Stand out from the competition – with insurance offers directly at the point of vehicle sale. No training required, no obligation to a provider. Instantly integrable thanks to the API interface.
The provisions of the EU General Data Protection Regulation (hereinafter GDPR) apply throughout Europe. We would like to inform you about the processing of personal data carried out by our company in accordance with this regulation (see Articles 13 and 14 GDPR). If you have any questions or comments regarding this privacy policy, you can contact us at any time via the email address provided under sections 2 or 3.
Table of Contents:
I. Overview
Scope
Controller
Data Protection Officer
II. Details of Data Processing
General information on data processing
Accessing the website/application
Customer support
General information on data processing
Use of our contact form
Tracking
III. Data Subject Rights
Right to object
Right of access
Right to rectification
Right to deletion (“Right to be forgotten”)
Right to restriction of processing
Right to data portability
Right to withdraw consent
Right to lodge a complaint
IV. Glossary
I. Overview
This section of the privacy policy provides information about the scope, the controller responsible for data processing, the data protection officer, and data security.
1. Scope
Data processing can essentially be divided into two categories:
For the purpose of contract execution, all data necessary for carrying out a contract is processed. If external service providers are involved in the execution of the contract, your data will be passed on to them to the extent required.
When accessing the websites/applications, various information is exchanged between your end device and our server. This may also include personal data. The information collected this way is used, among other things, to optimize our website or to display advertising in your device’s browser.
This privacy policy applies to the following services:
Our online offer accessible at https://www.covercheck.de;
Whenever a reference to this privacy policy is made from any of our other offers (e.g., websites, subdomains, mobile applications, web services, or integrations on third-party sites), regardless of how you access or use them.
All these offerings are collectively referred to as “Services.”
2. Controller
The controller for data processing — i.e., the entity that decides on the purposes and means of processing personal data — in connection with the services is:
CoverCheck
Versicherungskontor GmbH
Brunnenstraße 11
06493 Harzgerode
Tel.: +49 (0) 39484/7385-36
Fax: +49 (0) 39484/7385-37
Email: info@covercheck.de
3. Data Protection Officer
CoverCheck
Versicherungskontor GmbH
Data Protection Officer –
Brunnenstraße 11
06493 Harzgerode
II. Details of Data Processing
This section of the privacy policy informs you in detail about the processing of personal data within the framework of our services. For clarity, this information is structured according to specific functionalities of our services. When using the services normally, various functionalities and therefore various processing operations may apply sequentially or simultaneously.
1. General information on data processing
For all the processing operations described below, the following applies unless otherwise stated:
a. No obligation to provide data
There is neither a contractual nor a legal obligation to provide personal data. You are not required to provide data.
b. Consequences of non-provision
For required data (data marked as mandatory during input), failure to provide means that the respective service cannot be provided. Otherwise, non-provision may result in our services not being provided in the same form and quality.
c. Consent
In certain cases, you have the option to give us your consent for further processing related to the data processing described below (possibly only for parts of the data). In such cases, we will inform you separately about all modalities and the scope of the consent and the purposes we pursue with these processing activities at the time you give your consent.
d. Transfer of personal data to third countries
If we transfer data to third countries, i.e., countries outside the European Union, the transfer will only take place in compliance with the legally prescribed admissibility requirements. These admissibility requirements are regulated by Articles 44-49 GDPR.
e. Hosting by external service providers
Our data processing largely involves so-called hosting providers who provide us with storage space and processing capacities in their data centers and also process personal data on our behalf according to our instructions. These service providers either process data exclusively within the EU, or we have ensured an adequate level of data protection by using EU standard contractual clauses.
f. Transfer to government authorities
We transfer personal data to government authorities (including law enforcement authorities) if this is necessary to fulfill a legal obligation to which we are subject (legal basis: Art. 6 para. 1 c) GDPR) or if it is necessary for asserting, exercising, or defending legal claims (legal basis: Art. 6 para. 1 f) GDPR).
g. Storage duration
We do not store your data longer than necessary for the respective processing purposes. If the data is no longer required for the fulfillment of contractual or legal obligations, it will be regularly deleted, unless temporary storage is still necessary. Reasons for this can include:
Compliance with commercial and tax law retention obligations
Retaining evidence for legal disputes within the framework of statutory limitation periods
It is also possible to store your data further if you have expressly given your consent to do so.
h. Data categories
Account data: login/user ID and password
Address data: street, house number, additional address information if any, postal code, city, country
Contact data: telephone number(s), fax number(s), email address(es)
Registration data: information about the service you registered for; times and technical details of registration, confirmation, and deregistration; data provided by you during registration
Payment data: account data, credit card data, data for other payment services like PayPal
Access data: date and time of your visit to our service; the page from which the accessing system reached our site; pages accessed during use; data for session identification (session ID); additionally, the following information about the accessing computer system: IP address, browser type and version, device type, operating system, and similar technical information.
Special categories of data pursuant to Art. 9 GDPR: data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership; genetic data; biometric data for uniquely identifying a natural person; health data; or data concerning a person’s sex life or sexual orientation.
2. Accessing the website/application
This section describes how we process your personal data when you access our services. We especially point out that the transmission of access data to external content providers (see section b.) is unavoidable due to the technical functioning of data transmission on the internet.
a. Information on processing
| Data Category | Purpose | Legal Basis | Possible Legitimate Interest | Storage Duration |
|---|---|---|---|---|
| Access Data |
Connection setup, Display of the service content, Detection of attacks on our site based on unusual activities, Error diagnosis |
Art. 6 para. 1 f) GDPR |
Proper functioning of the services, Security of data and business processes, Prevention of misuse, Prevention of damage caused by interference with information systems |
7 days |
b. Recipients of the personal data
| Recipient Category | Data Concerned | Legal Basis for Transfer | Possible Legitimate Interest |
|---|---|---|---|
|
External content providers, who provide content (e.g. images, videos, embedded posts from social networks, advertising banners, fonts, update information) that are required for displaying the service |
Access data | Order processing (Art. 28 GDPR) |
Proper functioning of the services, (accelerated) display of content |
| IT Security Service Provider | Access data | Order processing (Art. 28 GDPR) | Prevention of attacks by exploiting security vulnerabilities / weaknesses |
|---|
| Recipient Category | Affected Data | Legal Basis for Transmission | Possible Legitimate Interest |
|---|---|---|---|
|
External content providers, who provide content (e.g., images, videos, embedded posts from social networks, advertising banners, fonts, update information) that are necessary for displaying the service |
Access data | Order processing (Art. 28 GDPR) |
Proper functioning of the services, (accelerated) display of content |
3. Customer Support
How we process your personal data when you contact our customer service can be found here:
Information on Data Processing
| Data Category | Purpose | Legal Basis | Possible Legitimate Interest | Storage Duration |
|---|---|---|---|---|
|
Personal master data, contact data, content of inquiries/ complaints |
Processing of customer inquiries and user complaints |
Art. 6 Para. 1 b), f) |
Customer retention, improvement of our service |
Processing of the inquiry |
5. Tracking
Below we describe how your personal data is processed using tracking technologies for the analysis and optimization of our services as well as for advertising purposes. The description of the tracking methods also includes information on how you can prevent or object to the data processing. Please note that the so-called “opt-out,” meaning the refusal of processing, is usually stored via cookies. If you use our services on a new device or in a different browser, or if you have deleted the cookies set by your browser, you will need to declare your refusal again.
The tracking methods shown only process personal data in pseudonymous form. A connection to a concrete, identified natural person—that is, a merging of the data with information about the bearer of the pseudonym—does not take place.
a. Tracking for the analysis and optimization of our services and their usage as well as for measuring the success of advertising campaigns and optimizing the display of advertisements
(1) Purpose of processing
The analysis of user behavior via tracking helps us to review the effectiveness of our services, optimize them, adapt them to users’ needs, and fix errors. Furthermore, it is used to statistically determine key figures about the use of our services (reach, usage intensity, users’ surfing behavior) based on uniform standard procedures and thus obtain market-wide comparable values.
Tracking to measure the success of advertising campaigns is intended to optimize our ads for the future and to enable marketers and advertisers to similarly optimize their ads. Tracking to optimize the display of advertisements aims to show users advertising tailored to their interests, increase the success of advertising, and thereby increase advertising revenues.
(2) Legal basis of processing
For services that make the behavior of affected persons on the internet traceable and when creating user profiles, informed consent according to the GDPR is required.
(3) The tracking methods used in detail
| Service name | Functionality | Option to prevent processing (Opt-out) | Data transfer to third countries? | If applicable, adequacy decision (Art. 45 GDPR) | Ggf. geeignete Garantien, (Art. 46 DSGVO) | If applicable, appropriate safeguards (Art. 46 GDPR) |
|---|
If you want to opt out of interest-based advertising, you can also visit the website http://www.youronlinechoices.com/de/, click on “Preference Management,” and follow the instructions to fully or selectively prevent the use of data for interest-based advertising by the service providers listed there. You will still receive advertising, but it will not be interest-based.
III. Data Subject Rights
Right to Object
If we process your personal data for direct advertising, you have the right to object at any time, with effect for the future, to the processing of your personal data for such advertising purposes; this also applies to profiling insofar as it is related to direct advertising.
You also have the right to object at any time, with effect for the future, to the processing of your personal data based on Article 6(1)(e) or (f) of the GDPR for reasons arising from your particular situation; this also applies to profiling based on these provisions. You can exercise the right to object free of charge. You can contact us using the contact details given in section I.2.
Right of Access
You have the right to know whether personal data concerning you is processed by us, which personal data it is, and further information pursuant to Article 15 GDPR.Right to Rectification
You have the right to demand that we immediately correct inaccurate personal data concerning you (Article 16 GDPR). Considering the purposes of processing, you have the right to demand the completion of incomplete personal data, including by providing a supplementary statement.Right to Erasure (“Right to be Forgotten”)
You have the right to demand that your personal data be deleted immediately if one of the reasons listed in Article 17(1) GDPR applies and the processing is not necessary for the purposes regulated in Article 17(3) GDPR.Right to Restriction of Processing
You have the right to request restriction of the processing of your personal data if one of the conditions in Article 18(1)(a) to (d) GDPR applies.Right to Data Portability
You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format. Furthermore, you have the right to have this data transmitted to another controller without hindrance by us or to have it transmitted directly by us if technically feasible. This applies whenever the data processing is based on consent or a contract and the data is processed automatically. This does not apply to data held only on paper.Right to Withdraw Consent
Where processing is based on your consent, you have the right to withdraw your consent at any time. The lawfulness of processing based on consent before its withdrawal is not affected.Right to Lodge a Complaint
In case of data protection violations, you have the right to lodge a complaint with the competent supervisory authority. The competent authority is the data protection officer of the federal state in which our company is located. A list of data protection authorities and their contact details can be found here: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
IV. Glossary
Processor:
A natural or legal person, authority, institution, or other body that processes personal data on behalf of the controller.Browser:
Software used to display web pages (e.g., Chrome, Firefox, Safari).Cookies:
The term “cookie” originally means “biscuit” in English, but on the web, it refers to a small text file stored locally on the user’s computer when visiting a website. This file stores data about the user’s behavior. When the browser visits the website again, the cookie sends stored information back to the web server to provide insights into the user’s browsing behavior. Cookies may store user settings or data collected independently by the website. Most browsers accept cookies automatically, but you can manage them via browser settings to disable, restrict, or delete cookies.Third Countries:
Countries not subject to the EU Data Protection Directive (countries outside the EEA).Personal Data:
Any information relating to an identified or identifiable natural person, including identifiers such as name, ID number, location data, online identifier, or characteristics specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.Pixel:
Also called tracking pixels, web beacons, or web bugs, these are small invisible graphics in emails or web pages that, when loaded, notify the server that the document was opened or the page visited. They often work with small programs like JavaScript to detect and transmit information such as cookie content, time, and page description.Profiling:
Any automated processing of personal data to evaluate certain personal aspects related to a natural person, especially concerning work performance, economic situation, health, preferences, interests, reliability, behavior, location, or movements.Services:
Our offerings to which this privacy policy applies.Tracking:
The collection and analysis of data regarding visitor behavior on our services.Tracking Technologies:
Tracking may occur via server logs or by collecting data from your device using pixels, cookies, and similar technologies.Processing:
Any operation or set of operations performed on personal data, whether automated or not, such as collection, recording, organization, structuring, storage, adaptation, retrieval, use, disclosure, alignment, restriction, erasure, or destruction.
Erhalten Sie Preisaktualisierungen,
Einkaufstipps und mehr!
©Alrights reserved by CoverChek