Privacy

Your information is safe with us

Real Garant Versicherung AG respects your right to informational self-determination and privacy. We adhere to this principle when developing advertising offers as well as when processing customer data.
We respect your right to privacy, in particular your right to information regarding data stored about you. If you have questions regarding privacy, please contact our company’s data protection officer.

Technical data
For technical and organisational reasons, our web servers store data related to the use of our web pages, including the name of the internet service provider, the name of the internet page from which you accessed our page, which of our web pages you visit and the duration of your visit. We perform statistical analysis of this data in order to optimise our web pages.

Cookies
Cookies are alphanumeric identifiers that are transmitted to your computer’s hard disk from the web browser. Real Garant Versicherung AG does not use cookies.
However, the system generates cookies independently, which are stored on your computer’s hard disk by the web browser. These session (transient) cookies are used to manage an internet session. That way, for example, you do not have to enter personal data each time you fill out a form. In connection to the use of our web pages, we use persistent (permanent) cookies to store data about which pages you visit within our website (path tracking). We perform statistical analysis of this data in order to optimise our web pages. Your data is used exclusively for statistical purposes and is not personalised.

Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses cookies to analyse how users use our site and our online services. The information generated by the cookie about your use of the website is typically transmitted to and stored by Google on servers in the United States.
On this website, IP anonymisation has been activated so that the IP address of Google users within Member States of the European Union or in other states party to the Agreement on the European Economic Area is truncated in advance.
Only in exceptional cases will the full IP address be transferred to a server from Google in the USA and truncated there. Google uses this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage.
Google will not associate the IP address collected from your browser by Google Analytics with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use the full functionality of this website.
Users can also prevent Google from tracking data generated by the cookie and related to its use (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available through the following link. The current link is: http://tools.google.com/dlpage/gaoptout?hl=de

 

Personal data
We store your personal data only if you voluntarily provide it within the context of one of our applications (e.g. address change, offer enquiry, damage report). Your data will be processed exclusively for the purpose for which you provided it.
Your data may be passed on to reinsurers for the purpose of risk assessment and handling reinsurance as well as assessing risk and claims to other insurers and/or service providers.
We use modern encryption methods for the transmission of your data. We currently use SSL encryption (Secure Socket Layer), which is recommended by the Federal Office for Information Security. This is the best technical standard available today. That way, your data cannot be read or changed third parties during transmission to us.

What a secure connection looks like:
You can determine whether a website securely transmits personal data by the internet address (URL), which should begin with “https://”. You can tell whether your data is safe during transmission in your browser settings: Internet Explorer and Mozilla Firefox indicate a safe connection with a lock in the right corner of the address bar. In Netscape Navigator, the open lock at the bottom left of the browser’s address bar turns into a closed lock.

Confidentiality
We ensure the protection of your personal data through a variety of organisational and technical measures. Our employees are obliged to protect your data.

 

Information on use of your personal data

This document provides information on the processing of your personal data by Real Garant Versicherung AG with regard to Germany and your rights under data protection law.

Data processing organisation
Real Garant Versicherung AG/
Real Garant GmbH Garantiesysteme
Strohgäustraße 5
73765 Neuhausen
Telefon: 07158/ 953 0
Fax: 07158/ 953 18
E-Mail: info@realgarant.com

Our data protection officer can be contacted at the following address:

Zurich Gruppe Deutschland
Konzerndatenschutz
53096 Bonn
E-Mail: datenschutz@zurich.com.

Purpose and legal basis of data processing
We process your personal data in compliance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act [Bundesdatenschutzgesetz – BDSG], the relevant terms under data protection law of the German Insurance Contracts Act [Versicherungsvertragsgesetz – VVG] and all further relevant laws.

When you make an application for insurance coverage, we require the information provided by you in such application for the purpose of concluding the contract and in order to assess the risk to be assumed by us. If an insurance contract is concluded, we shall process such data for the purpose of executing the contractual relationship, e.g. in order to issue your policy or for invoicing purposes. We require details of a claim, for instance, in order to be able to examine whether an insured event has arisen and the amount of loss suffered.

Conclusion and execution of an insurance contract is not possible without processing of your personal data.

In addition, we require your personal data for the purpose of generating insurance-specific statistics, e.g. for establishing new tariffs or for the purpose of fulfilling regulatory requirements. We shall use the data from all contracts existing with Real Garant Versicherung AG and Real Garant GmbH Garantiesysteme for the purpose of an overall view of the customer account relationship, for instance for the purpose of advice, contractual adjustment or supplementation, for decisions on gestures of goodwill or for the comprehensive provision of information.

The legal basis for such processing of personal data for pre-contractual and contractual purposes is Article 6 (1) b GDPR.

We shall also process your data in order to protect legitimate interests of ourselves or third parties (Article 6 (1) f GDPR). This may in particular be necessary:

  • For the purpose of ensuring IT security and IT operations;
  • For the purpose of an overall consideration of your customer account relationship with Real Garant Versicherung AG and Real Garant GmbH Garantiesysteme;
  • In order to prevent and identify criminal offences; in particular, we shall use data analyses in order to identify indications which may suggest insurance fraud.

In addition, we shall process your personal data in order to fulfil statutory obligations, such as regulatory requirements, duties under commercial and tax law to retain documentation, or our own duty to provide advice. In such event, the legal basis of processing shall consist of the respective statutory provisions in conjunction with Article 6 (1) c GDPR.

In the event that we wish to process your personal data for a purpose not stated above, we shall inform you thereof in advance within the framework of the statutory rules.

Categories of personal-data recipient

Reinsurers:
We insure risks assumed by us with specialist insurance undertakings (reinsurers). For this purpose, it may be necessary to transfer your contractual data and, where relevant, claim details, to a reinsurer in order for the latter to form its own impression as to the risk or the claim in question. In addition, it is possible that the reinsurer may support our company in assessing a risk or benefit as well as in evaluating procedures, based on its particular expertise. We shall transfer your data to the reinsurer only provided this is necessary for the purpose of fulfilment of our insurance contract with you and only to the extent required in order to protect our legitimate interests.

Brokers:
Insofar as you receive service from a broker in relation to your insurance contracts, your broker shall process the application data, contractual data and claim details required for the purpose of concluding and executing a contract. Our company shall also transfer said data to the brokers providing services to you insofar as such brokers require said information in order to provide services to you and advise you on all insurance and financial-service matters.

Data processing within the corporate group:
Specialised companies/divisions of our corporate group undertake certain data-processing tasks on a centralised basis on behalf of Real Garant Versicherung AG. You will find in the overview of service providers of Real Garant Versicherung AG set out in the Appendix hereto a list of the companies participating in centralised data processing.

External service providers:
In order to fulfil our contractual and statutory duties, in some instances we use external service providers.

You will find a list of the contractors and service providers with which longer-term business relationships exist in the overview of Real Garant Versicherung AG’s service providers in the Appendix hereto.

Further recipients:
in addition, we may transfer your personal data to further recipients, such as official bodies, for the purpose of fulfilling statutory duties of disclosure (e.g. social insurance providers, tax authorities or criminal prosecution authorities).

Duration of data storage
We shall delete your personal data as soon as it is no longer required for the aforementioned purposes. In this context, it may be that personal data is retained for the period in which claims may be asserted against our company (statutory limitation period of 3 or up to 30 years). In addition, we shall store your personal data insofar as we are under a statutory obligation to do so. Corresponding duties of documentation and retention are contained inter alia in the German Commercial Code [Handelsgesetzbuch – HGB], the Fiscal Code [Abgabenordnung], and the Money Laundering Act [Geldwäschegesetz]. According thereto, retention periods may be up to 10 years.

Rights of affected parties
You may request information related to your stored personal data from the above address. Furthermore, under certain preconditions, you may request correction or deletion of your data. You may additionally be entitled to a limitation on processing of your data as well as to surrender of the data supplied by you in a structured, usual and machine-readable format.

Right of objection
You are entitled to object to processing of your personal data for the purposes of direct advertising without providing any indication of reasons. If we process your data for the purpose of safeguarding legitimate interests, you may object to such processing on the basis of reasons connected to your particular situation. We shall then no longer process your personal data unless we are able to evidence mandatory protectable reasons for processing which outweigh your interests, rights and freedoms or unless processing serves the assertion, exercise or defence of legal claims.

Right of appeal
You have the option of filing an appeal with the aforementioned data protection officer. In addition, you have the right of appeal to a data protection authority. The competent data protection authority for our company is:

Der Baden-Württembergische
Datenschutzbeauftragte
Postfach 10 29 32
70025 Stuttgart

Data transfer to a third country
In the event that we transfer personal data to service providers outside the European Economic Area (EEA), transfer shall only take place insofar as the EU Commission has confirmed that such third country has a reasonable level of data protection or that other reasonable data protection guarantees (e.g. binding intracompany data protection rules or EU standard contractual clauses) are in place. Detailed information in this regard as well as on the level of data protection at our service providers in third countries is contained in the overview of service providers in the Appendix.

Overview of service providers of Real Garant Versicherung AG

We shall process your personal data in accordance with the rules of conduct governing the handling of personal data by the German insurance industry and the consent given by you as appropriate within the framework of your insurance application or benefit handling. This shall also comprise the transfer of data to service providers in so far as required for service provision. This list names such service providers as well as categories of service provider.

Individual service providers may also be based outside the European Economic Area. Data transfer to such service providers may for instance take place if this is imperative for the purpose of fulfilling the contract concluded with you. Otherwise, such transfer shall only take place if a reasonable level of data protection at the headquarters of the service provider is ensured on the basis of an adequacy ruling by the European Commission (as, for instance, in the case of Switzerland) or on the basis of suitable guarantees, in particular adoption of the standard data protection clauses enacted by the European Commission (details of which may be obtained from us). Service providers/categories headquartered outside the European Economic Area are identified with: 1.

  • Real Garant GmbH Garantiesysteme
  • Zurich Insurance plc subsidiary for Germany


Service providers working for the above group companies and whose principal activity is data processing

Service provider Type of work contracted
Zürich Beteiligungs-Aktiengesellschaft (Germany)Central Services(z.B. Legal & Tax, Audit)

 

 

Categories of service provider working for the above group companies and whose principal contractual activity does not consist in the processing of personal data or which only work occasionally

Service provider categoryType of work contracted
Disposal CompaniesDisposal of files/data carriers
Assistance-Suppliers1Assistance services
Call-CenterTelephone services
Printing companyPrint service providers (Print/Postal shipping)
Other Experts and testing services providersCreation of expert assessments as well as consulting in specific cases
IT- and telecommunications service providersIT-Services (z.B. IT, telecommunication, network, maintenance)
Personnel secondment companiesPostal input management/Document-Management
Marketing-AgenciesMarketing campaigns
Law firmsLegal services
ReinsurerIntegration in the risk und claims assessment in specific cases
Claims service providers/Restoration/WorkshopsSupport in claims handling
Translators and interpretersTranslations
External AuditorsAuditing services
Credit insititutesCredit note / direct debit


Note: In so far as service providers are not engaged as processers bound by strict instructions, but have their own decision-making authority (such as, for instance, typically, in the case of experts), your personal data shall not be transferred to such service providers if you object to such transfer and are able to show that, in a particular situation, by way of exception, your protectable interests outweigh the interests of the transferring company.

Dated: 05/2018

Overview of service providers of Real Garant GmbH Garantiesysteme

We shall process your personal data in accordance with the rules of conduct governing the handling of personal data by the German insurance industry and the consent given by you as appropriate within the framework of your insurance application or benefit handling. This shall also comprise the transfer of data to service providers in so far as required for service provision. This list names such service providers as well as categories of service provider.

Individual service providers may also be based outside the European Economic Area. Data transfer to such service providers may for instance take place if this is imperative for the purpose of fulfilling the contract concluded with you. Otherwise, such transfer shall only take place if a reasonable level of data protection at the headquarters of the service provider is ensured on the basis of an adequacy ruling by the European Commission (as, for instance, in the case of Switzerland) or on the basis of suitable guarantees, in particular adoption of the standard data protection clauses enacted by the European Commission (details of which may be obtained from us). Service providers/categories headquartered outside the European Economic Area are identified with: 1.

  • Real Garant Versicherung AG
  • Zurich Insurance plc subsidiary for Germany


Service providers working for the above group companies and whose principal activity is data processing

Service provider Type of work contracted
Zürich Beteiligungs-Aktiengesellschaft (Germany)Central Services(z.B. Legal & Tax, Audit)

 

 

Categories of service provider working for the above group companies and whose principal contractual activity does not consist in the processing of personal data or which only work occasionally

Service provider categoryType of work contracted
Disposal CompaniesDisposal of files/data carriers
Assistance-Suppliers1Assistance services
Call-CenterTelephone services
Printing companyPrint service providers (Print/Postal shipping)
Other Experts and testing services providersCreation of expert assessments as well as consulting in specific cases
IT- and telecommunications service providersIT-Services (z.B. IT, telecommunication, network, maintenance)
Personnel secondment companiesPostal input management/Document-Management
Marketing-AgenciesMarketing campaigns
Law firmsLegal services
Claims service providers/Restoration/WorkshopsSupport in claims handling
Translators and interpretersTranslations
External AuditorsAuditing services
Credit insititutesCredit note / direct debit


Note:
In so far as service providers are not engaged as processers bound by strict instructions, but have their own decision-making authority (such as, for instance, typically, in the case of experts), your personal data shall not be transferred to such service providers if you object to such transfer and are able to show that, in a particular situation, by way of exception, your protectable interests outweigh the interests of the transferring company.

Dated: 05/2018