Skip to main content

Privacy policy

1. The name and contact details of the Controller and the company Data Protection Officer

This data protection information applies to the data processing by:

SBM Steilen Brenner Mester Partnerschaft Tax Consultants
Bonner Landstrasse 91,
D-50996 Cologne,
E-mail: kanzlei(at)
Phone: +49 (0)2236 – 30904-0
Fax: +49 (0)2236 – 30904-99

The in-house Data Protection Officer at SBM Steilen Brenner Mester Partnerschaft Steuerberater is available under the above-mentioned address and datenschutz(at)

2. Collection and storage of personal data and the nature and purpose of their use

a) When visiting the website

When calling up our website information is automatically sent to the server of our website by the browser used on your user device. This information is stored for 14 days in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website from which the access occurs (referrer URL),
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider.

We process the above-mentioned data for the following purposes:

  • ensuring a smooth connection to the website,
  • ensuring convenient use of our website,
  • evaluation of system security and stability as well
  • as for other administrative purposes.

The legal ground for the data processing is Art. 6 (1) (1) (f) GDPR. Our legitimate interest follows from the above-listed purposes for data collection. Under no circumstances do we use the collected data for the purpose of making inferences about your person.

Furthermore, we use cookies when you visit our website. You will find more detailed explanations under Item 4 of this privacy policy.

3. Disclosure of data

Your personal data will not be transferred to third parties for purposes other than those listed below.

We only disclose your personal data to third parties if:

  • You have given your express consent in accordance with Art. 6 (1) (1) (a) GDPR,
  • the disclosure pursuant to Art. 6 (1) (1) (f) GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
  • in the event that there is a legal obligation to disclose the data pursuant to Art. 6 (1) (1) (c) GDPR, and
  • this is legally permissible and required under Art. 6 (1) (1) (b) GDPR for the processing of contractual relationships with you.

4. Cookies

We use cookies on our website. These are small files that are automatically created by your browser and stored on your device (laptop, tablet, smart phone or similar device) when you visit our site. Cookies do not cause any damage to your user device, do not contain viruses, Trojans or other malware.

Information is stored in the cookie, which results in each case in connection with the specifically used user device. This does not mean, however, that we obtain direct knowledge of your identity.

The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognise that you have already visited individual pages of our website. These are automatically deleted when you leave our website.

In addition, we also use temporary cookies, which are stored on your user device for a certain fixed period of time, to optimise user-friendliness. If you visit our site again to use our services, we will automatically recognise that you have already been with us and what entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to record the use of our website statistically and to evaluate it for the purpose of optimising our offer for you (see point 5). These cookies enable us to automatically recognise that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined time.

The data processed by cookies is required for the purposes mentioned above in order to safeguard our legitimate interests and those of third parties in accordance with Art. 6 (1) (1) (f) GDPR.

Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you will not be able to use all the functions of our website.

5. Rights of data subjects

You have the right:

  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you may request information as to the purposes of the processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right of rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data, if not collected by us, and the existence of automated decision making, including profiling and, where applicable, meaningful information on the details of the data;
  • according to Art. 16 GDPR, to demand the rectification of incorrect or incomplete personal data stored by us without delay;
  • according to Art. 17 GDPR, to demand the erasure of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
  • according to Art. 18 GDPR, to demand the restriction of the processing of your personal data, if the accuracy of the data is disputed by you, if the processing is unlawful but you refuse to erase it and we no longer require the data, but you require it for the assertion, exercise or defence of legal claims or if you have lodged an objection to the processing pursuant to Art. 21 GDPR;
  • according to Art. 20 GDPR, to receive your personal data that you have provided us in a structured, common and machine-readable format or to request that it be transferred to another controller;
  • according to Art. 7 (3) GDPR, to revoke your consent already provided to us at any time. As a consequence, we may no longer continue the data processing that was based on this consent in the future, and
  • according to Art. 77 GDPR, to register a complaint with a supervisory authority. As a general rule, you can contact the supervisory authority of your usual place of residence or workplace or our office for this purpose.

6. Right of objection

If your personal data are processed on the basis of legitimate interests in accordance with Art. 6 (1) (1) (f) GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR if there are reasons for doing so arising from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specification of a special situation.

If you wish to make use of your right of revocation or objection, simply send an e-mail to datenschutz(at)

7. Data security

We use the common SSL (Secure Socket Layer) procedure within the website visit in connection with the highest encryption level supported by your browser. Usually this is a 256 bit encryption. If your browser does not support 256-bit encryption, we revert to 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the locked key or padlock icon in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

8. Hinweis zum Videokonferenzsystem

Wir nutzen für unsere Videokonferenzen "Microsoft Teams". Die Datenschutzhinweise zu dem von uns eingesetzten Videokonferenzsystem finden Sie unter Datenschutz und Sicherheit mit Microsoft 365

8. Topicality and amendment of this privacy policy

This privacy policy is currently valid as at June 2020.

Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to amend this privacy policy. At any time on our website, the current privacy policy can be called up at and printed out by you.