using this service shows you our location and assists with any necessary visit to our offices.


To prevent information (e.g. your IP address) about your use of our website being transmitted to and stored by the Google server - even when accessing subpages of our website in which Google Maps is embedded - we have integrated the service via a link. Only after actively clicking the button "Start google maps" a connection to the Google servers will be established and the associated data processing be activated. Please note that the data processing initiated by this procedure lies beyond our sphere of influence and that Google’s data protection conditions should be respected.

Detailed information about data protection in connection with the use of Google Maps can be found on Google’s internet site (‘Google Privacy Policy’):

5. Sharing of Personal Data

We do not share your personal data with third parties unless this is necessary in fulfilling your request, is otherwise permitted on the basis of relevant legal regulations (e.g. for the purposes of legal defense) or if you have given your consent.


In making our website available we are supported by external service providers who process personal data exclusively on our behalf and in line with our instructions.

The hosting and technical provision of our website is contracted out to Host Europe GmbH, Hansestrasse 111, 51149 Köln.


Web design, as well as data administration and development of our website, is contracted out to 3-iQ Werbeagentur, Untenhöhscheid 16, 42657 Solingen.


Our service providers have been signed up by us to data protection contracts which ensure, in particular, that the service provider respects confidentiality, acts strictly according to instructions given and has embraced appropriate technical and organizational measures to protect personal data. 

Where these service providers are domiciled outside the European Union or have signed an agreement via the European Economic Area, we ensure that it is either a third country with an appropriate level of data protection as determined by the EU Commission (e.g. Switzerland) or, by means of so-called standard contractual clauses, an appropriate level of data protection has been established. For service providers domiciled in the United States of America it may be deemed sufficient when a service provider has been certified on the basis of the EU-US Privacy Shield.

6. Your Rights

You may, depending on the circumstances of the case in question, have the following rights based on the DS-GVO:

  • Information: You may have access to your personal data and/or demand copies of this data. This includes information about the purpose of the processing, the category of the personal data, the recipients of the data, those persons authorized to access the data, as well as, if possible, the planned storage duration or, if this is not possible, the criteria for determining this duration period. There is no right to information with regard to data which, due to legal or statutory retention obligations, may not be deleted or which serves solely to comply with data security or data protection controls.
  • Correction, deletion, or restriction of processing: You may demand the correction, deletion or restriction of processing pertaining to your personal data insofar as its usage is not permitted under data protection laws, in particular because (i) the data is incomplete or incorrect, (ii) the purpose for which the data was collected is no longer relevant, (iii) the consent upon which the data processing was based has been revoked, (iv) you have successfully invoked a right of objection regarding the processing of data. In cases where the data has been processed by third parties we will pass on your request for correction, deletion or restriction of processing to these third parties unless this proves to be impossible or involves a disproportionate effort;
  • Withdrawal of consent: Insofar as processing requires your consent you can refuse this at any time or - without affecting the legality of any data processing carried out prior to the withdrawal  - withdraw at any time your consent to the processing of personal data;
  • No automated decisions: You have the right not to be subject to decision-making based solely on automated processing of data which has legal or similarly significant effects;
  • Data portability: You may have the right to request the personal data which you have provided to us in a structured, standard and machine-readable format and to transmit this data to another authorized party without hindrance on our part; you may also have the right to request us to transmit the personal data directly to an authorized third party insofar as this is technically possible.


Objection: Furthermore you have the right, given legitimate interest, to withhold consent to data processing, unless we can prove that compelling legitimate reasons outweigh your interests, rights and freedoms; with regard to data processing for the purpose of direct advertising you can withhold consent at any time.


To exercise your rights please contact

stetter Rechtsanwälte
Amiraplatz 3
Im Luitpoldblock
80333 München


Our obligation to observe legal confidentiality remains hereby unaffected.

Right to complaint to a regulatory authority: You can complain to a relevant regulatory authority if you are of the opinion that the processing of your personal data breaches the DS-GVO. You can assert this right with the regulatory authority in the member state in your customary place of residence, your work location or the place of the supposed infringement.


7. Security of Processing

We employ appropriate technical and organizational security measures to protect collected and processed personal data, in particular to protect against accidental or willful manipulation, loss or deletion and against access by unauthorized persons. Our security measures are continually updated to reflect technological development.


In using our website your personal data is encrypted using SSL/TLS technology to prevent access by unauthorized third parties.


Please note that data transmission in the internet (e.g. email communication) may have security gaps. Complete protection of data against third party access is unfortunately not possible. 

8. Data Security Officer

Our data security officer can be contacted at the following address: Datenschutzbeauftragte, stetter Rechtsanwälte, Amiraplatz 3, im Luitpoldblock, 80333 München,


Status: 19.11.2019