Privacy

Our business is based on trust. For KPMG as an auditing company, the protection of personal data (data protection) is a high priority. KPMG complies with all applicable data protection laws and also strives to continuously improve data protection. KPMG is responsible for the processing of personal data on this website in accordance with the European Data Protection Basic Regulation (DS-GVO) and the Federal Data Protection Act ("BDSG"). 
With ATLAS, KPMG provides a web platform and web-based services that provide our clients with fast, easily accessible solutions to key transformation issues. This includes above all our web-based assessments. ATLAS helps to quickly find suitable services for tasks, to explain their functionality and to enable a fast application. 

With the following data protection information we inform you about the processing of personal data on the Atlas websites of KPMG as well as about the rights of data subjects. 

This privacy policy applies exclusively to the collection, processing and use of personal data within the framework of the Atlas Portal.

General data protection information on the processing of personal data within the framework of our general business activities and services (e.g. assessments/events) that can be commissioned via Atlas can be accessed here. 

 

1. who is responsible for data processing on these websites? 
KPMG auditing company AG Klingelhöferstr. 1810785 Berlin 
Phone: +49 30 2068 - 0Fax : +49 30 2068-2000Email : information@kpmg.de 

2 How can the Data Protection Officer be reached? 
Either at the postal address mentioned under 1. or by e-mail address: de-datenschutz@kpmg.com 

3. for what purpose do we process your data on these web pages and on what legal basis? 
KPMG collects and uses personal data to provide the websites and our content and services in accordance with the provisions of Art. 6 para. 1 a to f DS-GVO, i.e. to the extent permitted by the DS-GVO or other legal provisions or with the user's consent. With all service providers that we use on our websites as contract processors in accordance with Art. 28 EU DS-GVO, legally standardized data protection contracts are agreed and the service providers are subjected to a corresponding IT security assessment in advance.

In addition, KPMG processes personal data when you visit this website as follows: 

a. log files 
Each time you visit our website, so-called log files are automatically saved on the basis of our legitimate interest in accordance with Art. 6 Para. 1f EU DS-GVO. These log files contain information about the computer accessing our website, e.g. information about the browser type, the operating system used, the Internet service provider, the IP address, date and time of access. Storage of this data is necessary in order to make our web pages available to users for the duration of the session. We also use this data to optimize our websites and to ensure the security of our IT systems. The data from the log files are deleted as soon as they are no longer required for the named purposes. 

b. Register with Atlas 
The publicly accessible websites of Atlas can initially be used without providing personal data. If you wish to have access to restricted content (e.g. certain studies) on Atlas or if you wish to commission services as a client, you must register in order to provide personal data. With the first registration a password protected personal account and access to the internal area of Atlas will be set up (Level 1 registration). This requires, among other things, the indication of surname, first name and (business) e-mail address. In order to commission services via Atlas, further information is required for internal review as a client of KPMG (Level 2 registration). This information is used to identify and verify the client and relates to company-specific information (e.g. company name, company form, company address and other information such as capital market orientation, financial supervision), which generally has no personal reference. 
When registering, logging in and using the user account, the IP address of the user and the time of the respective use are also recorded. KPMG has a legitimate interest pursuant to Art. 6 para. 1 lit. f EU DS-GVO for security reasons (e.g. protection against misuse, unauthorised use). 

c. Newsletter, Mailings, Downloads 
On the KPMG websites, we provide a wide range of newsletters, mailings and downloads on the basis of the user's consent in accordance with Art. 6 Para. 1a EU DS-GVO, possibly in conjunction with § 7 Para. 2 No. 3 UWG. Also on the basis of a legal permission according to § 7 Abs. 3 we can send certain information by e-mail to those affected. 
To subscribe to topic-related newsletters and mailings as well as to download certain documents (e.g. studies) from KPMG, you must provide your name and e-mail address. By registering or downloading, KPMG is also granted permission to record future visits of a user to our websites on a personal basis in order to be able to send him or her topic-related information (e.g. current studies, surveys) tailored to the respective interests in a targeted and personal manner. We use a cookie from our service provider Hubspot to record the individual KPMG websites 
and topics that a registered user looks at when visiting them (see also section 3e (3) below). 
After registering for newsletters, mailings or downloads on the KPMG websites, each user receives a confirmation e-mail to the e-mail address provided (so-called double opt-in procedure). Only after clicking on the link contained in this e-mail is the registration completed.
Consents once given to receive newsletters, mailings or downloads may be revoked at any time via a link at the end of any e-mail or by sending a message to KPMG's mailbox de-webteam@kpmg.com 
Registrations for newsletters, mailings or downloads are logged on the basis of our legitimate interest in being able to prove the registration and consent of a user at any time (Art. 6 para. 1 lit. f EU DS-GVO). 
If you have not used our offers in any form during one year, you are not considered interested and will be automatically deleted from Hubspot. 

d. contact form 
To request further information, we provide you with contact forms at various points on our website, which you can use to contact us directly. We process the personal data entered here (e.g. name, e-mail address) within the framework of the statutory provisions for processing the enquiry pursuant to Art. 6 Para. 1b or Art. 6 Para. 1f EU DS-GVO. 

e. Cookies & Analytics 
KPMG uses cookies to improve presentation and navigation. A cookie is a text file that is sent from the web server to the browser. This file contains the URL that was visited, the date of the visit and an expiration date that determines the period of activity of the cookie. Cookies are used by KPMG on the one hand to determine which areas of the KPMG web pages are visited most frequently and on the other hand to enable the user to save his personal settings so that they are available again the next time the page is called up. On the Internet pages on which cookies are used, a banner appears informing you about the use of cookies. 
KPMG uses cookies on the basis of our legitimate interest pursuant to Art. 6 Para. 1f EU DS-GVO. In principle, every user has the choice to decide whether cookies are accepted or not. Each browser can be set to notify users when they receive a cookie, or to refuse cookies in general in the browser settings. 

If cookies are generally not accepted, it may not be possible to use the full range of website functions. Further information on the handling of cookies can be found in the help pages of the browser used as well as, for example, on the website of: http://www.allaboutcookies.org/ge/

In the table below we have listed the different types of cookies we use on our site:

purpose Description of the storage period
Performance When using our websites, cookies are Session cookies -
(e.g. user's browser) used (e.g. to recognise the browser) to improve performance (e.g. to load content faster). are deleted when you close your browser.
Security cookies (e.g. aps.net) When you sign up for a restricted area, these cookies ensure that your devices remain logged in for the duration of your visit. You usually need a username and password to access these areas. Session cookies - are deleted when you close your browser.
tastes Our cookies can also remember your preferences, e.g. language settings. It is also possible to send you personalized greetings or content. However, this only applies to areas with restricted access, i.e. areas that require registration. Session cookies - are deleted when you close your browser.
analysis cookies We use third-party analytics cookies to understand how visitors use our site. This helps us to improve the quality and content on our site. For more information on the analysis cookies we use, see below. Remain, but are automatically deleted after 2 years if the KPMG page was no longer visited.
Feedback from the visitors of the website We use a survey tool from an external provider to ask some of the visitors to our website for feedback. Cookies ensure that visitors are not repeatedly invited to the survey.
The first cookie is set if the visitor has not been invited to the survey to ensure that the visitor is not invited while visiting the pages.
Second cookie is set when visitor is invited to survey. This is to ensure that the visitor does not receive an invitation until after 90 days.
1. cookie
Deleted when the browser is closed.
2nd cookie
Will be deleted automatically after 90 days or the invitation to the survey will be displayed.
social media widgets We use social media widgets to enable the sharing of content in social media channels or via email. When using these social media widgets, cookies may also be stored on your devices. However, these cookies are stored exclusively in accordance with the data protection regulations of the respective social media provider. Remain, but are automatically deleted after 2 years if the KPMG page was no longer visited.


KPMG uses the following third-party cookies and analytics tools on these websites in detail:

(1) Use of hoisting spotlight 
KPMG uses Hubspot, a service of Hubspot Inc., on its websites for analysis purposes. Hubspot is certified under the EU-US Privacy Shield. 
Here so-called "Web Beacons" are used and also "Cookies" are set, which are stored on your computer and which enable an analysis of your use of the website by us. Hubspot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of visit and pages viewed) on behalf of KPMG in order to generate reports on the visit and pages viewed by KPMG. 
If, as described in section 3b, you subscribe to KPMG e-mail news and receive studies and other documents, Hubspot allows us to link a user's visits to KPMG websites to his or her personal details (above all, name and e-mail address) on the basis of his or her consent, thus enabling us to record his or her personal details and inform users individually and specifically about preferred topics. 
If Hubspot generally does not wish cookies to be recorded, they can be prevented from being saved at any time by making the appropriate browser settings (see section 3c above). 

Further information about the functionality of Hubspot can be found in the Hubspot Inc. privacy policy at: http://legal.hubspot.com/de/privacy-policy 

4. how long is data stored? 
Unless expressly stated otherwise, KPMG will retain personal information for as long as is necessary to carry out the purposes set out above. This is subject to the statutory retention obligations. KPMG employees are instructed to regularly check the duration of the storage of personal data and, if necessary, to delete it. 

5. what data protection rights do data subjects have? 
Data subjects have the right to information pursuant to Art. 15 EU DS-GVO on the processing of their personal data by KPMG (including the purpose of the processing, any recipients and the expected duration of storage), the right to correction of incorrect data (Art. 16 EU DS-GVO), deletion (Art. 15 EU DS-GVO), and the right to demand the correction of incorrect data (Art. 15 EU DS-GVO). 17 EU DS-GVO), restriction of the processing and transferability of the data submitted (Art. 18, 20 EU DS-GVO) as well as the right to object to their use for marketing purposes and on the basis of processing based on a legitimate interest of KPMG (Art. 21 EU DS-GVO). Once consent has been given, it can in principle be revoked vis-à-vis KPMG at any time with effect for the future. In order to safeguard these rights, anyone concerned can contact KPMG's data protection officer (see section 2). There is also a right of appeal to a data protection supervisory authority. Affected parties can address their complaints to the authority of their place of residence, but in principle also to any other data protection supervisory authority.