We use cookies to personalise the website and offer you the greatest added value. They are, among other purposes, used to analyse visitor usage in order to improve the website for you. By using this website, you agree to their use. Further information can be found in our data privacy statement.

Privacy policy for events and invitations to events

In this privacy policy, Rödl & Partner informs you about how your personal data are processed in connection with inviting you to and organising events of the Rödl & Partner Group in Germany.

1. Name and contact details of the controller and the data protection officer

Controller is the company (hereinafter referred to as the "controller" or "we") of the Rödl & Partner Group which has sent you the invitation to an event or which is named as the organiser in the invitation. For e-mail contacts, the company listed in the signature of the e-mail of your contact person is the controller.
If no such contact details are indicated, the controller is Rödl GmbH Rechtsanwaltsgesellschaft Steuerberatungsgesellschaft, Äußere Sulzbacher Str. 100, 90491 Nuremberg, Germany, telephone: 0911 919 30, email: info@roedl.com
You can contact our data protection officer by post at the address specified above, by adding "Confidential, for the attention of the data protection officer", or by e-mail at dsb@roedl.com.   

2. Scope of processing and type of data

This Privacy Policy concerns the processing of personal data (in particular first name, surname, company name, e-mail address, etc., as well as photographs of event participants, if applicable) processed by you as a (potential) event participant. According to Article 4 No. 1 GDPR, personal data means any information relating to an identified or identifiable natural person.

3. Purpose of processing and basis for the processing 

Your personal data will be processed for the following purposes:
(1) for the performance of a contract and/or the fulfilment of contractual obligations, including:

  • the management of contractual relationships as well as those established prior to entering into a contract;
  • the performance of a contract/ conduct of the event;
  • billing and payment;

The basis for this processing is Article 6(1) sentence 1 lit. b GDPR.
(2) for compliance with a legal obligation to which the controller is subject, for example
compliance with obligations arising from laws, regulations or national and EU legislation or obligations imposed by the competent authorities;

  • the preparation and processing of tax returns and the fulfilment of the related requirements;
  • the keeping of books of account and the fulfilment of the related obligations.

The basis for this processing is Article 6(1) sentence 1 lit. c GDPR.
(3) for the purposes of the legitimate interests pursued by the controller, including:

  • the enforcement of the rights of the controller in court and the conduct of legal disputes;
  • the prevention and detection of fraudulent activities;
  • the processing and transfer of personal data for in-house administrative purposes within the Group;
  • the promotion of (future) events organised by the controller or by companies of the Rödl & Partner Group, for which we use your address and contact data;
  • the promotion and reporting on events held by the controller or by companies of the Rödl & Partner Group, for which we use photographs of event participants, which may also depict you; the photographs are used on our homepage www.roedl.de or www.roedl.com, in our Intranet (employee portal), in our Mobile Event App and in print media, if applicable;

The basis for the processing is Article 6(1) sentence 1 lit. f GDPR; our legitimate interest lies in the enforcement of our rights, safeguarding of our security interests, pursuing business cooperation with other companies of our Group and the business activity of our company.

4. Terms of data processing

Personal data shall be processed by the controller in paper form and by electronic means by way of collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

5. Storage of data

The data being processed by the controller are erased or subject to restricted processing in accordance with Articles 17 and 18 GDPR. The data we store will be erased as soon as they are no longer required for the purpose stated above and no statutory retention periods prevent such erasure, no later than 10 years of the end of the cooperation.

6. Obligation to disclose data and consequences of refusal

The provision of the data marked as mandatory for contractual purposes in each case is necessary and compulsory and a refusal to provide the data will affect the conclusion or continuation of the contractual relationship with the controller.

7. Access to data

Your data may be made available for the above purposes to:

  • employees and/or associates of the controller with regard to their role as controllers and/or internal processors;
  • companies of the Rödl & Partner Group or other third parties (e.g. credit institutions, specialist companies, etc.) who perform outsourced activities on behalf of the controller, for example as processors.


8. Disclosure and transmission of data

Apart from the cases explicitly mentioned in this Privacy Policy, your personal data will only be disclosed without your express prior consent if this is legally permissible or necessary.

Where we use external service providers for the provision of our services, any disclosure of personal data is justified by the fact that we have either carefully selected our third-party companies and external service providers as processors within the scope of Article 28 (1) GDPR, regularly reviewed them and contractually obligated them to process all personal data exclusively in accordance with our instructions or have jointly determined the purposes and means of processing as joint controllers within the scope of Article 26 (1) GDPR.

9. Transfer of data to third countries

Your personal data will not be transferred to any non-EU countries or processed there.

10. Rights of data subjects

To exercise the rights listed below, please contact us at the named address in section 1 of this Privacy Policy.
You have the right to receive information from us at any time upon request about the personal data we process concerning you within the scope of Article 15 GDPR.
You have the right to demand that we rectify without undue delay any inaccurate personal data concerning you.
You have the right to demand that we erase the personal data concerning you under the conditions described in Article 17 GDPR. According to these conditions, the data subject has the right to erasure, in particular, if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed, the personal data have been unlawfully processed, the data subject objects to the processing, or the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which we are subject. As regards the period of data storage, please also refer to section 5 of this Privacy Policy.
You have the right to demand that we restrict processing in accordance with Article 18 GDPR. You are entitled to exercise this right in particular if the accuracy of the personal data is contested by you as the data subject, for a period enabling us as the controller to verify the accuracy of the personal data, as well as in the event that you request restricted processing of your personal data instead of their erasure and you have the right to such erasure; furthermore, in the event that we no longer need the personal data for the purposes indicated by us, but they are required by you for the establishment, exercise or defence of legal claims; as well as if the successful exercise of your right to object to the processing is still pending verification.
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format in accordance with Article 20 GDPR.
You also have the right to contact us, our data protection officer or a supervisory authority in the event of complaints about our data processing.

11. Right to object

In accordance with Article 21 GDPR, you also have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data, which is based on Article 6(1) lit. e or lit. f GDPR. We will no longer process your personal data for such purposes, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

Deutschland Weltweit Search Menu