Data Protection Declaration

The protection of your personal data is very important to EFiS AG. We process your personal data responsibly and in accordance with the applicable data protection laws, the General Data Protection Regulation (GDPR) and the BDSG (neu) [Federal Data Protection Act (new)].

Hereafter, we describe our rules for the collection, processing, use, and disclosure of personal data.

The responsible authority within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

EFiS AG
Am Weiher 1
63303 Dreieich
Germany

Purposes of data processing by the responsible authority and third parties

We may collect your personal data for various purposes, such as:

Management of our websites
When you open any of our websites, information is recorded that is required to access and to operate the website and to comply with technical and legal requirements associated with the operation of our website, such as IP address and web browser settings. In addition, informa­tion also is gathered about your activities during your visit to our website in order to obtain statistical information to improve and develop our websites, products and services.

Maintenance of business contacts
Over the course of our relationship with customers, interested parties, partners and suppliers, they also provide us with business-related contact information, such as the business contact details, position or title of their employees and the authorized users for the purpose of fulfilling the order and the contract, the provision of products and services and the deepening of business relationships.

Answering inquiries
When you send us an inquiry about our products or services, download documents from our website or sign up for one of our events, we will collect the information we need to fulfil your request and to provide you with access to the relevant document and to contact you. For ex­ample, your name and contact information and the details of your request will be recorded.

We process your personal data only for the purposes stated in this data protection declaration. A transfer of your personal data to third parties for purposes other than those mentioned does not take place. We only share your personal information with third parties if:

  • You have given your express consent,
  • Processing is required to complete a contract with you,
  • Processing is required to fulfil a legal obligation,
  • Processing is required to safeguard legitimate interests, and
  • There is no reason to believe that you have an overriding and legitimate interest in not disclosing your information.

Security

It is our concern to protect your personal data and to ensure its accuracy. EFiS AG has taken comprehensive technical and organizational measures to protect your personal data from unauthorized access, unauthorized use and disclosure.

Retention period

Personal data will not be retained by EFiS AG for longer than is neces­sary to fulfil the purposes for which it is processed, including the fulfilment of legal or regula­to­ry obligations (for example, auditing, billing and statutory retention periods) or handling of disputes.

Deletion or blocking of data

We adhere to the principles of data avoidance and data economy. Therefore, we only store your personal data for as long as it is necessary to achieve the purposes stated here or as it is stipulated by the different retention periods provided by law. After elimination of the respective purpose or expiration of these deadlines, the corresponding data will be routinely blocked and deleted in accordance with the statutory provisions.

Cookies

Like many other websites, we use so-called “cookies”. Cookies are small text files that are transferred from a website server to your hard drive. This automatically gives us certain data, such as IP address, browser used, operating system, and your connection to the Internet.

Cookies cannot be used to launch programs or to transfer viruses to a computer. Based on the information contained in cookies, we can facilitate navigation and enable the correct display of our websites.

In no case we will pass on the data collected by us to third parties. Without your consent, personal data will not be linked.

Of course, in principle, you can also view our website without cookies. Internet browsers are set by default to accept cookies. In general, you can disable the use of cookies at any time through the settings of your browser. Please use the help features of your Internet browser to find out how to change these settings. Please note that some features of our website may not work if you have disabled the use of cookies.

Registering on our website

When registering for the use of our personalized services, some personal data will be collect­ed, such as name, address, contact and communication data, such as telephone number and e-mail address. If you are registered with us, you can access content and services that we offer only to registered users. Registered users also have the option of changing or deleting the data specified during registration at any time. Furthermore, we shall of course provide you with in­for­mation concerning the personal data we have stored about you at any time. We are happy to rectify or delete these data at your request, as far as no statutory storage requirements pre­clude. To contact us in this context, please use the contact details given at the end of this data protection declaration.

Newsletter

On the basis of your expressly given consent, we will regularly send you our newsletter or comparable information by e-mail to your specified e-mail address.

For receiving the newsletter, the disclosure of your e-mail address is sufficient. When you sign up to receive our newsletter, the data you provide will be used exclusively for this pur­pose. Subscribers may also be notified by e-mail about circumstances relevant to the service or re­gis­tra­tion (for example, changes to the newsletter offer or technical conditions).

For an effective registration, we need a valid e-mail address. In order to verify that an applica­tion is actually made by the owner of an e-mail address, we use the “Double opt-in” proce­dure. For this purpose, we record the order of the newsletter, the dispatch of a confirmation e-mail and the receipt of the requested answer. Further data is not collected. The data will be used exclusively for newsletter distribution and will not be passed on to third parties.

The consent to the storage of your personal data and their use for the newsletter dispatch can be revoked at any time. There is a corresponding link in each newsletter. In addition, you can directly unsubscribe from this website at any time or inform us of your request via the contact option indicated at the end of this data protection notice.

Contact form

If you have questions of any kind and contact us by e-mail or contact form, you will give us your voluntary consent for the purpose of establishing contact. This requires the specification of a valid e-mail address. This serves for the assignment of the request and the subsequent answering of the same. Specification of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions. After completing your request, we will automatically delete your personal data.

Using Google Maps

This website uses Google Maps API to visually display geographic information. When using Google Maps, Google also collects, processes and uses data about the use of map features by visitors. For more information about Google’s data processing, please refer to the Google Privacy Note. There you can also change your personal data protection settings in the data protection centre.

For detailed instructions on how to manage your own data related to Google products, click here.

Embedded YouTube videos

On some of our websites, we embed YouTube videos. The corresponding plug-ins are ope­rated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with the YouTube plug-in, it will connect to YouTube’s servers. This tells YouTube which pages you visit. If you are logged in to your YouTube account, YouTube may person­al­ly associate your browsing behaviour with you. You can prevent this by logging out of your YouTube account beforehand.

If a YouTube video is started, the provider uses cookies that collect information about user behaviour.

Anyone who has disabled the storage of cookies for the Google Ad program will not have to expect any such cookies even when watching YouTube videos. However, YouTube also stores non-personal use information in other cookies. If you want to prevent this, you must block the storage of cookies in the browser.

For further information on data protection at “YouTube”, please refer to the provider’s data protection declaration at: www.google.de/intl/de/policies/privacy/

Data protection in apps / EFiS applications

By downloading and using the software (apps, applications), information about the access (date, time) and their content can be stored. This information is evaluated for statistical pur­poses only. A transfer to third parties, for commercial or non-commercial purposes, does not take place.

EFiS AG expressly points out that data transmission on the Internet is subject to security gaps and cannot be completely protected against access by third parties.

Changing our data protection provisions

We reserve the right to amend this data protection declaration to always comply with the lat­est legal requirements or to implement changes to our services in the data protection decla­ra­tion, for example, when introducing new services. Your new visit will then be subject to the new data protection declaration.

Rights of the persons impacted

You can always exercise the following rights under the contact details of our Data Protection Officer:

  • Information about your stored data and their processing,
  • Rectification of personal data,
  • Deletion of your data stored with us,
  • Restriction of data processing, if we are not yet allowed to delete your data due to legal obligations,
  • Objection to the processing of your data with us and
  • Data portability, if you have consented to the data processing or have concluded a con­­tract with us.

If you have given us permission to process your personal data, you can, of course, revoke this at any time with effect for the future.

Right of appeal

If you believe that the processing of your personal data violates the applicable data protection laws, you can file a complaint with:

  • EFiS AG,
  • Our Data Protection Officer or
  • The competent supervisory authority responsible for you.

Your competent supervisory authority depends on your place of residence, your work­place or the alleged violation of data protection. For contact details please visit the web page of the responsible organization of the respective country.

Governing law

The only law that applies is the authoritative law of the Federal Republic of Germany.

Contact address regarding data protection of EFiS AG

If you have any questions regarding data protection, please send us an e-mail at gdpr@paymentgroup.de.