Privacy Policy

Last updated: December 2024

1. Introduction

DeLex Law ("we", "our", "us") is committed to protecting your privacy. This privacy policy explains how we collect, use, store and protect your personal data when you use our website delexlaw.com and our services.

This policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and the German Federal Data Protection Act (BDSG).

2. Data Controller

The data controller for your personal data is:
DeLex Law
Frankfurt am Main, Germany
Email: privacy@delexlaw.com

3. Data We Collect

3.1 Data you provide directly

  • Identification data: first name, last name, email address
  • Contact data: phone number (optional)
  • Professional data: company name, industry
  • Request content: description of your legal needs

3.2 Data collected automatically

  • Browsing data: IP address, browser type, pages visited
  • Technical data: operating system, screen resolution
  • Cookies: see our dedicated section below

4. Purposes of Processing

  • Responding to your contact and consultation requests
  • Connecting you with qualified partner lawyers
  • Improving our services and user experience
  • Ensuring platform security
  • Complying with legal obligations

5. Legal Basis for Processing

  • Your consent (Art. 6(1)(a) GDPR): for marketing communications
  • Contract performance (Art. 6(1)(b) GDPR): for processing your connection requests
  • Legitimate interest (Art. 6(1)(f) GDPR): for service improvement and security
  • Legal obligation (Art. 6(1)(c) GDPR): for regulatory compliance

6. Data Recipients

  • Partner lawyers: only information necessary for your connection
  • Technical providers: hosting (AWS), email (transactional services)
  • Competent authorities: if required by law

We never sell your personal data to third parties.

7. International Transfers

Your data is primarily stored in the European Union. For transfers to third countries, we ensure appropriate safeguards are in place (standard contractual clauses, European Commission adequacy decisions).

8. Retention Period

  • Contact data: 3 years after last contact
  • Consultation data: 10 years (German statutory retention requirements)
  • Cookies: 13 months maximum

9. Your Rights

Under the GDPR, you have the following rights:

  • Right of access (Art. 15): obtain a copy of your data
  • Right to rectification (Art. 16): correct inaccurate data
  • Right to erasure (Art. 17): request deletion of your data
  • Right to portability (Art. 20): receive your data in a structured format
  • Right to object (Art. 21): object to processing of your data
  • Right to restriction (Art. 18): restrict processing of your data
  • Right to withdraw consent: at any time with future effect

To exercise these rights, contact us at: privacy@delexlaw.com

10. Cookies

  • Essential cookies: necessary for site operation
  • Analytics cookies: to understand site usage (with your consent)

11. Security

We implement appropriate technical and organizational measures to protect your data: SSL/TLS encryption, access control, system monitoring, regular backups.

12. Complaints

If you believe your rights are not being respected, you can file a complaint with a supervisory authority. In Germany, this is the Federal Commissioner for Data Protection (BfDI) or your state data protection authority.

13. Contact

For any questions about this policy:
Email: privacy@delexlaw.com