Data Protection and Privacy Policy

Release Date: 19.11.2019

In the following, we provide you with the information required by law pursuant to Article 13 and Article 14 of the General Data Protection Regulation (GDPR) concerning the processing of your personal data by us:

Besides compliance with the special guarantees to ensure and protect client confidentiality, we strictly comply with the data protection requirements of the EU General Data Protection Regulation (GDPR) and the German Data Protection Act (BDSG) when processing your personal data.

1. Controller

Controller for the processing of data on this website, as well as any data processing carried out with reference to this Privacy Policy, is:

wuertenberger Partnerschaft von Rechtsanwälten mbB
Stafflenbergstr. 24
70184 Stuttgart
T   +49 (0) 711 99 52 12 00
F   +49 (0) 711 99 52 12 – 11
E   info (at)

2. Data processing in the context of the use of our website

We collect usage data within the scope of our Internet offer (, which may contain personal data insofar as this is necessary for the display and/or functionality of our website.

Collection of information about the system you use

For the safe operation of our website it is necessary that whenever you access our website information such as server log files, which your browser automatically transmits to us, is collected and stored. These are:

  • Browser type and browser version
  • used operating system
  • Referrer URL
  • Hostname of the accessing computer
  • Time of the server request
  • IP address

This data will not be combined with any other data from other sources.
The basis for data processing is Art. 6 para. 1 sentence 1 f) GDPR (legitimate interest).


Our website makes partial use of so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer by your browser.

Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal until you delete them. These cookies enable us to recognize your browser during your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

Cookies which are necessary for the electronic communication process or for the provision of certain functions requested by you are stored on the basis of Art. 6 para. 1 f) GDPR. The website operator has a justified interest in the storage of cookies for the technically error-free and optimised provision of its services.

We intentionally refrained from including cookies from third parties or other third-party content or code components that establish connections to external servers on our website.

SSL or TLS encryption

Our website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as requests via the contact form that you send to us. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

3. Data processing for the purpose of communication with us

There are several communication channels through which you can communicate with us.
We would like to point on the fact that there may be security risks with respect to online communication (e.g. e-mail communication). A full and complete protection of data against unauthorized access by third parties is not possible. The level of protection can be increased by using encryption technologies.

If you contact us, we process your enquiry on the basis of Art. 6 paragraph 1 sentence 1lit b) GDPR if your enquiry has a contractual or pre-contractual reference. We process personal data that we receive in the context of job applications on the basis of § 26 BDSG-neu in connection with Art. 6. paragraph 1 sentence 1 b) GDPR. We process other inquiries on the basis of Art. 6 paragraph 1 sentence 1 f) GDPR (legitimate interest). Business correspondence shall be stored on the basis of Art. 6 paragraph 1 sentence 1 c) in conjunction with § 257 of the German Commercial Code (HGB). Basically, we do not pass on the data transmitted by you without your consent.

4. Data processing in the context of client relationships and other business relationships

We process personal data of business partners, clients, their employees and corporate organs as well as third parties in the context of the establishment, administration and processing of contracts and mandate relationships, insofar as this is necessary for the establishment, administration or processing of a mandate and is permissible in accordance with Art. 6 paragraph 1 sentence 1 lit a)-f) GDPR. This includes in particular the contents of communications and points in time, personal master data, contract and claim data, data on position in the company.

If you provide us with your personal data for the establishment or execution of a mandate relationship or other contract, we will use the data collected in this way to process the request or the mandate and to fulfill the obligations arising from the contractual relationship on the basis of Art. 6 paragraph 1 sentence 1 b) GDPR. This includes the recording of your contact data and the filing of correspondence in a law firm management system, the performance of conflict checks, the issuing of invoices and the transmission to parties involved in proceedings such as courts, authorities, opponents or service providers.

We may receive information and evidence from clients, in the course of court proceedings or negotiations, from public sources or from other third parties, regarding the personal data of persons from whom we do not collect the personal data directly (e.g. opponents, courts, authorities including their employees and representatives). We process the data obtained this way to provide legal advice, to evaluate the facts of the case, for the purpose of conducting litigation and to enforce or defend our clients' claims on the basis of Art. 6 paragraph 1 sentence 1 f) GDPR. As far as we represent interests of the public hand, the legal basis is Art. 6 paragraph 1 sentence 1 e) GDPR.

5. Recipient of data

Unless otherwise agreed, your data will not be passed on to third parties.
When processing your data, we partly use contract processors within the meaning of Art. 28 GDPR. In these cases we remain the responsible authority for the data processing. All contract processors are contractually obliged to treat your data as strictly confidential and to process it only in accordance with our instructions within the framework of the provision of services. These are, for example, document destruction companies and IT service providers that we need for the operation and security of our IT system.

In addition, auditors, tax consultants, insurance companies and service providers (e.g. information files, couriers) may be recipients of your data for the purpose of initiating and fulfilling contracts.

6. Duration of the storage of your data / retention

We store your personal data until you request deletion, revoke your consent for storage or the purpose for data storage no longer applies (e.g. after completed processing of your request and expiry of all; rejection of an application and expiry of any deadlines for asserting claims arising therefrom). Mandatory legal provisions - in particular retention periods - remain unaffected by this.
The storage for the purpose of fulfilling storage obligations takes place on the basis of Art. 6 paragraph 1 sentence 1 c) GDPR. To the extent we store data for purposes of proof, defence or assertion of legal claims, processing shall be based on Art. 6 paragraph 1 sentence 1 f) GDPR.  If you have consented to longer storage, the legal basis of such storage is Art. 6 paragraph 1 sentence 1 a) GDPR.

7. technical-organisational measures to protect personal data processed by us

We use technical and organisational security measures in order to protect your data administered by us against manipulation, loss, destruction and against access by unauthorised persons.

8. your rights

You have the following rights against us with regard to your personal data:

  • Right of access (Art. 15 GDPR),
  • Right to rectification (Art. 16 GDPR),
  • under the conditions of the art. 18 GDPR the right on restriction of the processing,
  • if the legal requirements are met, the right to request the deletion of your data and the right to object to its processing (Art. 17, 21 GDPR),
  • the right to revoke a consent given at any time without affecting the lawfulness of the processing carried out on the basis of that consent until such time as it is revoked, and
  • Right to data transferability (Art. 20 GDPR).

If you see cause for this, you can also complain to the data protection supervisory authority responsible for us about the processing of your personal data by us:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit
Postfach 10 29 32
70025 Stuttgart