Your trust is important to us, as is data protection. For these reasons we would like to inform you in the following about the processing of your personal data by us. Personal data is all data that refers to you personally, e.g. name, address, e-mail address, IP address or user behaviour.
Responsible for the data processing on this website is:
dib Deutsche Insurance Broker GmbH
For more information on how to contact us, please visit the “Imprint“.
Our data processing activities
If you contact us by e-mail, post, telephone or via the contact form on our website, the data you provide (your e-mail address, if applicable your name and telephone number, address, other data that you provide) to us will be processed by us in order to answer your question or to process your request. This data processing is carried out in accordance with Art. 6 para. 1 lit. f) General Data Protection Regulation (“GDPR”) on the basis of our and your legitimate interests in the processing of the contact inquiry. We do this in your interest – you have asked us – and in our interest to ensure the satisfaction of all inquirers. This data processing is oriented to the purpose specified by you through your contact request, whereby the data will not be processed for other purposes.
When using our contact form, your data will be encrypted according to the current state of the art technology. You give us your data voluntarily, whereby only as much data as necessary is requested (mandatory data) to enable us to contact you. All other information is optional. If you use other communication channels for a request (for example, by e-mail), we will respond to your request through these channels.
You can object to data processing on the basis of legitimate interests at any time by informing us of this. In principle, we do not transfer your personal data to third parties. If we determine that we are unable to process your request satisfactorily and need the support of an external company, we will inform you and, if necessary, obtain your consent to the transfer of your personal data.
We will delete your personal data if the storage is no longer necessary, if the purpose of the request has been completed, if you have objected to the processing or if we were able to solve your request satisfactorily, unless there is a duty to store your data. We review a possible deletion at regular intervals every three years.
For the purpose of providing contractual services and customer care we process in accordance with Art. 6 Para. 1 lit b) and f) GDPR:
Contract data (including names, addresses and telephone numbers)
Usage data (e.g. the visited websites of our online presence)
Content data (e.g. entries in the contact form) and
Payment data (including bank details and payment history)
of our customers, business partners and their employees.
The data will be deleted upon expiry of statutory warranty and storage obligations; the necessity of data storage will be reviewed every three years; in the case of statutory storage obligations, the data will be deleted after their expiry.
Hosting and other services
We use contracted service providers in Germany for hosting services for the purpose of operating our online presence. These have been carefully selected and commissioned by us, they are bound by our instructions and are regularly checked. Upon request, we will provide information about our contracted service providers.
In order to ensure the security of the website and its functionality, a US-based service provider is also commissioned to gain insight into our web application firewall plug-in, whereby the IP addresses of website visitors are collected and processed as personal data. These are only stored for as long as necessary and then deleted immediately. The legal framework for any such conduct has been laid out via standard contractual clauses.
The IP address is processed by us or our service providers on our behalf during your visit to our website. This is done on the basis of our legitimate interests in the efficient and secure provision of our online presence, to protect against misuse and other unauthorised use in accordance with Art. 6 Para. 1 lit. f) GDPR in conjunction with Art. 28 GDPR.
All other data used purely for the use of the website will be made anonymous before further processing. Only your IP address can be considered as personal data, so that you can visit this website after anonymization without hesitation.
Information we may process may include:
Your anonymised IP address
Your approximate position (only the country, not the city)
Your operating system and browser type and version
Your referrer (the website you came from)
The server keeps an anonymous logbook of every access made. This log contains:
Your anonymised IP address
Date and time of access
Server/file address of the access
Size of access (download volume)
Access result (200 OK, 404 Not Found, 500 Server Error, etc.)
A passing on of the above-mentioned data to third parties does not take place in principle, unless it is necessary to pursue our claims, to fulfil the intended purpose or there is a legal obligation in accordance with Art. 6 para. 1 lit. c) GDPR.
Analytics and automated decision making
Throughout this website, we use a self-hosted and fully private analytics tool that resides solely on our own servers. Any data collected by this tool is fully anonymized before processing so there’s no actual implication to the privacy of any individual. It’s technically impossible for us to determine the identity of a visitor. We only use this data to build site usage statistics. We don’t use tracking cookies to enhance our visitors privacy significantly. None of this data is ever shared with an outside party. If you wish to opt-out of anonymous tracking, you may do so by enabling the DNT (DoNotTrack)