Privacy Policy

We, UHY Wahlen & Mannsky PartGmbB, take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this Privacy Policy.

The use of our website is generally possible without providing personal data. Insofar as personal data (in particular, name, address, or email addresses) is collected on our pages, this is always done on a voluntary basis, where possible.

1. Name and Address of the Controller

The Controller, as defined by the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection provisions, is:

UHY Wahlen & Mannsky PartGmbB
Walther-von-Cronberg-Platz 13
60594 Frankfurt a.M.

Phone: +49 69 660 593 79 – 0
Email: info@uhy-wm.com
Website: www.uhy-wm.com

2. Contact Information of the Data Protection Officer

For any questions regarding data protection, please feel free to contact us at:
E-Mail: info@uhy-wm.com

3. Hosting and Technical Provision (Commissioned Data Processing)

We use the services of ALL-INKL.COM – Neue Medien Münnich, Inh. René Münnich, Hauptstraße 68, 02742 Friedersdorf (Germany) for the hosting and technical provision of this website.
ALL-INKL processes personal data (including server log files, IP addresses, metadata) on our behalf for the purpose of secure and efficient operation of the website.
The legal basis is Art. 6 para. 1 lit. a GDPR. 1 lit. f GDPR (legitimate interest in the secure, stable and efficient provision of the website).
A data processing agreement (DPA) is in place with ALL-INKL in accordance with Art. 28 GDPR.

4. No Use of Cookies, Trackers, or Analytics

We explicitly state that our website does not use cookies. Likewise, this website does not employ any tracking technologies or web analytics services. We therefore do not collect any data about your user behavior on our website.

5. Collection and Processing of Personal Data

We collect and process personal data only to the extent necessary to provide a functional website and to deliver our content and services. Personal data is processed regularly only with the user’s consent, unless obtaining prior consent is not possible for practical reasons and the processing of the data is permitted by law.

5.1. 5.1. Data Processing When Visiting Our Website

Each time our website is accessed, our system automatically collects information and stores it in server log files. This includes data such as IP address, date and time of access, URL/filename, HTTP status code, amount of data transferred, referrer URL, and browser/operating system information.

This data is processed to ensure the operation, security, and error analysis of the website.

The legal basis is Art. 6 para. 1 lit. f GDPR. Our legitimate interests lie in the technical provision, defense against attempted attacks and troubleshooting.

Storage Period: 14 days, after which the data is deleted or anonymized. Longer storage only occurs on an ad-hoc basis (e.g., to investigate security incidents) and is promptly deleted thereafter.

5.2. 5.2. Contact via Email

If you contact us via email, the personal data you transmit (e.g., your name, your email address, and the content of your message) will be stored for the purpose of processing your inquiry.

Data processing for the purpose of establishing contact is carried out in accordance with Art. 6 para. 1 lit. a GDPR on the basis of your voluntarily given consent or in accordance with Art. 6 para. 1 lit. b GDPR, insofar as your request serves to initiate or execute a contractual relationship.

We will not share this data with third parties without your consent. We will delete the data collected in this context once storage is no longer necessary, or we will restrict processing if statutory retention obligations exist.

Storage Period: Correspondence is deleted 12 months after the communication is concluded, provided no statutory retention obligations prevent it. Business letters may be subject to retention periods of up to 6 or 10 years according to § 257 HGB (German Commercial Code) / § 147 AO (German Tax Code).

6. Your Rights as a Data Subject

If your personal data is processed, you are a data subject within the meaning of the GDPR, and you have the following rights against the Controller:

  • Right of Access (Art. 15 GDPR): You can request information about whether and what personal data we have stored about you.
  • Right to Rectification (Art. 16 GDPR): You have the right to request the immediate correction of inaccurate personal data concerning you or the completion of incomplete personal data.
  • Right to Erasure (Art. 17 GDPR): You can request the deletion of your personal data stored by us, provided that the processing is not necessary for exercising the right to freedom of expression and information, for fulfilling a legal obligation, for reasons of public interest, or for establishing, exercising, or defending legal claims.
  • Right to Restriction of Processing (Art. 18 GDPR): You can request the restriction of the processing of your personal data if you contest the accuracy of the data, the processing is unlawful but you oppose its erasure, we no longer need the data but you require it for the establishment, exercise, or defense of legal claims, or you have objected to the processing pursuant to Art. 21 GDPR.
  • Right to Notification (Art. 19 GDPR): If you have asserted the right to rectification, erasure, or restriction of processing against the Controller, the Controller is obliged to notify all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves disproportionate effort.
  • Right to Data Portability (Art. 20 GDPR): You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format or to request its transmission to another controller.
  • Right to Object (Art. 21 GDPR): Sie haben das Recht, aus Gründen, die sich aus Ihrer besonderen Situation ergeben, jederzeit gegen die Verarbeitung Sie betreffender personenbezogener Daten, die aufgrund von Art. 6 Abs. 1 lit. e oder f DSGVO erfolgt, Widerspruch einzulegen.
  • Right to Withdraw Consent (Art. 7(3) GDPR): Sie haben das Recht, Ihre einmal erteilte Einwilligung zur Verarbeitung Ihrer Daten jederzeit uns gegenüber zu widerrufen. Dies hat zur Folge, dass wir die Datenverarbeitung, die auf dieser Einwilligung beruhte, für die Zukunft nicht mehr fortführen dürfen.
  • Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR): Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you believe that the processing of personal data relating to you infringes the GDPR.

The competent supervisory authority for the state of Hesse is: Der Hessische Beauftragte für Datenschutz und Informationsfreiheit, Gustav-Stresemann-Ring 1, 65189 Wiesbaden, Phone: +49 611 14080, Fax: +49 611 1408900, Email: poststelle@datenschutz.hessen.de

7. Data Security

Wir setzen technische und organisatorische Sicherheitsmaßnahmen ein, um Ihre durch uns verwalteten Daten gegen zufällige oder vorsätzliche Manipulationen, Verlust, Zerstörung oder gegen den Zugriff unberechtigter Personen zu schützen. Unsere Sicherheitsmaßnahmen werden entsprechend der technologischen Entwicklung fortlaufend verbessert.

8. Updates and Changes to This Privacy Policy

This Privacy Policy is currently valid and is dated September 2025

Durch die Weiterentwicklung unserer Webseite und Angebote oder aufgrund geänderter gesetzlicher bzw. behördlicher Vorgaben kann es notwendig werden, diese Datenschutzerklärung zu ändern. Die jeweils aktuelle Datenschutzerklärung kann jederzeit auf unserer Webseite unter https://uhy-wm.de/datenschutz/ von Ihnen abgerufen und ausgedruckt werden.