The processing of personal data by the data controller is carried out for the purposes listed below and on the basis of the legal bases specified in each case:
(1) Purpose: To carry out communications within the meaning of Section 1 (2) (a) of this Privacy Information:
(a) Legal basis: Art. 6 para. 1 p. 1 lit. c) GDPR "compliance with a legal obligation":
Legal obligations of the responsible person can result among other things from § 147 of the German Fiscal Code ("Abgabenordnung" – AO).
(b) Legal basis: Art. 6 para. 1 p. 1 lit. b) GDPR "performance of contract or steps prior to entering into a contract":
In so far as the data subject approaches the data controller on his/her own initiative in order to conclude a contract with him/her and – where applicable – subsequently, both parties communicate in order to execute a concluded contract.
(c) Legal basis: Art. 6 para. 1 p. 1 lit. f) GDPR "pursuance of legitimate interests after balancing of interests":
In doing so, the responsible party pursues its legitimate interest or the legitimate interest of a third party (e.g. the Consulate of the United Mexican States in Frankfurt am Main or the Embassy of the United Mexican States in Berlin) in carrying out the communication.
In this context, special reference should be made to the right of the data subject to object, see below (§ 6 para. 1 lit. (f) of this Privacy Information) in the list of data subjects' rights.
(2) Purpose: Provision of the Telemedia Service within the Meaning of Section 1(2)(b). (b) of this Privacy Information:
(a) Legal basis: Art. 6 para. 1 p. 1 lit. a) GDPR.
Further information on the cookies used in the context of the provision of the Telemedia Service can be viewed on the website
www.consulmexdus.com in the cookie banner there. Reference is made to this. Apart from that – with the exception of the processing listed under (b) below – no further processing of personal data takes place when using the Telemedia Service provided by the responsible party.
(b) Legal basis: Art. 6 para. 1 p. 1 lit. c) GDPR. Corresponding legal obligations of the responsible party result from, among other things, Art. 32 (1) GDPR, § 19 (4) of the German Data Protection and Privacy in Telecommunications and Telemedia Act (Gesetz über den Datenschutz und den Schutz der Privatsphäre in der Telekommunikation und bei Telemedien (TTDSG)).
The controller processes personal data to ensure the confidentiality, integrity, availability and resilience of the Telemedia Service and the systems used to provide it, including measures to detect, mitigate, prevent and correct malfunctions or errors of the Telemedia Service.