Privacy Policy

We are pleased that you have chosen to visit our website and are grateful for your interest in our work. Data protection is of utmost importance to us. We respect and protect your private sphere and comply with all applicable legal provisions, in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

Scope of Application

This data protection notice applies to the following internet services and their accompanying domains: www.liquid-legal-summit.com and www.liquid-legal-institute.com, including all subpages and services accessible through these domains.

Collection of Personal Data on Our Websites

The use of our websites is generally possible without the active disclosure of personal data. Personal data (such as name, address, or email address) is only collected when you voluntarily provide it, for example when registering for an event, contacting us, purchasing a publication, or signing up for the newsletter.

When you use our websites for informational purposes only, the web server automatically stores certain technical information in so-called server log files. This includes:

The legal basis for the storage of this data is Article 6 (1)(f) EU GDPR. This data is not attributable to a specific person and is not merged with other data sources. We reserve the right to retrospectively verify data if we identify concrete indications of illegal activity. Server log files are deleted after 14 days in the ordinary course.

Encryption & Contact Forms

All data transmitted through our websites‘ contact forms is encrypted using SSL/TLS. The trustworthiness and integrity of transmitted content is thereby continuously ensured. Our websites are accessible exclusively via HTTPS.

Cookies & Consent Management

Our website uses cookies – small text files placed on your device by your browser. Cookies do not cause harm to your device and do not contain viruses.

We distinguish between:

Embedded content from other websites

Parts on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

What Personal Data We Use and Where We Obtain It

Personal data is any information relating to an identified or identifiable natural person, including but not limited to name, address, or email address. For data processing at Liquid Legal Institute e.V., the following personal data may be collected:

In individual cases and where required by statutory law, we may also process specially sensitive categories of data within the meaning of Article 9 EU GDPR, for example information that allows conclusions to be drawn regarding trade union membership or political affiliation of members or legal representatives.

We obtain personal data directly from you (e.g. through membership applications, event registrations, contact forms, or purchases), through publicly accessible sources (e.g. commercial registers, professional directories, media), or from third parties within the framework of our legitimate business activities.

Purposes of Processing

We process your personal data for the following purposes, which result from our articles of association and our association activities:

Shop & Ticketing: Processing orders for publications and event tickets through our online shop and ticketing system.

Membership: Management of the membership relationship, communication, surveys, member information and event invitations.

Events: Organisation and execution of conferences, workshops, and other events; issuance of name badges, participant lists, and event documentation; photographic documentation.

Surveys: Conducting research and surveys in the field of legal transformation.

Press, Science & Policy: Communicating our publications, political work, and event invitations to press contacts, scientists, and policy stakeholders.

Customer & Service Provider: Processing personal data insofar as necessary for the performance of contracts.

Publications: Sending press releases, newsletters, and event invitations.

Contact Management: Maintaining and using contact information to stay in touch with our network.

Legal Bases for Processing

We process personal data on the following legal bases:

Legitimate interests – Art. 6 (1)(f) EU GDPR: Where processing serves our legitimate interests in operating the association, maintaining our network, and communicating with our community, provided your interests and fundamental rights do not override such interests.

Consent – Art. 6 (1)(a) EU GDPR: Where you have provided us with your consent, e.g. for newsletter subscription or non-essential cookies. Consent may be withdrawn at any time without affecting the lawfulness of prior processing.

Contract performance – Art. 6 (1)(b) EU GDPR: For the fulfilment of membership obligations, event participation contracts, and purchase transactions.

Legal obligation – Art. 6 (1)(c) EU GDPR: To comply with statutory requirements, in particular commercial and tax retention obligations.

Recipients of Your Data

Within the scope of our operations, we engage service providers acting as processors pursuant to Article 28 EU GDPR, in particular in the areas of IT services, newsletter distribution, event management, payment processing, printing, and accounting. These providers are contractually bound to process data only on our instructions and to implement appropriate technical and organisational measures.

Personal data may also be disclosed to public authorities where required by applicable law.

In the context of events, participant lists (containing name, function, and company) may be shared with event speakers or co-organisers for the purpose of event administration and admission control. Selected event photographs and speaker names may be published in our member communications.

Your data will not be sold or otherwise transferred to third parties beyond the scope described in this policy without your explicit consent.

Transfers to third countries: Some of our service providers process data outside the European Economic Area, in particular in the United States. Such transfers are based on the EU–U.S. Data Privacy Framework where applicable, or on Standard Contractual Clauses adopted by the European Commission pursuant to Article 46 (2)(c) EU GDPR. Details are provided in the respective service-specific sections below.

Retention Periods

We retain your personal data for as long as necessary to fulfil the purposes described in this policy, or until you withdraw your consent or object to processing. Thereafter, data is deleted or its processing restricted, unless statutory retention obligations apply.

In particular, commercial and tax retention obligations (§ 257 HGB; § 147 AO) may require retention for up to ten years. Civil limitation periods under §§ 195 et seq. BGB may further require retention of certain data for up to three or thirty years from the date of knowledge of the relevant claim.

Your Rights

As a data subject, you have the following rights under the EU GDPR:

The limitations on the rights of access and erasure set out in §§ 34 and 35 BDSG apply.

Pursuant to your right to object under Article 21 EU GDPR, you may at any time object to the processing of your personal data carried out on the basis of our legitimate interests (Article 6 (1)(f) EU GDPR), on grounds relating to your particular situation. We will then cease processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or where processing is necessary for the establishment, exercise, or defence of legal claims.

You may also lodge a complaint with the competent supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement. The supervisory authority for Bavaria is the Bayerisches Landesamt für Datenschutzaufsicht (BayLDA).

To exercise any of these rights, please contact us at: info@liquid-legal-institute.org or by post to our address below.

Controller & Contact

Controller pursuant to Art. 4 (7) EU GDPRLiquid Legal Institute e.V.
Almenrausch 25
85521 Ottobrunn
Germany

Email: info@liquid-legal-institute.org
Web: www.liquid-legal-institute.com

If you have questions or suggestions regarding data protection, please contact us directly at the address above. Liquid Legal Institute e.V. is not subject to a statutory obligation to appoint an external data protection officer under § 38 BDSG. Data protection enquiries are handled internally and can be directed to the contact above, marked „Data Protection“.

Automated Decision-Making

We categorically do not use automated decision-making, including profiling, within the meaning of Article 22 EU GDPR.

Newsletter / Brevo

For the distribution of our newsletter, we use Brevo (formerly Sendinblue), a service provided by:

Service Provider
Brevo SAS
7 rue de Madrid, 75008 Paris, France
Privacy policy

Brevo acts as a data processor on our behalf on the basis of a data processing agreement pursuant to Article 28 EU GDPR. When you subscribe to the newsletter, we store your email address and, where provided, your name, for the purpose of sending the newsletter and personalising its content.

Legal basis:

You may unsubscribe or withdraw consent at any time by clicking the unsubscribe link in every newsletter, or by contacting us at founder@liquid-legal-institute.org. Withdrawal does not affect the lawfulness of processing prior to withdrawal.

Brevo collects statistical data on delivery, open rates, and link clicks to help us evaluate and improve our communications. This data is not used to evaluate individual users in a decision-making context.

Brevo processes data within the European Union. To the extent any transfer to third countries occurs, it is governed by Standard Contractual Clauses pursuant to Article 46 (2)(c) EU GDPR.

Event Ticketing / Fienta

For the sale and management of event tickets, we use Fienta, an online ticketing platform operated by:

Service Provider
Fienta Ticketing OÜ
Registry code: 12658162
Hobujaama 4, Tallinn 10151, Estonia
Email: hello@fienta.com
Privacy policy  ·  Terms of service

Fienta acts as a data processor on behalf of Liquid Legal Institute e.V. as the data controller, collecting and processing personal data as instructed by us for the purpose of ticket issuance and payment processing. Fienta processes personal data in compliance with the EU GDPR and the laws of the Republic of Estonia. Fienta is headquartered within the European Union and processes data accordingly.

When you purchase a ticket through Fienta, the following personal data is collected and processed:

Legal basis:

Tickets are issued electronically and transmitted to the email address provided at the time of purchase. Participant lists (name, function, company) may be shared with event co-organisers or speakers, or used for admission control at the event, in accordance with Section 10 of this policy.

Changes to this Policy

We will inform you of any changes to our data processing activities or this data protection policy by updating this page. The current version of this policy is always accessible at www.liquid-legal-institute.com/datenschutzerklaerung/.

We recommend checking this page periodically. Material changes will be communicated to members via our newsletter.