Privacy policy

Each time our website is accessed, our system automatically collects data and information from the computer making the enquiry. The following data is collected here:

• Information about the browser type and version used
• The operating system of the user
• The internet service provider of the user
• The IP address of the user
• Access date and time
• Websites from which the user's system accessed our website
• Websites accessed by the user's system through our website

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 f) of the GDPR/DSGVO.

Purpose of the data processing: the temporary storage of the IP address by the system is necessary to allow the user’s computer access to the website. To do this, the user's IP address must be stored for the duration of the session.

Storage in log files occurs to ensure the functionality of the website. In addition, the data is used to optimise the website and to safeguard the security of our information technology systems. In this context, data evaluation for marketing purposes does not take place.

The data will be deleted as soon as its collection is no longer necessary to complete the task. In the case of data being collected to allow access to the website, this is when the relevant session is completed.

When storing the data in log files, this will happen after no more than seven days. On occasion the storage may be prolonged. In this case, the IP addresses of the users are deleted or separated, so that the client can no longer be identified.

The collection of data for granting access to the website and the storage of data in log files is essential for the operation of the website. Consequently users cannot object.

When visiting the websites, depending on the areas visited, so-called cookies are stored on your computer. Cookies are small text files in which the provider of a website stores relevant data to facilitate browsing on the web page. Such a cookie cannot be read by any website other than the one which created the cookie. Advigon does not store any personal data about you in cookies. The maximum lifetime of the cookie is 90 days. After this time, it is automatically deleted. Each time you visit the website, a new cookie is created. If a cookie already exists, the information is updated. This is equivalent to deleting and re-setting the cookie.

The purpose of using technically-essential cookies is to facilitate the use of websites for users. Some features of our website cannot be provided without the use of cookies. For these the browser needs to be recognised, even after changing pages.

Analysis cookies are used for the purposes of improving the quality of our website and its contents. Through the analysis cookies we learn how the website is used and we can therefore continually optimise our range of products.

The use of advertising-related cookies is for the purpose of showing bespoke advertisements to you.

When users access our website an information banner tells them about the use of cookies for analysis purposes and refers to this privacy policy. It also shows how the storage of cookies can be prevented by using the browser settings. The legal basis for the processing of personal data using cookies is Art. 6 para. 1 f) GDPR/DSGVO.

How can I manage cookies?

As an internet user, you can decide for yourself if you want to accept cookies or stop them altogether. If cookies are blocked, we can no longer guarantee the correct presentation and full functionality of our website.

Cookies are stored on the user’s computer and transmitted from this to our website. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically.

What types of cookies do we use?

We use four types of cookies on our website: general cookies, functional cookies, performance cookies and advertising cookies.

We use general cookies (session cookies) for the overall operation of our website. These save certain actions performed by the user. These cookies are necessary for a functional navigation of the website and for the use of certain website functions. These make it easier for the user to visit our website, as he can easily make the most of various areas on our site.

Further information about session cookies and persistent cookies.

Session cookies store information used during your current browser session. As soon as you close the browser, these cookies are automatically deleted. Persistent cookies store information between two visits to the website, so that you will be recognised as a returning user when visiting again.

Etracker
This website uses technologies from etracker GmbH (www.etracker.com) to collect and store data for marketing and optimisation purposes. From this data, usage profiles can be created under a pseudonym. Cookies may be used. Cookies are small text files stored locally in the cache of the visitor's internet browser. Cookies allow the internet browser to be identified. The data collected with the etracker technologies will not be used to personally identify the visitor to this website without the separate consent of the person concerned, nor will it be combined with personal data of the bearer of the pseudonym.

Data collection and storage can be revoked at any time with future effect. Please exclude me from the etracker count.

Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called cookies. These are text files that are stored on your computer that allow your use of the website to be analysed. The information generated by the cookie about your website use is usually transmitted to a Google server in the USA and stored there.

However, if this website has activated IP anonymisation, your IP address will be shortened beforehand by Google within the member states of the European Union, or in other contracting states of the Agreement on the European Economic Area. The full IP address will only be sent to a Google server in the USA and shortened there in exceptional circumstances. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address identified by Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by adjusting the settings of your browser software. We would like to point out, however, that, in so doing, you may not be able to use the full functionality of this website. Furthermore, you can prevent Google from collecting the data generated by the cookie relating to your use of the website (including your IP address), as well as processing this data, by downloading and installing the browser version available via the following link. You can prevent analysis by Google Analytics by clicking on the following link. An opt-out cookie is set, which prevents the future collection of your data when visiting this website: Disable Google Analytics.

For more information on the Terms of Use and Privacy Policy, please refer to the Google Terms and Google Policies. Please note that on this website, Google Analytics is augmented by using the "gat._anonymizeIp ();" code to ensure the anonymous collection of IP addresses (so-called IP masking).

Google Adwords
Our website uses Google Adwords and Google Tag Manager for personalised, interest and location-based online advertising.

As an AdWords customer, we use Google Conversion Tracking, an analytics service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google Adwords sets a cookie on your computer ("conversion cookie") if you reached our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of ours and the cookie has not expired, we and Google will be aware that someone clicked on the ad and was redirected to our site. Each AdWords customer receives a different cookie. Cookies cannot therefore be tracked across AdWords customers’ websites. The information gathered using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers will see the total number of users who clicked on their ad and were redirected to a page containing a conversion tracking tag. However, they do not receive information that personally identifies users. If you do not want to participate in the tracking process, you can prevent the required cookie being set - for example, via a browser setting that disables the automatic setting of all cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "googleadservices.com".

Remarketing
We use Google Inc.'s remarketing technology (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). This technology will connect again with users who have already visited our sites and online services and are interested in the product range through targeted advertising on Google Partner Network pages. Advertising is shown as a result of the use of cookies. These are small text files that are stored on the user's computer. With the help of these text files, users’ behaviour when visiting the website can be analysed and then used for targeted product recommendations and interest-based advertising.

If you do not wish to receive interest-based advertising, you can disable Google's use of cookies for these purposes by visiting https://www.google.com/settings/ads. Alternatively, users can disable the use of third-party cookies by visiting the opt-out page of the Network Advertising Initiative.

By using our services, you consent to the processing of data about you by Google. Please note that Google has its own privacy policies that are independent of ours. We assume no responsibility or liability for these policies and procedures. Please check Google’s privacy policy before using our website.

DoubleClick
DoubleClick is a service provided by Google Inc. ("Google"). DoubleClick by Google uses cookies to show you advertisements that are relevant to you. Your browser will be assigned a pseudonymous identification number (ID) to check which ads have appeared in your browser and which ads have been chosen. Using DoubleClick (Floodlight) cookies allows Google and its affiliate websites to present advertisements based on previous visits to our or other websites on the internet. The information generated by the cookies is transmitted by Google to a server in the USA for evaluation and stored there. A transfer of the data by Google to third parties only takes place when legally necessary.
By using our website, you agree to the processing of the data collected about you by Google, the manner and method of processing as described above and the stated purpose. You can prevent the storage of cookies by setting your browser software accordingly. For more information on DoubleClick privacy, please visit: http://www.google.com/policies/technologies/ads/

In addition, you can prevent the collection by Google of the data generated by cookies and related to your use of the websites and the processing of such data by Google by downloading and installing the browser plugin found at https://support.google.com/adsense/answer/2839090?hl=en under Display Settings, DoubleClick Deactivation Extension. Furthermore, the user can deny the use of DoubleClick DART cookies. To do this, the user must follow Google's cookie deactivation guide: http://www.google.com/settings/ads/plugin?hl=en.

Use of Piwik
This website uses Piwik, an open source software for the statistical analysis of user visits. Piwik uses so-called "cookies", text files that are stored on your computer and allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is stored on the provider’s server in Germany. The IP address is anonymised immediately after processing and prior to its storage. You can prevent the installation of cookies by setting your browser software accordingly. However, please be aware that if you do this you may not be able to use the full functionality of this website.

Facebook Plugins
This site uses plug-ins from the Facebook.com network (https://www.facebook.com/about/privacy/) operated by Facebook Inc. (1601 S California Ave, Palo Alto, CA 94304 USA, "Facebook"). These plug-ins are identifiable by the Facebook logo or its equivalent. If you access a page using one of these plug-ins, this plug-in creates a direct link between your browser and the Facebook pages. Since this transfer is direct, we are not aware of the data transmitted. The fact that you have requested the corresponding page is transmitted.

If you are logged in to Facebook at the same time, this information will be assigned to your Facebook account and will thus be personally identifiable. The same applies, of course, if you use the plug-ins (“Like”) or leave comments.
If you want to avoid the direct transfer of data into your Facebook account, it is advisable to only visit our pages when you are not logged in to Facebook. The legal basis for processing the data with the user's consent is Art. 6 para. 1 a) GDPR/DSGVO.

You will only receive our free newsletter after giving your express consent. The newsletter subscription can be terminated at any time by the user concerned. For this purpose, there is a corresponding link in each newsletter.
Data gathered during registration for the newsletter is transmitted to us. In addition, the following data is collected during registration: IP address of the host computer and date and time of registration. The collection of other personal data during the registration process is designed to prevent misuse of the services or the email address given. The legal basis for the processing of the data after the user has registered for the newsletter is Art. 6 para. 1 a) GDPR/DSGVO. The data will be deleted as soon as its collection is no longer necessary to complete the task. The e-mail address of the user is therefore stored as long as the newsletter subscription is active.

We include company and product reviews on our website to give our customers the opportunity to evaluate the insurance purchase process. At the same time, we want to improve our internal quality management. If you have explicitly clicked on the link for customer feedback after completing our online purchase process or online application, you will be redirected to a questionnaire at eKomi, Ltd.(http://www.ekomi.co.uk). An anonymised ID is passed on to eKomi to prevent multiple evaluations. In addition, eKomi stores your IP address. eKomi has committed itself to handling your data in line with data protection regulations and implements all organisational and technical measures to protect your data. The legal basis for processing the data is Art. 6 para. 1 a) GDPR/DSGVO. Through your rating, you help us to continuously improve the processes and products for all our customers, thank you.

Our website features a contact form and an online application, which can be used for contacting us via the web or to purchase insurance. If a visitor uses these options, the data entered in the input mask will be transmitted to us and saved. The personal data that you give us via service functions and forms, with your declared consent for collection, processing and use, is transmitted, stored and secured in encrypted form via a secure connection over the internet to our server. The security procedure used here corresponds to the most up-to-date technical standards (TLS or SSL). Other personal data processed during transmission helps prevent misuse of the contact form and ensures the security of our information technology systems.

By transmitting your personal data e.g. through a claim notification, an online application, requesting a quote or consultation, and through your confirmation of this Privacy Notice - you agree that your data is stored and processed to the extent necessary for completing requests and (if required) answering enquiries. Depending on your request, this may also require forwarding to authorised third parties or automated processing of the data. Requests for quotations are usually handled by our partners (consultants local to you) who also contact you by phone as part of a quotation or consultation (if you have given your consent) in order to clarify questions or product specifications directly.
The legal basis for processing of the data is the existence of the user’s consent Art. 6 para. 1 a) GDPR/DSGVO and for online financial statements, Art. 6 para. 1 b) GDPR/DSGVO. If health data are processed, this is done based on Art. 9 para. 2 a) GDPR/DSGVO.

The data will be deleted as soon as its collection is no longer necessary to complete the task. In the case of personal data inputted in the contact form and sent by e-mail, this is when the relevant conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the relevant issue has been conclusively settled. Additional personal data collected during transmission will be deleted after a period of seven days at the latest.

The user can, at any time, revoke his consent to the processing of personal data.

E-mails sent to us via your e-mail program may be unencrypted. Please check the settings in your e-mail application or consult your e-mail provider. E-mails sent back to you are routinely transport-encrypted (TLS). They are only sent unencrypted if your provider does not support transport encryption. However, e-mail providers usually support this type of encryption.

We are happy to set up end-to-end encryption (S/MIME) of your e-mail communication, if you so wish. To configure the secure connection, please send a short e-mail to: datenschutz@advigon.com. We will take care of the implementation immediately.

We hereby advise you, as insurance customers or parties, about the processing of your personal data by Advigon and your rights under the Data Protection Act.

The Data Protection Officer of the responsible entity is: Mr. Christian Adolf

For correspondence, please use the address above or send an e-mail to: datenschutz@advigon.com.

We process your personal data in compliance with the EU General Data Protection Regulation (DSGVO - EU-Datenschutz-Grundverordnung), the Federal Data Protection Act (BDSG - Bundesdatenschutzgesetzes), the provisions of the Insurance Contract Act (VVG - Versicherungsvertragsgesetzes) relevant to data protection and all other relevant laws.

If you apply for insurance cover, we need the information you have provided to conclude the contract and to assess the risk to be assumed by us. If the insurance contract is concluded, we process this data to conclude the contractual relationship, for example, for the purpose of concluding contracts or invoicing. We need information about a claim, for example, so we can check whether an insured event occurred and the amount of the claim.

Concluding or executing the insurance contract is not possible without processing your personal data.

The legal basis for processing personal data for pre-contractual and contractual purposes is Art. 6 para. 1 b) GDPR/DSGVO. Insofar as special categories of personal data are required for this (e.g. your health data when concluding a health insurance contract), we will obtain your consent in accordance with Art. 9 para. 2 a) in conjunction with Art. 7 GDPR/DSGVO.

In addition, we need your personal information to compile insurance-specific statistics, for example, for the development of new pricing or for fulfilling regulatory requirements. If we create statistics with these data categories, this is done based on Art. 9 para. 2 j) GDPR/DSGVO in conjunction with § 27 BDSG.
We also process your data to safeguard our legitimate interests or those of third parties (Art. 6 para. 1 f) GDPR/DSGVO). This may be necessary in particular:

• to ensure IT security and IT operations
• to promote our own insurance products
• to prevent and investigate criminal offences, in particular we use data analytics to identify patterns that may indicate insurance fraud

Furthermore, we process your personal data to fulfil legal obligations such as regulatory requirements, commercial and tax law retention obligations or our duty to advise. In this case, the legal basis for processing data is the respective legal regulations in conjunction with Art. 6 para. 1 c) GDPR/DSGVO.

If we wish to process your personal data for a purpose not mentioned above, we will inform you in advance within the scope of the legal provisions.

Reinsurers:
We also insure risks assumed by us with specialist insurance companies (reinsurers). For this it may be necessary to submit your contract data and any claim data to a reinsurer, so that they can form their own opinion about the risk or the insured event. Furthermore, we may work with the reinsurer on the basis of its special expertise in risk or performance reviews, or evaluating procedures. We transmit your data to the reinsurer only insofar as this is necessary for the fulfillment of our insurance contract with you, or to the extent required to safeguard our legitimate interests.

Mediator:
If you are looked after by an intermediary with regard to your insurance contracts, your intermediary will process the application, contract and claim data required to conclude and execute the contract. Our company also transmits this data to the intermediary who looks after you, as far as they need the information to support and advise you on insurance and financial services matters.

External service providers:

Advigon Versicherung AG works when necessary with service providers (companies/individuals) to meet its contractual and legal obligations using health data and other data protected under § 203 StGB (German Criminal Code).  A list of the contractors and service providers we use, which are not just temporary business relationships, can be found here:

contractor-list.pdf

When necessary, Advigon also works together with the following bodies, who collect, process and use health data and other data protected under § 203 StGB:

Further recipients:
Furthermore, we may transfer your personal information to other recipients, such as government agencies, to comply with legal reporting obligations (e.g. social security funds, tax authorities or law enforcement agencies). 

We delete your personal information as soon as it is no longer necessary for the purposes above. Personal data could be kept as long as claims can be lodged against our company (legal limitation period of three or up to thirty years). In addition, we store your personal data if we are legally obliged to do so. Corresponding duties of proof and retention arise from, among other things, personal and company law, tax law and the Due Diligence Act. The related retention periods are up to ten years.

You can obtain information about the data stored about you from the address above. Furthermore, under certain circumstances, you may request the correction or deletion of your data. You may continue to have the right to restrict the processing of your data and have the right to obtain the data you provided in a structured, common and machine-readable format.

You have the right to object to the processing of your personal data for direct marketing purposes. If we process your data to safeguard legitimate interests, you may object to this processing if your particular situation gives rise to reasons that counter the processing of data.

You have the option to complain to the Data Protection Officer mentioned above or to a Data Protection Supervisory Authority. The Data Protection Supervisory Authority responsible for us is:

Datenschutzstelle (DSS)
Städtle 38
Postfach 684
9490 Vaduz
Liechtenstein

In order to check and, where needed, supplement your information when the insurance contract is concluded - or your details when an insured event occurs – we may carry out an exchange of personal data with the former insurer specified by you in your application insofar as this is required.

If we transfer personal data to service providers outside the European Economic Area (EEA), the transfer will only take place if the third country has been confirmed by the EU Commission as having an adequate level of data protection or providing other appropriate data protection guarantees (e.g. binding internal data protection regulations or EU standard clauses).

For some of our products, we make fully-automated decisions based on the risk information which we ask you during your application: for example, on the conclusion or termination of the contract, possible exclusions of risk, or on the amount of the insurance premium you pay. On some of our products, we also make fully-automated decisions about our obligation to pay based on your information about the event insured, the data stored about your contract and any information received from third parties. The fully-automated decisions are based on binding payment regulations for medical treatment. You have the right for a person to intervene on the part of the responsible entity, to explain your own position and to contest the decision.