Privacy notice

Name and address of the controller

FIB Frankfurt International Bank AG
Wilhelm-Leuschner-Strasse 27
60329 Frankfurt am Main
Frankfurt am Main, Germany
Phone: +49 69 – 247433980
E-mail: info@fib-ag.com
Website: https://www.fib-ag.com

is the controller within the meaning of the EU General Data Protection Regulation (GDPR) and other national data protection laws.

Name and address of the data protection officer

The data protection officer of the controller is
AGOR AG
Niddastrasse 74
60329 Frankfurt am Main
Frankfurt am Main, Germany
Phone: +49 (0) 69 – 9494 32 410
E-mail: info@agor-ag.com
Website: www.agor-ag.com

General information on data processing

Scope of the processing of personal data

We only collect and use the personal data of users of our website insofar as this is necessary to provide a functional website, our content and services.

In principle, the collection and use of our users’ personal data only takes place with their consent. An exception to this principle applies in cases where the processing of data is permitted by law or where it is not possible to obtain prior consent for factual reasons.

Legal basis for the processing of personal data

The legal basis for the processing of personal data is generally derived from

Art. 6 para. 1 sentence 1 lit. a GDPR when obtaining the consent of the data subject.

Art. 6 para. 1 sentence 1 lit. b GDPR for processing operations necessary for the performance of a contract to which the data subject is party. This includes processing operations that are necessary for the performance of pre-contractual measures.

Art. 6 para. 1 sentence 1 lit. c GDPR for processing operations that are necessary for compliance with a legal obligation.

Art. 6 para. 1 sentence 1 lit. d GDPR, if vital interests of the data subject or another natural person require the processing of personal data.

Art. 6 para. 1 sentence 1 lit. f GDPR, if the processing is necessary to safeguard a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest. In order to be able to base the processing of personal data on a legitimate interest, an assessment is carried out for each relevant process in consultation with the data protection officer, whereby the following three conditions must be met:
1) The controller of the personal data or a third party has a legitimate interest in the data processing.
2) The processing is necessary for the purposes of the legitimate interest.
3) The interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, do not prevail.

Data deletion and storage duration

The user’s personal data will be deleted or restricted as soon as the purpose of storage no longer applies. Data may be stored for longer if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.

Use of our website, general information

Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the user’s computer system. The following information may be collected

– IP address
– Date and time of the enquiry
– Time zone difference to Greenwich Mean Time (GTM)
– Content of the request (specific page)
– Access status/HTTP status code
– Amount of data transferred in each case
– Website from which the request originates
– browser
– Operating system and its interface
– Language and version of the browser software

The data described is stored in the log files of our system. This data is not stored together with other personal data of the user.

Purpose and legal basis for data processing

The temporary storage of the IP address by our system is necessary to enable the website to be delivered to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. We also use the data to optimise the website and to ensure the security of our information technology systems. The data is not analysed for marketing purposes in this context.

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 sentence 1 lit. f GDPR.

The collection of your personal data for the provision of our website and the storage of the data in log files is absolutely necessary for the operation of the website. The user therefore has no right to object.

Duration of storage

Your data will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected. If your data is collected to ensure the provision of the website, the data will be deleted when the respective session has ended.

If your data is stored in log files, it will be deleted after seven days at the latest. Storage beyond this period is possible, in which case the IP addresses of the users are deleted or anonymised. It is then no longer possible to identify the accessing client.

General information on the use of cookies

We use cookies on our website. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When you visit a website, a cookie may be stored on your operating system. This contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.

We use cookies to make our website more user-friendly. Some elements of our website require that the browser can be identified even after a page change.

TDDDG:

The legal basis for the storage of cookies, device identifiers and similar tracking technologies or for the storage of information in the end user’s terminal equipment and access to this information is the European ePrivacy Directive in conjunction with the Telecommunications Digital Services Data Protection Act (TDDDG).

Please note that the legal basis for the processing of the personal data collected in this context then results from the GDPR (Art. 6 para. 1 sentence 1 GDPR). The relevant legal basis for the processing of personal data in each specific case can be found below on the respective cookie or on the respective processing itself.

The primary legal basis for the storage of information in the end user’s terminal equipment – i.e. in particular for the storage of cookies – is your consent, Section 25 para. 1 sentence 1 TDDDG. Consent is given when you visit our website – although of course it does not have to be given – and can be revoked at any time in the cookie settings.

Pursuant to Section 25 para. 2 No. 2 TDDDG, consent is not required if the storage of information in the end user’s terminal equipment or access to information already stored in the end user’s terminal equipment is absolutely necessary for the provider of a telemedia service to provide a telemedia service expressly requested by the user. In the cookie settings, you can see which cookies are classified as absolutely necessary (often also referred to as ‘technically necessary cookies’) and therefore fall under the exemption rule of Section 25 para. 2 TDDDG and therefore do not require consent.

GDPR:

When cookies are used, the data specified in this privacy policy is stored and transmitted.
Cookies are stored on the user’s computer and transmitted from there to our website. As a user, you therefore have control over the use of cookies. You can restrict or deactivate the transmission of cookies by making changes in the settings of your Internet browser. Stored cookies can also be deleted there. Please note that you may no longer be able to use all the functions of our website if you deactivate cookies.

The legal basis for the processing of personal data using cookies results from Art. 6 para. 1 sentence 1 lit. f GDPR. The purpose of using technically necessary cookies is to simplify the use of our website.
We would like to point out that individual functions of our website can only be offered using cookies.
We do not use user data collected by technically necessary cookies to create user profiles.

The legal basis for the processing of personal data using cookies for analysis and advertising purposes (see below) is Art. 6 para. 1 sentence 1 lit. a GDPR if the user has given their consent and Art. 6 para. 1 lit. b GDPR for pre-contractual measures.

Cookie consent with Borlabs

This website uses the provider Borlabs (Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany), which sets a technically necessary cookie (borlabs-cookie) to enable you to make individual cookie settings and to document them in accordance with data protection regulations. When you visit our website, the following data is transmitted to Borlabs: Your consent or the revocation of your consent to the setting of cookies, a cookie set by Borlabs Cookie in your browser, the cookie runtime and version, domain and path of the website and the UID. The UID is a randomly generated ID and not personal information. Borlabs does not process any personal data.

Borlabs cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.

The borlabs cookie stores the consent you gave when you entered the website. If you wish to revoke this consent, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked for your cookie consent again.
You can change your cookie settings at any time by clicking on the icon at the bottom left of the website.

Your rights / rights of the data subject

Right to information

You have the right to receive information from us as the controller as to whether and which personal data concerning you are processed by us, as well as further information in accordance with the legal requirements under Art. 13, 14 GDPR.
You can assert your right to information at:
datenschutz@fib-ag.com

Right to rectification

If the personal data processed by us and relating to you is incorrect or incomplete, you have a right to rectification and/or completion. The correction will be made immediately.

Right to restriction

You have the right to restrict the processing of personal data concerning you in accordance with the statutory provisions (Art. 18 GDPR).

Right to erasure

If the reasons set out in Art. 17 GDPR apply, you can request that the personal data concerning you be deleted immediately.

We would like to point out that the right to erasure does not exist if the processing is necessary for one of the exceptional circumstances mentioned in Art. 17 para. 3.

Right to information

If you have asserted the right to rectification, erasure or restriction of processing, we are obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You also have the right to be informed about these recipients.

Right to data portability

Under the GDPR, you also have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller.

Right to revoke the declaration of consent under data protection law

You have the right to withdraw your declaration of consent under data protection law at any time. Please note that the withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Right to object

You also have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on lit. e or f) of Article 6 para. 1 GDPR.

Automated decision-making in individual cases, including profiling

Under the EU General Data Protection Regulation, you also have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Right to lodge a complaint with a supervisory authority

Finally, if you believe that the processing of personal data concerning you is in breach of the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.

Data transfer outside the EU

The GDPR guarantees the same high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners wherever possible if your personal data is to be processed. Only in exceptional cases will we have data processed outside the European Union as part of the use of third-party services. We only authorise the processing of your data in a third country if the special requirements of Art. 44 et seq. GDPR are fulfilled. This means that your data may only be processed on the basis of special guarantees, such as the EU Commission’s officially recognised determination of a level of data protection corresponding to the EU or compliance with officially recognised special contractual obligations, the so-called “standard contractual clauses” (SCC).

EU-US Trans-Atlantic Data Privacy Framework

As part of the so-called ‘Data Privacy Framework’ (DPF), the EU Commission has also recognised the level of data protection for certain companies from the USA as secure as part of the adequacy decision of 10 July 2023. The list of certified companies and further information on the DPF can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/s/participant-search.

Data processing under the Swiss Federal Act on Data Protection

In principle, the use of our website is subject to the statutory provisions of the GDPR. If you also visit our website from Switzerland and insofar as the associated data processing also affects you as a Swiss citizen, these data protection provisions also apply to you under the Swiss Federal Act on Data Protection (‘Swiss FADP’ in the version of 1 September 2023), analogous to the GDPR.

In principle, the Swiss FDPA does not provide for a legal basis. In this respect, we only process your data from Switzerland if the processing is lawful, is carried out in good faith and is proportionate in accordance with Art. 6 para. 1 and 2 of the Swiss FADP. Furthermore, your data will only be collected by us for a specific purpose that is recognisable to the data subject and will only be processed in such a way that it is compatible with these purposes in accordance with Art. 6 para. 3 of the Swiss FADP.

In this context, please also note that although certain terms are formulated differently under the GDPR, they have the same legal meaning as under the Swiss FDPA. For example, the GDPR terms ‘processing’ of ‘personal data’, ‘legitimate interest’ and ‘special categories of data’ used in this data protection notice correspond to the terms ‘processing’ of ‘personal data’, ‘overriding interest’ and ‘sensitive personal data’ used in the Swiss FADP.

The data subject rights set out here pursuant to Art. 12 et seq. GDPR can also be asserted by data subjects from Switzerland in accordance with the provisions of Art. 25 et seq. of the Swiss FADP.

Minors under the age of 16

Minors under the age of 16 are expressly not addressees of our website and our offers on this website. We would like to point out that legal guardians must supervise their children’s online activities. Minors under the age of 16 should not transmit any personal data to us without the consent of their parents or legal guardians. We explicitly do not request personal data from minors under the age of 16, do not knowingly collect it and do not pass it on to third parties.

Contacting us electronically by e-mail

If you would like to contact us, you will find an e-mail address on our website that you can use to contact us electronically. In this case, the user’s personal data transmitted with the e-mail will be stored.

Your data will not be passed on to third parties in this context; the data will only be used to process the communication.

The legal basis for the processing of the contact enquiry and its handling is regularly Art. 6 para. 1 sentence 1 lit. b GDPR.

Your data will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected. For the personal data from the input screen of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Registration

Direct registration via FIB x PORTal

You have the option of registering on our homepage (under the FIB x PORTal link) by entering your personal data. The data is entered into an input mask, transmitted to us and stored. The data will not be passed on to third parties. The following data is collected as part of the registration process:
Gender, first name, surname, email address, registration profile, company, job title (optional), telephone number (optional), business email address
The following data is also stored at the time of registration:
The user’s IP address, date and time of registration
Registration regularly serves the fulfilment of a contract to which the user is a party or the implementation of pre-contractual measures in the form of the extended use of our website. The legal basis for the processing of the data is therefore Art. 6 para. 1 sentence 1 lit. b GDPR.

After registering, you have the option of submitting a credit enquiry in your account area.

Your data will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected. This is the case for the data collected during the registration process if the registration on our website is cancelled or amended.

This is the case for the data collected during the registration process for the fulfilment of a contract or for the implementation of pre-contractual measures if the data is no longer required for the implementation of the contract. Even after conclusion of the contract, it may be necessary to store personal data of the contractual partner in order to fulfil contractual or legal obligations.

Continuing obligations require the storage of personal data during the term of the contract. Warranty periods and the storage of data for tax purposes must also be observed. The storage periods to be observed here cannot be determined across the board, but must be determined on a case-by-case basis for the respective contracts and contracting parties.

You have the option of cancelling your registration on our website at any time. You can also have your stored data amended at any time.

You can send your deletion or modification request informally by e-mail (corporate@fib-ag.com). You can also make changes yourself where this is provided for by the portal.
If the data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, premature deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

Web Analytics

SalesViewer

This website uses SalesViewer technology from SalesViewer GmbH to collect and store data on the basis of your consent (Art. 6 para. 1 lit. a GDPR) to identify leads in the B2B relationship (market research and optimisation purposes).

For this purpose, a javascript-based code is used to collect company-related data and use it accordingly. The data collected with this technology (IP of your company network) is encrypted using a non-reversible one-way function (so-called hashing). The data is immediately pseudonymised and is not used to personally identify the visitor to this website.

The data stored by Salesviewer is deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.

You can object to the collection and storage of data at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out to prevent the collection by SalesViewer within this website in the future. An opt-out cookie for this website will be stored on your device. If you delete your cookies in this browser, you must click this link again.

Matomo

This website uses the web analysis service Matomo to analyse and regularly improve the use of our website. We can use the statistics obtained to improve our offering and make it more interesting for you as a user. The legal basis for the use of Matomo is Art. 6 para. 1 sentence 1 lit. f GDPR.

Cookies are stored on your computer for this analysis. The information collected in this way is stored by the controller exclusively on its server in Germany. You can stop the analysis by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, we would like to point out that you may not be able to use this website to its full extent. You can prevent the storage of cookies by changing the settings in your browser. You can prevent the use of Matomo by unchecking the following box to activate the opt-out plug-in:

Insert a corresponding link to opt-out here:
[Matomo iFrame].

You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.

We use Matomo with the ‘AnonymiseIP’ extension. This means that IP addresses are further processed in abbreviated form, so that direct personal identification can be ruled out. The IP address transmitted by your browser via Matomo is not merged with other data collected by us.
Information from the third-party provider on data protection can be found at https://matomo.org/privacy-policy/

 

Social media

Social media platforms

We currently use the following social media platforms:

LinkedIn

LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
Privacy policy https://www.linkedin.com/legal/privacy-policy
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out,

Xing

New Work SE, Am Strandkai 1, 20457 Hamburg, Germany
Privacy policy/ Opt-Out:
https://privacy.xing.com/de/datenschutzerklaerung.

Social media presence

We maintain fan pages within various social networks and platforms with the aim of communicating with the customers, interested parties and users active there and informing them about our services.

We would like to point out that your personal data may be processed outside the European Union, which may result in risks for you (e.g. when enforcing your rights under European / German law).

As a rule, user data is processed for market research and advertising purposes. For example, user profiles can be created from user behaviour and the resulting interests of users. These user profiles can in turn be used, for example, to place adverts inside and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are generally stored on the user’s computer, in which the user’s usage behaviour and interests are stored. Furthermore, data can also be stored in the user profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

The processing of users’ personal data is based on our legitimate interests in effective user information and communication with users in accordance with Art. 6 para. 1 sentence 1 lit. f. GDPR. GDPR. If users are asked by the respective providers for consent to data processing (i.e. they declare their consent, e.g. by ticking a checkbox or confirming a button), the legal basis for processing is Art. 6 para. 1 sentence 1 lit. a. GDPR.

Further information on the processing of your personal data and your options to object can be found under the links provided by the respective provider. The assertion of information and other rights of the data subjects can also be made against the providers, then only those who have direct access to the data of the users and have the corresponding information. We are of course available to answer any queries you may have and will support you if you need help.

A supplementary agreement is concluded with some social media platforms when operating a fan page. According to this agreement, data subject rights can generally be asserted both with the social media platform and with us. However, the primary responsibility under the GDPR for the processing of Insights data lies with the social media platform and it fulfils all obligations under the GDPR with regard to the processing of Insights data. In this context, the social media platform makes the essentials of the Page Insights supplement available to the data subjects.

As the operator of the fan page, we do not make any decisions regarding the processing of Insights data and all other information resulting from Art. 13 GDPR, such as the legal basis, the identity of the controller and the storage duration of cookies on user devices.