Privacy Policy

Privacy Policy

1. General
Privacy and the protection of personal data are of particularly high importance to Hoeger, Stellrecht & Partner Patentanwälte mbB (HS&P). We treat your personal data confidentially and in accordance with the legal data protection provisions and this privacy policy. We have entered into contracts with our service providers regarding commissioned data processing, which contain agreements on the protection, the storage in conformity with the law, and processing of personal data. This applies to the data of all groups of data subjects, in particular clients, applicants, candidates, employees, and interested parties.

In general, use of the websites of HS&P is possible without providing any personal data. Should a data subject wish to make use of particular services of our office via our website, a processing of personal data may become necessary, however. If the processing of personal data is required and there exists no legal basis for such a processing, we generally seek consent of the data subject.

The processing of personal data, i.e. the name, address, E-mail address, or telephone number of a data subject, always takes place in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to HS&P. By means of this privacy policy, our office would like to inform the public about the kind, extent, and purpose of the personal data gathered, used, and processed by us. Further, by means of this privacy policy, data subjects are informed of the rights to which they are entitled.

As the controller, HS&P has implemented numerous technical and organizational measures in order to ensure a protection of the personal data processed via this website that is as complete as possible. Nonetheless, internet-based data transfers can fundamentally have security holes, such that an absolute protection cannot be ensured. For this reason, every data subject is free to transmit personal data to us in alternative ways, for example by telephone.

2. Name and address of the controller
The controller for the purposes of the GDPR, other data protection laws effective in the member states of the European Union, and other regulations related to data protection is:

Hoeger, Stellrecht & Partner Patentanwälte mbB
Uhlandstraße 14c
70182 Stuttgart
Tel.: 0711 21190-0

3. Name and address of the data protection officer
The data protection officer of the controller is:

Gregor Kurz
Hoeger, Stellrecht & Partner Patentanwälte mbB
Uhlandstraße 14c
70182 Stuttgart
Tel.: 0711 21190-78

Every data subject can directly contact our data protection officer at any time with all questions and suggestions regarding data protection.

4. Cookies and analysis tools

The websites of HS&P use cookies. Cookies are text files that are stored and saved on a computer system by an internet browser. By using cookies, HS&P can provide the users of this website with user-friendly services that would not be possible without setting cookies. Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain saved on your device until you delete them. These cookies enable us to recognize your browser the next time you visit.

You can set your browser so that you are informed about the setting of cookies, and allow cookies only on a case-by-case basis, deny the use of cookies for certain cases or in general, as well as activate the automatic deletion of the cookies upon closing the browser. When cookies are deactivated, the functionality of this website may be limited.

Cookies that are necessary for the implementation of the electronic communication or for providing certain features requested by you (e.g. shopping cart function) are stored pursuant to Article 6, Section 1 lit (f) GDPR. The website operator has a legitimate interest in storing cookies for ensuring technically error-free and optimized services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are saved, they will be treated separately in this privacy statement.

The HS&P website uses features of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses cookies. The information generated by the cookies regarding your use of this website is typically transmitted to a Google server in the United States and stored there. The Google Analytics cookies are stored and these analysis tools are used pursuant to Article 6, Section 1 lit. (f) GDPR. The website operator has a legitimate interest in the analysis of user behavior in order to optimize the website as well as its advertising.

We have activated the feature IP anonymization on this website. Your IP address is thereby shortened by Google within member states of the European Union or in other Contracting States to the Agreement on the European Economic Area before the transmission to the United States. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website in order to compile reports regarding the website activities and in order to perform further services associated with the website use and internet use for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.

You may prevent the storage of cookies by means of a corresponding setting in your browser software; however, please be informed that in this case you may not be able to use all features of this website to their full extent. You may prevent Google Analytics from collecting your data by clicking on the following link: Deactivate Google Analytics. An opt-out cookie is set which prevents the collection of your data during future visits to this website. In addition, you may prevent the collection of the data generated by the cookies and relating to your use of the website (including your IP address) to Google and the processing of said data by Google by downloading and installing the browser plug-in available at the following link: More information on how Google Analytics handles user data can be found in Google’s privacy policy at

5. Collection of general data and information
The website of HS&P collects a series of general data and information with each visit of the website by a data subject or an automated system. This general data and information is saved in the logfiles of the server. The following may be collected: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrer), (4) the sub-websites which are controlled by an accessing system on our website, (5) the date and time of access to the website, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing system, and (8) other similar data and information that serve for risk prevention in the case of attacks on our information technology systems. In the use of this general data and information, HS&P draws no inferences about the data subject. Rather, this information is required in order to (1) correctly deliver the content of our website, (2) to optimize the content of our website and the promotion thereof, (3) to ensure the lasting functionality of our information technology systems and of the technology of our website, and (4) to provide law enforcement agencies with information necessary for prosecution in the case of a cyber-attack. This anonymously collected data and information is therefore, on the one hand, evaluated statistically by HS&P and, further, with the goal of increasing data protection and data security in our company, in order to ultimately ensure an optimal level of protection for the personal data processed by us. The anonymous data of the server logfiles are stored separately from all personal data provided by a data subject.

6. Routine deletion and blocking of personal data
The controller processes and stores personal data of the data subject only for the period of time that is required for the achievement of the storage purpose, insofar as this was provided for by the European body for issuing directives and regulations, or by another legislative body, in laws or provisions to which the controller is subject. If the storage purpose is no longer applicable, or if a storage term mandated by the European body for issuing guidelines and regulations, or by another competent legislative body, expires, then the personal data are blocked or deleted routinely and in accordance with the legal provisions.

7. Rights of the data subject
The user and all other subjects of the data usage by HS&P have a claim to disclosure of the personal data stored by HS&P and, where the respective legal conditions are met, a claim to correction, deletion, to limitation of the processing, and to object to processing.

The users of the websites of HS&P and, as the case may be, other data subjects further have the right to obtain the personal data provided by them in a structured, accessible, and machine-readable format. This includes the right to transmit this data to another controller. Insofar as it is technically possible, the users of the websites of HS&P and, as the case may be, the other data subjects may also request after the stated date that HS&P transfer the personal data directly to the other controller.

For the exercise of the rights stated in this clause, as well as in the event of questions and complaints regarding the use of their personal data, users of the website and, as the case may be, the other data subjects may refer to the data protection officer of HS&P. With complaints regarding the data use by HS&P, the users and, as the case may be, the other data subjects may also refer to the competent supervisory authority.

8. Data protection in the case of applications and in the application process
The controller gathers and processes the personal data of applicants for the purpose of the completion of the application process. The processing may also take place by electronic means. This is the case in particular if an applicant transmits relevant application documents by electronic means, for example by E-Mail.

If no employment contract is entered into with the applicant by the controller, then the application documents are deleted in accordance with the current legal requirements after notification of the decision of rejection, insofar as no other legitimate interests of the controller prevent a deletion. Other legitimate interest to this effect is, for example, a burden of proof in proceedings in accordance with the General Act on Equal Treatment (AGG).

9. Legal basis for the processing
Article 1 Par. 1 lit. a) GDPR serves our company as the legal basis for the processing operations, in which we obtain consent for a particular processing purpose. If the processing of personal data is required for the fulfillment of a contract, of which the contractual party is the data subject, as is the case, for example, in processing operations that are necessary for the delivery of goods or the rendering of a service or return service, then the processing shall be based on Article 6 Par. 1 lit. b) GDPR. The same applies for such processing operations that are necessary for the execution of pre-contractual measures, for instance in cases of inquiries regarding our products or services. If our office is subject to a legal obligation through which a processing of personal data becomes necessary, like for the fulfilment of tax obligations, then the processing shall be based on Article 6 Par. 1 lit. c) GDPR. If the processing of personal data is based on Article 6 Par. 1 lit f) GDPR, our legitimate interest is the execution of our business operation.

10. Duration for which the personal data are stored. 
The criterion for the duration of the storage of personal data is the respective legal retention period. After expiration of the period, the corresponding data are routinely deleted, insofar as they are no longer required for the fulfilment or initiation of a contract.

11. Legal or contractual requirements regarding the provision of the personal data; necessity for the conclusion of a contract; obligation to provide the personal data to the data subject; possible consequences for the failure of provision
We inform you that the provision of personal data is in part legally required (i.e. tax regulations) or may also arise from contractual arrangements (i.e. information concerning the contractual partner). It can sometimes be necessary for a data subject to provide us with personal data which must subsequently be processed by us. The data subject (i.e. an inventor) is, for example, required to provide us with personal data if our company enters into a contract with them or their employer. A failure to provide the personal data would result in the contract with the data subject and their employer, respectively, not being able to be completed.

12. Existence of automated decision making
As a responsible company, we forgo automatic decision making or profiling.