Data privacy statement

Your trust is very important to us and we take the prot­ce­ti­on of your per­so­nal data very serious­ly. Per­so­nal data is only collec­ted and used when you agree to it and if it is nec­cessa­ry to do our job or com­ply with the law.

This data pri­va­cy state­ment inclu­des the details of data collec­tion and usa­ge as well as fur­ther infor­ma­ti­on regar­ding your data rights.

1. Name and address

Respon­si­ble with regard to the Gene­ral Data Pro­tec­tion Regu­la­ti­on, other data pro­tec­tion regu­la­ti­on in EU con­tries as well as other data pro­tec­tion rela­ted regu­la­ti­on is:

Ver­si­che­rungs­bü­ro I. Weiss GmbH
Hau­bach­str. 30
10585 Ber­lin

Tel.: +49 30 — 40 36 31 95
E‑Mail: info@versicherungsbuero-weiss.com

2. General information regarding the usage of personal data

Per­so­nal data is any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (her­einaf­ter the “data sub­ject”). A natu­ral per­son is con­si­de­red as iden­ti­fia­ble, which can be iden­ti­fied direc­t­ly or indi­rec­t­ly, in par­ti­cu­lar by asso­cia­ti­on with an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or one or more spe­cial fea­tures, the expres­si­on of the phy­si­cal , phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or soci­al iden­ti­ty of this natu­ral per­son.

The Ver­si­che­rungs­bü­ro Weiss GmbH pro­ces­ses per­so­nal data in princip­le only if the user gives his con­sent or the data pro­ces­sing is per­mit­ted by law. The legal basis is Arti­cle 6 (1) of the EU Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR). Accord­ing to this pro­vi­si­on, pro­ces­sing of per­so­nal data is only per­mit­ted if the data sub­ject agrees (Arti­cle 6 (1) (a) GDPR) or if pro­ces­sing is requi­red for one of the fol­lo­wing pur­po­ses:

To ful­fill a con­tract with the data sub­ject or to car­ry out pre-con­trac­tu­al mea­su­res at the request of the data sub­ject (Art. 6 (1) (b) GDPR).

To ful­fill a legal obli­ga­ti­on of our com­pa­ny (Art. 6 (1) © GDPR).

For the pro­tec­tion of vital inte­rests of the data sub­ject or of ano­t­her natu­ral per­son (Arti­cle 6 (1) (d) GDPR).

To per­form a task that is in the public inte­rest or that has been ent­rusted to our com­pa­ny by the public admi­nis­tra­ti­on (Arti­cle 6 (1) (e) GDPR).

To safe­guard the legi­ti­ma­te inte­rests of our com­pa­ny or a third par­ty, unless the inte­rests, fun­da­men­tal rights and fun­da­men­tal free­doms of the data sub­ject to pro­tect per­so­nal data pre­do­mi­na­te (Arti­cle 6 (1) (f) GDPR).

3. Duration of data storage and data deletion

The per­so­nal data of the data sub­ject will be dele­ted or blo­cked as soon as the pur­po­se of the sto­rage is dele­ted. In addi­ti­on, sto­rage may be pro­vi­ded if so pro­vi­ded by law. Blo­cking or dele­ti­on of the data also takes place when a sto­rage peri­od pre­scri­bed by the stan­dards men­tio­ned expi­res, unless the­re is a need for fur­ther sto­rage of the data for con­clu­si­on of a con­tract or ful­fill­ment of the con­tract. Pre­scri­bed sto­rage peri­ods in this sen­se are e.g. tax or com­mer­ci­al reten­ti­on peri­ods.

4. Collection of access time (logfiles)

The web­site of Ver­si­che­rungs­bü­ro Weiss GmbH collec­ts auto­ma­ti­cal­ly with each call gene­ral data and infor­ma­ti­on from the com­pu­ter sys­tem of the cal­ling com­pu­ter, which are stored in the log files of the ser­ver. The fol­lo­wing data and infor­ma­ti­on are collec­ted:

Brow­ser type inclu­ding ver­si­on used
Ope­ra­ting sys­tem of the cal­ling com­pu­ter
Date and time of the call
IP address of the user
Inter­net ser­vice pro­vi­der of the user
Web­site from which our web­site is acces­sed
Web­sites and sub-web pages that are acces­sed from our web­site
Other simi­lar data and infor­ma­ti­on used to guard against thre­ats to our sys­tem

The data is stored anony­mously in the log files of our sys­tem. The­re is no link with other per­so­nal data of the user, the insuran­ce office Weiss GmbH does not draw any con­clu­si­ons about the per­son con­cer­ned.

The legal basis for data pro­ces­sing is Art. 6 (1) lit. f GDPR. The sto­rage is necessa­ry to ensu­re the func­tio­n­a­li­ty of our web­site and the cor­rect pre­sen­ta­ti­on of the con­tents. Fur­ther­mo­re, the data of our sta­tis­tics and the con­stant opti­mi­za­ti­on of our con­tent. Final­ly, it is stored in order to pro­vi­de law enforce­ment aut­ho­ri­ties with the infor­ma­ti­on necessa­ry for pro­se­cu­ti­on in the event of a cyber­at­tack.

The­re is no dis­clo­sure of data to third par­ties, unless the­re is a sta­tuto­ry dis­clo­sure obli­ga­ti­on.

Sin­ce the collec­tion and sto­rage of the data in the log files for a trou­ble-free ope­ra­ti­on of the web­site is abso­lute­ly necessa­ry, the­re is no pos­si­bi­li­ty for the user to object.

The data will be dele­ted as soon as it is no lon­ger necessa­ry for the pur­po­se of its collec­tion. As far as the sur­vey for the func­tion-free pro­vi­si­on of the web­site was made, this is the case with ter­mi­na­ti­on of the Inter­net ses­si­on.

5. Cookies

We use coo­kies on our web­site. Coo­kies are text files that are stored by our ser­ver on your com­pu­ter to store cer­tain data. Coo­kies usual­ly con­tain a cha­rac­te­ris­tic string, which allows a clear assign­ment of the Inter­net brow­ser when the user calls the web­site again. This allows the cal­ling brow­ser to be reco­gni­zed and iden­ti­fied.

Coo­kies help us to make it easier for you to use the web­site. By reco­gni­zing the brow­ser and sto­ring pre­vious­ly ent­e­red data, the offers and con­tents of our web­site can be opti­mi­zed indi­vi­dual­ly, so that you do not have to re-enter data ent­e­red by you (eg access data, search terms) each time you visit the web­site. The legal basis for this is Art. 6 (1) lit. f GDPR.

In addi­ti­on, we use coo­kies on our web­site that allow an ana­ly­sis of the sur­fing beha­vi­or of the users. Howe­ver, the data collec­ted in this way will be pseud­ony­mi­sed, i. the per­so­nal data are repla­ced by other iden­ti­fiers (pseud­onyms) so that iden­ti­fi­ca­ti­on of the data sub­ject is no lon­ger pos­si­ble wit­hout the need for addi­tio­nal infor­ma­ti­on. Sin­ce your con­sent is obtai­ned when the web­site is acces­sed, the legal basis for the pro­ces­sing of per­so­nal data by means of ana­ly­sis coo­kies is Art. 6 (1) lit. a GDPR.

Sin­ce coo­kies are stored on the user’s com­pu­ter, you as the user also have full con­trol over the use of coo­kies. By chan­ging the set­tings in your inter­net brow­ser, you can dis­able or restrict the trans­mis­si­on of coo­kies. Alrea­dy saved coo­kies can be dele­ted by you at any time. If coo­kies are dis­ab­led for our web­site, howe­ver, it may not be pos­si­ble to use all the func­tions of the web­site to the full.

6. Contact form and e‑mail contact

The web­site of Ver­si­che­rungs­bü­ro Weiss GmbH has a con­tact form rea­dy, which can be used for the elec­tro­nic con­tact to our com­pa­ny. The data ent­e­red by the user in the input mask are trans­mit­ted to us and stored. In addi­ti­on, the IP address of the user as well as the date and time of the trans­mis­si­on are addi­tio­nal­ly stored. For the pro­ces­sing of the data, the con­sent of the user is obtai­ned as part of the sen­ding pro­cess. The legal basis for pro­ces­sing is the­re­fo­re Art. 6 (1) lit. a GDPR. As far as the sto­rage of the IP address is con­cer­ned, the legal basis is also Art. 6 (1) lit. f GDPR.

Alter­na­tively it is pos­si­ble to con­tact us via the e‑mail address pro­vi­ded on our web­site. In this case, in addi­ti­on to the e‑mail address, the per­so­nal data pro­vi­ded by the user in the e‑mail will be trans­mit­ted. The legal basis in this respect is Art. 6 (1) lit. f GDPR.

The pro­ces­sing of the data trans­mit­ted via the con­tact form or by e‑mail is sole­ly for car­ry­ing out the desi­red con­tact. Other data is stored in order to pre­vent or detect misu­se of the web­site and to ensu­re the secu­ri­ty of our sys­tem. The­re is no dis­clo­sure of data to third par­ties, unless the­re is a sta­tuto­ry dis­clo­sure obli­ga­ti­on.

The data will be dele­ted as soon as it is no lon­ger necessa­ry for the pur­po­se of its collec­tion. As far as the data trans­mit­ted by the user in the con­tact form or in the e‑mail is con­cer­ned, this is the case if the rele­vant com­mu­ni­ca­ti­on is ter­mi­na­ted, unless the com­mu­ni­ca­ti­on con­tent is still of legal signi­fi­can­ce.

The data sub­ject at any time has the opti­on to revo­ke con­sent to data pro­ces­sing or to object to the use of the data. In this case, the inten­ded con­tact with the user is no lon­ger pos­si­ble or an alrea­dy star­ted com­mu­ni­ca­ti­on can not be con­ti­nued.

7. Newsletter

On the web­site of Ver­si­che­rungs­bü­ro Weiss GmbH you have the oppor­tu­ni­ty to sub­scri­be to the news­let­ter of our com­pa­ny. What per­so­nal data is trans­mit­ted to us when orde­ring the news­let­ter and stored by us, results from the input mask used for this pur­po­se. In addi­ti­on, the IP address of the user as well as the date and time of the trans­mis­si­on are also stored. For the pro­ces­sing of the data the con­sent of the user is obtai­ned during the regis­tra­ti­on pro­cess. The legal basis for pro­ces­sing is the­re­fo­re Art. 6 (1) lit. a GDPR. As far as the sto­rage of the IP address is con­cer­ned, the legal basis is also Art. 6 (1) lit. f GDPR. The­re is no dis­clo­sure of data to third par­ties, unless the­re is a sta­tuto­ry dis­clo­sure obli­ga­ti­on.

The pro­ces­sing of the data sub­mit­ted by the user by ent­e­ring the regis­tra­ti­on form is requi­red to send the news­let­ter. Any fur­ther use will not take place. The sto­rage of the IP address is necessa­ry to pre­vent or detect misu­se (in par­ti­cu­lar the e‑mail address) and to ensu­re the secu­ri­ty of our sys­tem.

Sub­scrip­ti­on to the news­let­ter may be can­ce­led at any time by the data sub­ject and the con­sent to the ship­ment may be revo­ked. For this pur­po­se, a cor­re­spon­ding link is kept in each sent news­let­ter e‑mail. In this case — as well as in any other pos­si­ble oppo­si­ti­on to the use of data — the per­so­nal data that have been stored by us in the news­let­ter sub­scrip­ti­on, dele­ted. The data is the­re­fo­re stored as long as the sub­scrip­ti­on to the news­let­ter is active.

8. Your rights as am affected person

If per­so­nal data is pro­ces­sed by you, you are the per­son affec­ted in the sen­se of GDPR and you have the fol­lo­wing rights towards us as respon­si­ble

a) Right to con­fir­ma­ti­on and infor­ma­ti­on

You can request con­fir­ma­ti­on from us at any time as to whe­ther per­so­nal data con­cer­ning you is pro­ces­sed by us. If this is the case, you have a request for infor­ma­ti­on to be infor­med by us about the fol­lo­wing cir­cum­s­tan­ces:

the cate­go­ries of per­so­nal data that are pro­ces­sed;

the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­so­nal data rela­ting to you have been dis­c­lo­sed or are still being dis­c­lo­sed;

the plan­ned dura­ti­on of the sto­rage of your per­so­nal data or, if spe­ci­fic infor­ma­ti­on is not avail­ab­le, cri­te­ria for deter­mi­ning the dura­ti­on of sto­rage;

the exis­tence of a right to rec­tifi­ca­ti­on or era­su­re of per­so­nal data con­cer­ning you, a right to restric­tion of pro­ces­sing by the con­trol­ler or a right to object to such pro­ces­sing;

the exis­tence of a right of appeal to a super­vi­so­ry aut­ho­ri­ty;

all avail­ab­le infor­ma­ti­on on the source of the data if the per­so­nal data are not collec­ted from the data sub­ject;

the exis­tence of auto­ma­ted decisi­on-making inclu­ding pro­filing under Arti­cle 22 (1) and (4) GDPR and, at least in the­se cases, mea­ning­ful infor­ma­ti­on about the logic invol­ved, and the scope and inten­ded impact of such pro­ces­sing on the data sub­ject.

In addi­ti­on, you have a right to infor­ma­ti­on about whe­ther per­so­nal data is trans­fer­red to a non-EU sta­te (so-cal­led third coun­try) or to an inter­na­tio­nal orga­ni­za­ti­on. In this con­nec­tion, you can request the appro­pria­te gua­ran­tees in accordance with. Art. 46 GDPR in con­nec­tion with the trans­fer.

b) Right to rec­tifi­ca­ti­on

You have the right to demand imme­dia­te cor­rec­tion of any inac­cu­ra­te per­so­nal data con­cer­ning you. You also have the right to request that we com­ple­te incom­ple­te per­so­nal data, inclu­ding by means of a sup­ple­men­ta­ry state­ment, taking into account the pur­po­ses of pro­ces­sing.

c) Right to can­cel­la­ti­on (right to be for­got­ten)

You may request that the per­so­nal data con­cer­ning you be dele­ted imme­dia­te­ly if any of the fol­lo­wing occur:

Your per­so­nal data are no lon­ger necessa­ry for the pur­po­ses for which they were collec­ted or other­wi­se pro­ces­sed.

You revo­ke your con­sent to the pro­ces­sing in accordance with Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. GDPR and the­re is no other legal basis for pro­ces­sing.

You request objec­tion in accordance with. Art. 21 para. 1 GDPR to the pro­ces­sing and the­re are no pri­or jus­ti­fia­ble rea­sons for the pro­ces­sing, or you lay in accordance with Art. 21 para. 2 GDPR Oppo­si­ti­on to pro­ces­sing.

Your per­so­nal data has been pro­ces­sed unlaw­ful­ly.

The dele­ti­on of per­so­nal data con­cer­ning you is requi­red to ful­fill a legal obli­ga­ti­on under Uni­on law or the law of the Mem­ber Sta­tes to which the per­son respon­si­ble is sub­ject.

Your per­so­nal data rela­ting to the ser­vices offe­red have been pro­vi­ded to the
Infor­ma­ti­on Socie­ty pur­suant to Art. 8 para. 1 GDPR.

If the per­so­nal data con­cer­ned has been made public by Ver­si­che­rungs­bü­ro Weiss GmbH and if we are obli­ged to dele­te the per­so­nal data accord­ing to the above princi­ples, it is also our duty to inform other data con­trol­lers that you as the data sub­ject dele­te all links have requested such per­so­nal data or copies or repli­ca­ti­ons of such per­so­nal data.

In this regard, taking into account the avail­ab­le tech­no­lo­gy and the imple­men­ta­ti­on costs, we take appro­pria­te mea­su­res, inclu­ding tech­ni­cal, to com­ply with the­se obli­ga­ti­ons, at least inso­far as pro­ces­sing is no lon­ger requi­red, ie legal requi­re­ments pre­scri­be this or pre­clu­de legi­ti­ma­te inte­rests of the dele­ti­on.

d) Right to restric­tion of pro­ces­sing

You may be limi­t­ing the pro­ces­sing of you under the fol­lo­wing con­di­ti­ons per­so­nal data con­cer­ned:

The accu­ra­cy of your per­so­nal infor­ma­ti­on is con­tested, for a peri­od of time that enab­les the per­son respon­si­ble to veri­fy the accu­ra­cy of your per­so­nal infor­ma­ti­on.

The pro­ces­sing is unlaw­ful and you requi­re ins­tead of dele­ti­on the restric­tion of Use of per­so­nal data.

We no lon­ger need your per­so­nal infor­ma­ti­on for pro­ces­sing pur­po­ses, but we do need your infor­ma­ti­on to assert, exer­ci­se or defend your rights.

You have objec­tion to the pro­ces­sing in accordance with Art. 21 para. 1 GDPR and it stands

Still not sure if the legi­ti­ma­te rea­sons of the Ver­si­che­rungs­bü­ro Weiss against your rea­sons
pre­do­mi­na­te.

If the pro­ces­sing of per­so­nal data con­cer­ning you has been restric­ted, this data may only be used with your con­sent or for the pur­po­se of asser­ting, exer­cis­ing or defen­ding legal claims or pro­tec­ting the rights of ano­t­her natu­ral or legal per­son or for rea­sons of important public inte­rest Uni­on or a Mem­ber Sta­te. In that case, you will also be noti­fied by us befo­re the restric­tion is lifted.

e) Right to infor­ma­ti­on

Have you asser­ted the right to rec­tifi­ca­ti­on, era­su­re or restric­tion of pro­ces­sing, We are obli­ged to dis­c­lo­se to all reci­pi­ents the per­so­nal data con­cer­ning you were to com­mu­ni­ca­te this rec­tifi­ca­ti­on or dele­ti­on of the data or restric­tion of pro­ces­sing Unless this pro­ves impos­si­ble or invol­ves dis­pro­por­tio­na­te effort.

In that regard, you may requi­re us to be infor­med about the­se reci­pi­ents.

f) Data trans­fera­bi­li­ty (“data por­ta­bi­li­ty”)

You have the right to recei­ve per­so­nal­ly iden­ti­fia­ble infor­ma­ti­on you pro­vi­de us in a struc­tu­red, com­mon and machi­ne-read­a­ble for­mat. Fur­ther­mo­re, you have the right to trans­mit this data to ano­t­her per­son in char­ge wit­hout hin­dran­ce by the per­son respon­si­ble for pro­vi­ding the per­so­nal data, pro­vi­ded that the pro­ces­sing is based on the con­sent pur­suant to Art. 6 para. 1 let­ter a of the GDPR or Art. 9 para. 2 (a) GDPR or on a con­tract pur­suant to Arti­cle 6 (1) (b) GDPR and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, unless the pro­ces­sing is necessa­ry for the per­for­mance of a public-inte­rest or public-aut­ho­ri­ty task which has been assi­gned to the per­son respon­si­ble.

Fur­ther­mo­re, in exer­cis­ing your right to data por­ta­bi­li­ty under Arti­cle 20 (1) of the GDPR, you may request that your per­so­nal data be trans­mit­ted direc­t­ly from one per­son to ano­t­her, inso­far as this is tech­ni­cal­ly fea­si­ble and pro­vi­ded that none of the rights and free­doms of other per­sons are ther­e­by infrin­ged be affec­ted.

g) Right to object

You have the right, for rea­sons ari­sing from your par­ti­cu­lar situa­ti­on, to object at any time to the pro­ces­sing of per­so­nal data con­cer­ning you pur­suant to Arti­cle 6 (1) (e) or (f) of the GDPR. This also app­lies to pro­filing based on the­se pro­vi­si­ons.

The Ver­si­che­rungs­bü­ro Weiss GmbH does not pro­cess the per­so­nal data in case of oppo­si­ti­on
more, unless we can demons­tra­te com­pel­ling legi­ti­ma­te grounds for pro­ces­sing that out­weigh the inte­rests, rights and free­doms of the data sub­ject, or the pro­ces­sing is for the pur­po­se of enfor­cing, pur­suing or defen­ding legal claims.

If the per­so­nal data rela­ting to you are pro­ces­sed for direct mar­ke­ting pur­po­ses, you have the right to object at any time to the pro­ces­sing of your per­so­nal data for the pur­po­se of such adver­ti­sing; this also app­lies to pro­filing inso­far as it is asso­cia­ted with such direct mail.

If you object to pro­ces­sing for direct mar­ke­ting pur­po­ses, your per­so­nal data will no lon­ger be pro­ces­sed for the­se pur­po­ses.

Regard­less of Direc­tive 2002/58 / EC, you have the opti­on, in the con­text of the use of infor­ma­ti­on socie­ty ser­vices, of exer­cis­ing your right to object through auto­ma­ted pro­ce­du­res that use tech­ni­cal spe­ci­fi­ca­ti­ons.

h) Right to revo­ke a data pro­tec­tion con­sent

If you have gran­ted a data pro­tec­tion con­sent, you have the right to this con­sent revo­ke at any time with effect for the future.

i) Auto­ma­ted decisi­ons in indi­vi­du­al cases inclu­ding pro­filing

You have the right not to be sub­ject to a decisi­on based sole­ly on auto­ma­ted pro­ces­sing — inclu­ding pro­filing — that has a legal effect or simi­lar­ly appre­cia­b­ly affec­ts it, unless the decisi­on is taken to con­clu­de or exe­cu­te a con­tract bet­ween you and the Ver­si­che­rungs­bü­ro Weiss GmbH is requi­red

or

is per­mit­ted under Uni­on or Mem­ber Sta­te legis­la­ti­on to which the con­trol­ler is sub­ject, and whe­re such legis­la­ti­on con­tains appro­pria­te mea­su­res to safe­guard the rights and free­doms and legi­ti­ma­te inte­rests of the data sub­ject

or

with the express con­sent of the data sub­ject.

Howe­ver, the­se decisi­ons must not be based on spe­cial cate­go­ries of per­so­nal data under Art. 9 (1) GDPR, unless Art. 9 (2) lit. a or g GDPR app­lies and rea­son­ab­le mea­su­res have been taken to pro­tect the rights and free­doms as well as your legi­ti­ma­te inte­rests.

If the decisi­on to con­clu­de or exe­cu­te a con­tract bet­ween the data sub­ject and the con­trol­ler is requi­red or is made with the express con­sent of the data sub­ject, Ver­si­che­rungs­bü­ro Weiss will take appro­pria­te mea­su­res to safe­guard the rights, free­doms and legi­ti­ma­te inte­rests of the data sub­ject which inclu­des at least the right to obtain the inter­ven­ti­on of a per­son on the part of the per­son respon­si­ble, to express one’s own posi­ti­on and to con­test the decisi­on.

j) Right to com­p­lain to the super­vi­so­ry aut­ho­ri­ty

Not­wi­th­stan­ding the rights we have in rela­ti­on to you, you also have the right to lodge a com­p­laint with a regu­lato­ry aut­ho­ri­ty, in par­ti­cu­lar in the Mem­ber Sta­te of your resi­dence, place of work or place of alle­ged infrin­ge­ment, if you belie­ve that the pro­ces­sing of per­so­nal data con­cer­ning you vio­la­tes the GDPR.

The super­vi­so­ry aut­ho­ri­ty to which the com­p­laint has been sub­mit­ted will inform you about the sta­tus and results of the com­p­laint, inclu­ding the pos­si­bi­li­ty of a judi­ci­al reme­dy pur­suant to Art. 78 GDPR.