Sign In
Tax advisor · § 203 StGB · GoBD

Client mail.Document transfer.Under one license.

Encrypted client communication and document handover with reference to § 203 StGB and GoBD. Outlook add-in, EU hosting, audit log. As of 2026.

Request a demoSecureMail in detail
At a glanceAs of 2026

Documents and client mail in one stack.

  • WeTransfer and ZIP for accounting handoversSecureFiles with Outlook integration and audit log
  • Fresh client password per handoverPasswordless return for 12 months
  • Edition-based licensingModular by function and mailbox
SecureMail for ongoing client mail, SecureFiles for document bundles and year-end handovers. Audit log per GDPR Art. 30, configurable retention.
Right for you if:Practice 3–300Seasonal peaksGoBD-friendly
100 %
EU hosting
§ 203
StGB context
GoBD
audit log
30 min.
Setup per mailbox

Compliance anchors

§ 203 StGB confidentiality§ 43 WPO for auditorsGoBD-friendly audit logGDPR Art. 5 and Art. 32

Conbool supports the requirements of professional confidentiality and the GoBD through end-to-end encryption, retention and audit log. Conbool does not replace the DATEV ecosystem or mandated interfaces; it complements the transmission path.

Four building blocks for the tax practice.

SecureMail for client mail, SecureFiles for document bundles, MailGuard for season phishing, Disclaimer for required professional disclosures.

SecureMail

SecureMail

Client mail with S/MIME, OpenPGP or web reader. Outlook add-in for Classic, New and Web.

SecureMail in detail
SecureFiles

SecureFiles

Document transfer without ZIP archives, audit log per access, configurable retention.

SecureFiles in detail
MailGuard

MailGuard

Detect phishing and CEO fraud aimed at assistants during seasonal peaks.

MailGuard in detail
Disclaimer

Disclaimer

Required disclosures in every outbound mail, server-side.

Disclaimer in detail
Typical workflows

Four scenarios from the tax practice.

From document upload to balance-sheet handover.

1

Receive documents encrypted

Client receives a personal upload link, drops documents without an account and sees the overview in their browser.

2

Hand over balance sheet and tax return

SecureMail with attachment or SecureFiles as a bundle for the final handover.

3

Annual statement to the bank

Year-end bundle to the client's bank as a direct line, with delivery receipts in the audit log.

4

Catch seasonal phishing pressure

During tax season, fake authority emails spike. MailGuard filters at the authentication layer.

Architecture

How Conbool fits the tax practice.

A layer in front of Microsoft 365 or Exchange Online. Outlook add-in for staff, self-service for clients via the web reader.

MX switch

Inbound mail runs through Conbool, outbound keeps the M365 path.

Client self-service

Personal upload link for clients without an account or software.

Outlook add-in

Classic, New Outlook and Outlook Web with no end-user setup.

Coexistence

Conbool coexists with common tax and DMS tools through Outlook and standard protocols.

Compliance mapping

What § 203 StGB and GoBD expect technically.

Confidentiality as a professional duty and audit log per GoBD principles. Conbool ships both as defaults.

End-to-end encryption

S/MIME, OpenPGP or web reader, depending on the client side.

Audit log per GDPR Art. 30

Per client bundle: who, when, from where accessed.

GoBD-friendly retention

Retention windows configurable per client, deletion and lock policies.

DPA per GDPR Art. 28

Data processing agreement included, sub-processors in the DPA.

Migration

In production in three steps.

Pilot with one client cluster, then rollout, then sunset of the legacy tool.

Pilot

One client cluster starts, the rest stays unchanged.

Rollout

Outlook add-in for all advisors via the admin console.

Season readiness

In peaks the platform scales without forcing a new edition.

Legacy sunset

WeTransfer, FTP and file hosters are replaced; existing handovers run out naturally.

Frequently asked questions

How does Conbool fit our DATEV workflow?
Conbool sits in front of Outlook and Microsoft 365 and complements the transmission path without touching the DATEV side. Document capture, bookkeeping and tax-authority filings continue unchanged.
Is this GoBD-friendly?
Conbool runs an audit log per GDPR Art. 30 with delivery, read and deletion events. Combined with configurable retention this supports the GoBD requirements for traceability of electronic transmissions. The bookkeeping and process documentation remains the practice's responsibility.
Do clients need to register?
No. Clients receive a personal upload link and can drop documents without an account. For repeat clients passwordless return kicks in for 12 months.
What happens during peak season?
Conbool MailGuard catches seasonal phishing and CEO-fraud waves at the authentication layer. SecureFiles scales without a hard vault cap, so large document bundles flow through.
What does Conbool cost for tax practices?
Modular per function and per mailbox. Concrete pricing on request, depending on headcount and modules used.
Can we book SecureMail and SecureFiles separately?
Yes. Both modules are licensable separately. There is no forced edition lock-in.
How does this map to § 203 StGB?
Conbool supports professional confidentiality under § 203 StGB technically through encryption, EU hosting and audit log. Professional responsibility remains with the practice; correct configuration and staff training are prerequisites.

Verwandte Lösungen

SEPPmail-Alternative

SaaS-SecureMail aus der EU, ohne Appliance-Pflege.

NIS-2 E-Mail-Verschlüsselung

S/MIME, PGP und Domain-Verschlüsselung nach NIS-2 angemessen.

NIS-2 E-Mail-Sicherheit

NIS-2-konforme E-Mail-Sicherheit mit Audit-Trail.

PDF-Verschlüsselung

Sensible PDFs verschlüsselt versenden, ohne Empfänger-Konto.

Secure Message Portal

Empfänger-Web-Reader für Schlüssel-lose Empfänger.

Verwandte Branchen

Conbool ist in benachbarten Branchen mit ähnlichem Compliance-Profil im Einsatz.

Anwaltskanzlei

Anwaltliches Pendant: § 203 StGB und Mandantenkommunikation mit Verschwiegenheits-Pflicht.

Banken & Sparkassen

JAB-Übergaben, Bonitätsunterlagen und KMU-Hausbank-Kommunikation an Firmenkundenbetreuer.

Versicherungen

Berufshaftpflicht, Lohnabwicklung und Schadensbearbeitung in der Steuerkanzlei.

Documents and client mail in one stack.

Demo in 30 minutes. Pilot with one client cluster. Modular by function.

Request a demoSecureMail in detail

Sources and date

Statements about § 203 StGB, § 43 WPO and professional confidentiality are based on the respective German statutes in force. Statements about GoBD are based on the BMF circulars in their respective version. Statements about GDPR are based on Regulation (EU) 2016/679. As of 2026.

DATEV is a trademark of DATEV eG. Microsoft, Microsoft 365 and Outlook are trademarks of Microsoft Corporation. Conbool is a trademark of Conbool GmbH. Statements without warranty.