Data privacy
The protection of your personal rights is of great importance for the Protektor Lebensversicherungs-AG, Guarantee Scheme of the German Life Insurers. Therefore, we proceed with all data processing according to the principle of limiting data processing only to the required information and the required degree.
By way of our Further information on data processing at Protektor, we inform you of the purposes for which personal data are collected, processed and used when you visit this website.
Controller
“Controller” in the terms of the General Data Protection Regulation (GDPR) is the Protektor Lebensversicherungs-AG, Wilhelmstraße 43 G, 10117 Berlin (“Protektor”).
Data collection when using our website
When you access our website, the browser on your device automatically sends information to the server of our website / application and temporarily stores it in a log file. We have no influence over this. The following information is also recorded without your intervention and stored until it is automatically deleted:
- the IP address of the requesting Internet-enabled device;
- the date and time of access;
- the name and URL of the retrieved file;
- the website from which access was made (referrer URL);
- the browser you are using and, if necessary, the operating system and user interface of your Internet-enabled computer as well as the name of your access provider;
- an individual process ID, status code (information about the data retrieval process, e.g. whether it was successful), the response time of the server and the amount of data transferred in bytes.
The legal basis for processing the IP address is Article 6(1)f GDPR. Our legitimate interest follows from the purposes of data collection listed below. We are unable to draw any direct conclusions about your identity from the data collected.
The IP address of your terminal device and the other data listed above will be used by us for the following purposes:
- to ensure a smooth connection setup;
- to ensure comfortable use of our website;
- to evaluate system safety and stability.
The server log files can also be checked subsequently, if there are concrete indications of illegal use of our website.
The data are stored for a period of 6 months and then automatically deleted. Furthermore, we use cookies and tracking tools for our website. The exact procedures involved and how your data are used for this purpose are explained in more detail below.
Google Analytics, cookies
Your visit to our website is stored for statistical purposes in order to optimise and make our website even more attractive. Only anonymised data (e.g. anonymised IP addresses, date and time of page visit, length of stay or the page from which you accessed our website) are stored and used using technologies from Google Analytics, a web analysis service of Google Inc, (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). They do not permit any identification of visitors to this website. The IP addresses are anonymized before they are stored. This means that your IP address will be reduced by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there. Google has submitted to the EU-US Privacy Shield. According to Google, the IP address transmitted by your browser will not be merged with other Google data. The legal basis for the use of Google Analytics is Article 6(1)f GDPR and your consent, which you have given by using our website. The data sent to Google Inc. for this purpose are automatically deleted once a month after 26 months, according to Google.
So-called “cookies” are also used. Cookies are small text files that are stored locally in the cache of the visitor’s Internet browser. Cookies enable your Internet browser to be recognised. The information generated by the cookie about your use of the website is usually transferred to a Google server in the United States and stored there. Google will use this information on our behalf to evaluate your use of our website, to compile reports on your activities within this website and to provide us with further services connected with the use of this website and the use of the Internet. Pseudonymous user profiles can be created from the processed data.
You have the option of preventing cookies from being saved on your computer by setting your browser accordingly.
Furthermore, you can prevent the collection of data generated by the cookie relating to your use of our website and the processing of these data by Google on all websites by downloading and installing a browser add-on provided by Google (available for Microsoft Internet Explorer 11, Google Chrome, Mozilla Firefox, Apple Safari and Opera).
You can also prevent collection by Google Analytics by clicking here: Disable Google Analytics. This sets an opt-out cookie that prevents Google from collecting your data on this website in the future. Please note that you must click the link again if you have deleted the cookie in your browser or if you want to prevent data collection by Google Analytics on this website on another device. The opt-out cookie does not prevent Google Analytics from collecting data on other websites.
Further information on Google Analytics can be found in the Google Privacy Overview.
Contact form
When you contact us via a contact form on our website, the data you provide (e-mail address and name) will be processed by us in accordance with Article 6(1)f GDPR in order to answer your questions. We will delete the data arising in this context after the storage is no longer necessary, or restrict the processing if statutory retention obligations exist.
Security
We use technical and organisational security measures to warrant that your personal data are protected against loss, falsifications and unauthorised access by third parties at all times. All safety measures are continuously adapted to technical progress. If you are requested to enter personal data within the offer, data will be transmitted over the Internet encrypted using SSL and thus protected against unauthorized access.
Your rights
If we process your data to protect legitimate interests, you may object to such processing for reasons relating to your particular situation. We will then no longer process your personal data unless we can document compelling reasons worthy of protection for the processing which outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.
You can request information about the data stored by us at any time. Please contact the data protection officer at Protektor by e-mail (datenschutz@protektor-ag.de) or by post to the controller’s above address.
You may also request that your data be corrected or deleted under certain circumstances. As soon as you assert a claim for deletion or if the data are no longer necessary to fulfil the purpose for which they were stored or if the storage thereof is inadmissible for other legal reasons, we will delete the personal data you have stored. You may also have the right to restrict the processing of your data and to have the data you provide disclosed in a structured, common and machine-readable format.
You have the option to contact the aforementioned data protection officer or a data protection supervisory authority with a complaint. The data protection supervisory authority responsible for us is the Berlin Commissioner for Data Protection and Freedom of Information, Friedrichstr. 219, 10969 Berlin.
Information on data processing at Protektor Lebensversicherungs-AG
We would like to inform you below about the collection and processing of your data by Protektor Lebensversicherungs-AG (Guarantee Scheme of the German Life Insurers) and your rights in this regard.
Controller
The “controller” within the meaning of the General Data Protection Regulation (GDPR) is the Protektor Lebensversicherungs-AG, Wilhelmstraße 43 G, 10117 Berlin (“Protektor”).
Data protection officer
If you have any questions about data protection at Protektor, please do not hesitate to contact our data protection officer:
- by e-mail: datenschutz@protektor-ag.de
- by post: at the above address
Purposes of data processing; legal bases
We process your personal data in compliance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and all other relevant laws. We process your data for the following purposes:
- Office communication/word processing/office:
Execution of internal and external correspondence including documentation, office communication and support of evaluations. Creation, management, archiving of information, documents and business processes as well as storage of address data of contact persons in shareholder companies, member companies of the German Life Insurance Guarantee Fund (“Guarantee Fund”), member companies of the International Forum of Insurance Guarantee Schemes („IFIGS“) and other communication partners.
- Processing of data about shareholder companies, member companies of the Guarantee Fund, member companies of IFIGS and members of legal or statutory bodies:
Processing of personal data to fulfil legal or statutory tasks of Protektor (e.g. invitations to annual meetings, information to shareholder companies, member companies of the Guarantee Fund and member companies of IFIGS).
- Processing of data from suppliers/service providers (e.g. providers, job processors):
Administration of personal data from regular service providers such as suppliers, experts, etc. for the purpose of tendering bids, purchasing, contract processing and support.
- Statistical work of Protektor:
Calculation of cross-company statistics or risk classifications in anonymous or – if necessary for the statistical purpose – pseudonymised form.
The legal basis for the processing of personal data for pre-contractual and contractual purposes is Article 6(1)b GDPR. This applies in each case to the processing that takes place within the scope of a contract between you or your company or your employer and Protektor. We also process your data to protect the legitimate interests of ourselves or third parties (Article 6(1)f GDPR).
This may be necessary in particular:
- to ensure IT security and operation;
- to provide and send information;
- to carry out communication procedures and exchange information;
- to answer questions (e.g. from politicians, businesspeople or consumers);
- to organise and execute events;
- to carry out statistical work in compliance with Article 89 GDPR.
In addition, we process your personal data to fulfil legal obligations such as commercial and tax data retention obligations. In these cases, legal bases for processing are the respective provisions of law in conjunction with Article 6(1)c GDPR.
Should we ever obtain your consent to process your data, you can withdrawal this consent at any time. The withdrawal will impinge the permissibility to process your personal data after you have declared your withdrawal to us.
Recipients or categories of recipients of personal data
Within Protektor, only those persons and units (e.g. departments) will receive your personal data that need the data to fulfil their tasks with regard to the purposes mentioned before. In the course of our activities, we will also have to transfer some data to external third parties and make use of external service providers. In particular, we may transfer your personal data to the following recipients and categories of recipients:
- GDV Dienstleistungs-GmbH and other IT and hosting service providers for tasks of the individual departments of Protektor;
- telecommunication service providers;
- service providers to support the organisation and execution of events;
- service providers to send information;
- IFIGS member companies (e.g. to communicate with contact persons);
- state agencies.
Data transfer to a third country
If we transfer personal data to service providers outside the European Economic Area (EEA), the transfer will only take place if the third country has been confirmed by the EU Commission to have an appropriate level of data protection or if there are other appropriate data protection guarantees (e.g. binding internal company data protection rules or EU standard contractual clauses). You can request more information about the level of data protection from our third country service providers using the above contact information.
Duration of data storage
We delete your personal data as soon as they are no longer required for the abovementioned purposes. It may occur that personal data will be stored for the period during which claims can be asserted against Protektor (statutory limitation period of three or up to thirty years). In addition, we will store your personal data, if we are legally obliged to do so. Corresponding documentation and storage obligations arise, inter alia, from the German Commercial Code and Tax Code. The storage periods in accordance therewith are up to ten years. If necessary, we will be pleased to provide you further information on the duration of data storage with respect to any specific purpose.