Imprint  |  Privacy & Security
deutsch  |  english  |  french

Data Protection Information

The following data protection information states which personal data are collected, processed and, if applicable, transmitted during your visit to this website, and the extent to and purpose for which this is done.

Where this website contains links to the external sites of other providers, you leave this website when you follow these links. The providers of these linked sites are solely responsible for compliance with applicable legal data protection provisions.

As far as personal data are processed while visiting this website, we only process data in compliance with the laws and regulations of the Federal Republic of Germany and overarching European legislation, including the EU General Data Protection Regulation (GDPR). Your personal data are processed within the scope described below for the purposes explained.

The EU General Data Protection Regulation uses specific terms, which are defined in Article 4, e.g. personal data, processing, pseudonymisation, controller, processor, recipient, third parties and consent. Learn more about what certain expressions mean in the context of the General Data Protection Regulation.

Name and contact details of the controller

The controller in accordance with the General Data Protection Regulation, other national data protection laws of the Member States and other legal data protection provisions is:

Prof Dr Klemens Joos
Denninger Strasse 15
81679 Munich, Germany
Germany (German)
Phone: +49 89 9929997-0

Name and address of the data protection officer

Currently there is no obligation to appoint a data protection officer pursuant to Article 37 GDPR in conjunction with § 38 BDSG (German Federal Data Protection Act) as amended. For any questions regarding data protection, please get in contact with me directly using the aforementioned contact details.

1. General information on the processing of personal data

Scope of the processing
Personal data of website users are only processed if it is necessary to do so in order to provide a functioning website or for communication using the aforementioned email address/telephone number.

Purposes of the processing
The purposes of the processing of personal data are based on the provision of the website and the information contained therein and all associated secondary business.

2. Data protection information on the provision of the website and creation of log files

In principle, you can visit our website without registering or logging in. When you visit our website, data is collected by the web server for the transfer of data (information on the system of the computer used) and sometimes stored in log files on the web server. This data is referred to as “usage data”.

The following data is collected in this way:
  • The user’s IP address
  • Date and time of the request
  • Target domain of the request
  • Status of access/http status code
  • Referring URL (referrer)
  • The browser used, the language and version of the browser software, the operating system and its interface
  • Your access provider name
The data is stored in the system’s log files. This data is not stored together with the user’s other personal data.

Retrieval of data / Downloads
Every time a file is downloaded, data about this process is stored in a log file.

In detail, the following data record is stored for each retrieval:
  • Name and URL of the downloaded file
  • Data volume transferred
  • Status of the request (success/error) (HTTP response code)
The legal basis for the temporary storage of the data and log files is Article 6(1)(f) GDPR.

Storage in log files is carried out to ensure the functionality of the website. We also use the data to optimise the website and to ensure the security of our IT systems. The legitimate interest in data processing for these purposes is in accordance with Article 6(1)(f) GDPR.

The data will be erased as soon as it is no longer required to achieve the purpose of its collection. When data is collected to operate a website, this is the case when the relevant session ends.

When data is stored in log files, this is the case after 7 days at the latest, any backups are also deleted after 14 days at the latest. Extended storage is possible. In this case, users’ IP addresses will be erased or distorted so that assignment to the requesting client is no longer possible.

The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. In consequence, there is no right of objection on the user's part other than not using the website.

3. Data protection information on the use of cookies

Cookies facilitate user interactions and other expedient tasks when using websites. Cookies do not damage your computer or contain viruses.

No cookies are currently used on this website. Under reservation of the further development of this website it is possible to use this technology in the future.

In this case, this data protection information will be updated in order to provide all information required by law.

4. Data protection information on contact by email and telephone

Communication by email
On this website you have the option to contact us via the email address provided. In this case, the user’s personal data transmitted with the email will be stored.
  • Email address
  • Content of the message
  • Signature if required with
    • First and last name
    • Address
    • Telephone number
    • Company
  • Attachment
The following data is also stored when you submit or receive the message:
  • The date and time when email was sent
  • Quantity of data transmitted
  • User's email system
  • Encryption strength of the transmission
  • SPAM filter analysis (if necessary, also of the sending system)
  • Message ID of the sending system
  • Reply email address
Please note: Communication by email may be subject to security loopholes. For example, emails may be stopped and viewed by unauthorised persons during online transmission. If we receive an email from you, we assume that we are entitled to reply to you by email. Otherwise we must explicitly refer you to another means of communication.

Communication by phone
It is also possible to get in contact via the telephone number provided. In this case the personal data of the user transmitted will be stored depending on the call content.
  • First and last name
  • Telephone number
  • Call content
  • Further data if required
    • Address
    • Email address
    • Company
In both cases the data are used solely for the processing of the request and may be stored for further queries.

The legal basis for the processing of data that are transmitted in the course of establishing contact is Article 6(1)(f) GDPR.

If the purpose of the contact is to conclude a contract, the legal basis for this is also Article 6(1)(b) GDPR

The processing of the personal data transmitted takes place solely in order to process the enquiry. This also constitutes the required legitimate interest in the processing of the data.

The other personal data processed during submission are used to prevent misuse of the contact form and ensure the security of the IT systems.

Transmitted data are deleted, depending on the purpose, i.e. when the respective conversation with the user has ended and the deletion is not prevented by potentially re-establishing contact or legal considerations (retention periods, traceability) prevent this.

The user has the possibility of withdrawing his or her consent to the processing and storage of his or her personal data at any time. All personal data stored in the course of establishing contact will be deleted in this case, unless legal considerations (retention periods, traceability) prevents this.

In case of deletion, the conversation cannot be continued.

5. Data protection information for the processing of business contacts

On various occasions, contact information of employees and managing directors of other companies as well as of officials or mandate-holders of public institutions is collected and stored for business purposes.

This information, which is in general provided in person, e.g. on business cards or participant lists for events, is stored in a contact database as a business contact, just like analogue information which is provided electronically.
  • Title
  • First and last name
  • Company
  • Position
  • Company address
  • Email address
  • Web address
  • Telephone number
  • Mobile phone number
  • Fax number
In addition, the time and purpose of the handover of contact data and, if applicable, further information from business communications are stored, e.g.:
  • Line of business
  • Appointment details
  • History of contacts
  • Type of request
The data will be processed exclusively within the context of our business relationship. The data will not be passed on to third parties unless you expressly agree.

The legal basis for the processing of data provided in the context of the collection and storage of business contact data is Article 6(1)(f) GDPR.

If the establishment of contact is based on pre-contractual measures or aims at the conclusion of a contract, Article 6(1)(b) GDPR is the additional legal basis for the processing.

In case of the user's consent, the legal basis for processing of the data is Article 6(1)(a) GDPR

The processing of business contact data is to be used for the administration and provision of contacts to individuals, companies, employees of companies or public authorities for
  • Maintaining contact
  • Information exchange/transmission of information material
  • Cooperation/business cooperation
  • Prospective future cooperation/business cooperation
The necessary legitimate interest in the processing of the data is related to the aforementioned purposes.

After a period of four years (at the end of each calendar year), the system will check whether additional storage of personal data is required for contact management. Data will be deleted unless they need to be stored longer depending on the purpose. The check is carried out in accordance with the respective purpose.

You have the option to withdraw your consent to the processing and storage of your personal business contact data at any time as well as to withdraw your consent for processing.

In both cases, all personal data stored in the context of contact management will be deleted, unless there are legal reasons to the contrary (retention periods, verifiability). In the last-mentioned case, the data will be blocked.

In case of deletion or blocking of data an existing conversation cannot be continued or future contact will not be established.

6. Your rights as a data subject

If your personal data is processed, you are a data subject in accordance with GDPR and you have the following rights against the controller:
  • Right of access: You can request confirmation as to whether and which personal data concerning you is processed by us.
  • Right to rectification: You have a right to rectification and/or completion if the processed personal data concerning you is incorrect or incomplete.
  • Right to erasure (“Right to be forgotten”): You can request the personal data concerning you to be erased immediately and the controller is obliged to erase this data immediately where certain grounds apply.
  • Right to restriction of processing: Under certain circumstances, you can request restriction of processing of personal data concerning you.
  • Right to information: If you have enforced the right to rectification, erasure or restriction of processing, the controller is obliged to inform all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing.
  • Right to data portability: You have the right to receive personal data concerning you that you have provided to the controller in a machine-readable format.
  • Right to object: You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you that is performed in accordance with Article 6 (1)(e) or (f) GDPR.
-> In particular the objection against direct advertising is mentioned here.
  • Right to withdraw the legal data protection declaration of consent: You have the right to withdraw your legal data protection declaration of consent at any time.
  • Automated decision-making in particular cases, including profiling: In certain cases, scoring and profiling may not be carried out without the involvement of a reviewing person.
  • Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a data protection supervisory authority. However, please contact us first to obtain your rights.

7. Modification of the data protection information

This data protection information will be modified as new services are provided or changed in order to be in compliance with current legal requirements. The actual version will then be applicable for your renewed visit to our website.

8. Download via external links

If you order my publications via the websites of Wiley-VCH Verlag or Amazon, the Wiley/Amazon privacy policy applies.