Your information
is safe with us

Privacy Policy

Real Garant Versicherung AG respects your right to informational self-determination and privacy. We adhere to this principle when developing advertising offers as well as when processing customer data.
We respect your right to privacy, in particular your right to information regarding data stored about you. If you have questions regarding privacy, please contact our company’s data protection officer.


Technical data

Information on the use of our website

For technical and organizational reasons, our web servers store data related to the use of our web pages, including the name of the internet service provider, the name of the internet page from which you accessed our page, which of our web pages you visit and the duration of your visit. We perform statistical analysis of this data in order to optimize our web pages.

Information on using the mobile app

In addition to our online offer, we provide you with a mobile app that you can download to your mobile device. In the following, we also inform you about the processing of personal data when using our mobile app.

Below you will only find information that is specifically relevant to the app:

When you download the mobile app, the required information is transferred to the App Store, i.e. in particular the user name, email address and customer number of your account, time of download, payment information and the individual device identification number. In addition, the App Store still independently collects various data and provides you with analysis results.

We have no influence on the processing of this data and are not responsible for it. We only process the data insofar as it is necessary for downloading the mobile app to your mobile device.

When using the mobile app, we process the personal data described below. This is technically necessary in order to be able to use all functions of the mobile app and to ensure the stability and security of the mobile app. The legal basis is Art. 6 para. 1 p. 1 lit. f DS-GVO:

  • Upload of image files, such as vehicle registration data, vehicle images or details of favorites.

The aforementioned personal data can be uploaded from the app to the backend.

Furthermore, we need your device identification (UDID for Apple or DeviceID for Android) to provide the services of the app. In addition, information such as the unique number of the end device (IMEI = International Mobile Equipment Identity) can be collected by the app and its assignment is possible for network operators.

Cookies

Cookies are alphanumeric identifiers that are transmitted to your computer’s hard disk from the web browser. Real Garant Versicherung AG does not use cookies.
However, the system generates cookies independently, which are stored on your computer’s hard disk by the web browser. These session (transient) cookies are used to manage an internet session. That way, for example, you do not have to enter personal data each time you fill out a form. In connection to the use of our web pages, we use persistent (permanent) cookies to store data about which pages you visit within our website (path tracking). We perform statistical analysis of this data in order to optimise our web pages. Your data is used exclusively for statistical purposes and is not personalised.

Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses cookies to analyse how users use our site and our online services. The information generated by the cookie about your use of the website is typically transmitted to and stored by Google on servers in the United States.
On this website, IP anonymisation has been activated so that the IP address of Google users within Member States of the European Union or in other states party to the Agreement on the European Economic Area is truncated in advance.
Only in exceptional cases will the full IP address be transferred to a server from Google in the USA and truncated there. Google uses this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage.
Google will not associate the IP address collected from your browser by Google Analytics with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use the full functionality of this website.
Users can also prevent Google from tracking data generated by the cookie and related to its use (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available through the following link. The current link is: http://tools.google.com/dlpage/gaoptout?hl=de

Personal data

We store your personal data only if you voluntarily provide it within the context of one of our applications (e.g. address change, offer enquiry, damage report). Your data will be processed exclusively for the purpose for which you provided it.
Your data may be passed on to reinsurers for the purpose of risk assessment and handling reinsurance as well as assessing risk and claims to other insurers and/or service providers.
We use modern encryption methods for the transmission of your data. We currently use SSL encryption (Secure Socket Layer), which is recommended by the Federal Office for Information Security. This is the best technical standard available today. That way, your data cannot be read or changed third parties during transmission to us.

What a secure connection looks like:
You can determine whether a website securely transmits personal data by the internet address (URL), which should begin with “https://”. You can tell whether your data is safe during transmission in your browser settings: Internet Explorer and Mozilla Firefox indicate a safe connection with a lock in the right corner of the address bar. In Netscape Navigator, the open lock at the bottom left of the browser’s address bar turns into a closed lock.

Confidentiality

We ensure the protection of your personal data through a variety of organisational and technical measures. Our employees are obliged to protect your data.

Rights of affected parties

If your personell data is processed, then you are an affected person according to GDPR and you are entitled the following rights against the responsible company:

You may request information related to your stored personal data from the above address. Furthermore, under certain preconditions, you may request correction or deletion of your data. You may additionally be entitled to a limitation on processing of your data as well as to surrender of the data supplied by you in a structured, usual and machine-readable format.

Right of objection

You are entitled to object to processing of your personal data for the purposes of direct advertising without providing any indication of reasons. If we process your data for the purpose of safeguarding legitimate interests, you may object to such processing on the basis of reasons connected to your particular situation. We shall then no longer process your personal data unless we are able to evidence mandatory protectable reasons for processing which outweigh your interests, rights and freedoms or unless processing serves the assertion, exercise or defence of legal claims.

Right of revocation of the data protection declaration of consent

You have the right to revoke your data protection declaration of consent at any time. The lawful processing of data until this point of time is not affected by the revocation.

Right of appeal

You have the option of filing an appeal with the aforementioned data protection officer.

Besides further administrative proceedings or judicial remedies, you are entitled to complain at a supervisory authority, especially in the member state of your residence, your workplace or the place of the suspected violation, if you belief that the processing of your personell data violates the GPDR regulations.

The responsible data protection supervisory authority is:

Der Baden-Württembergische Datenschutzbeauftragte
Postfach 10 29 32
D-70025 Stuttgart

Data processing organisation
The responsible organisation for processing personell data on realgarant.com and the refering websites of the Real Garant group according to the GDPR and further data protection regulations is:

Real Garant Versicherung AG
Marie-Curie-Str. 3
D-73770 Denkendorf
Telephone: 0711 49063 0
Fax: 0711 49063 118
E-Mail: info@realgarant.com

Contact data of the data protection officer

Zurich Gruppe Deutschland
Konzerndatenschutz
D-50427 Köln
E-Mail: dataprotection@realgarant.com

Information on use of your personal data

This document provides information on the processing of your personal data by Real Garant Versicherung AG with regard to Germany and your rights under data protection law.

Data processing organisation

Real Garant Versicherung AG/
Real Garant GmbH Garantiesysteme
Marie-Curie-Str. 3
73770 Denkendorf
Telephone: 0711 49063 0
Fax: 0711 49063 118
E-Mail: info@realgarant.com

Our data protection officer can be contacted at the following address:

Zurich Gruppe Deutschland
Konzerndatenschutz
D-50427 Köln
E-Mail: datenschutz@zurich.com.

Purpose and legal basis of data processing

We process your personal data in compliance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act [Bundesdatenschutzgesetz – BDSG], the relevant terms under data protection law of the German Insurance Contracts Act [Versicherungsvertragsgesetz – VVG] and all further relevant laws.

When you make an application for insurance coverage, we require the information provided by you in such application for the purpose of concluding the contract and in order to assess the risk to be assumed by us. If an insurance contract is concluded, we shall process such data for the purpose of executing the contractual relationship, e.g. in order to issue your policy or for invoicing purposes. We require details of a claim, for instance, in order to be able to examine whether an insured event has arisen and the amount of loss suffered.

Conclusion and execution of an insurance contract is not possible without processing of your personal data.

In addition, we require your personal data for the purpose of generating insurance-specific statistics, e.g. for establishing new tariffs or for the purpose of fulfilling regulatory requirements. We shall use the data from all contracts existing with Real Garant Versicherung AG and Real Garant GmbH Garantiesysteme for the purpose of an overall view of the customer account relationship, for instance for the purpose of advice, contractual adjustment or supplementation, for decisions on gestures of goodwill or for the comprehensive provision of information.

The legal basis for such processing of personal data for pre-contractual and contractual purposes is Article 6 (1) b GDPR.

We shall also process your data in order to protect legitimate interests of ourselves or third parties (Article 6 (1) f GDPR). This may in particular be necessary:

  • For the purpose of ensuring IT security and IT operations;
  • For the purpose of an overall consideration of your customer account relationship with Real Garant Versicherung AG and Real Garant GmbH Garantiesysteme;
  • In order to prevent and identify criminal offences; in particular, we shall use data analyses in order to identify indications which may suggest insurance fraud.

In addition, we shall process your personal data in order to fulfil statutory obligations, such as regulatory requirements, duties under commercial and tax law to retain documentation, or our own duty to provide advice. In such event, the legal basis of processing shall consist of the respective statutory provisions in conjunction with Article 6 (1) c GDPR.

In the event that we wish to process your personal data for a purpose not stated above, we shall inform you thereof in advance within the framework of the statutory rules.

Categories of personal-data recipient

Reinsurers:

We insure risks assumed by us with specialist insurance undertakings (reinsurers). For this purpose, it may be necessary to transfer your contractual data and, where relevant, claim details, to a reinsurer in order for the latter to form its own impression as to the risk or the claim in question. In addition, it is possible that the reinsurer may support our company in assessing a risk or benefit as well as in evaluating procedures, based on its particular expertise. We shall transfer your data to the reinsurer only provided this is necessary for the purpose of fulfilment of our insurance contract with you and only to the extent required in order to protect our legitimate interests.

Brokers:

Insofar as you receive service from a broker in relation to your insurance contracts, your broker shall process the application data, contractual data and claim details required for the purpose of concluding and executing a contract. Our company shall also transfer said data to the brokers providing services to you insofar as such brokers require said information in order to provide services to you and advise you on all insurance and financial-service matters.

Data processing within the corporate group:

Specialised companies/divisions of our corporate group undertake certain data-processing tasks on a centralised basis on behalf of Real Garant Versicherung AG. You will find in the overview of service providers of Real Garant Versicherung AG set out in the Appendix hereto a list of the companies participating in centralised data processing.

External service providers:

In order to fulfil our contractual and statutory duties, in some instances we use external service providers.

You will find a list of the contractors and service providers with which longer-term business relationships exist in the overview of Real Garant Versicherung AG’s service providers in the Appendix hereto.

Further recipients:

in addition, we may transfer your personal data to further recipients, such as official bodies, for the purpose of fulfilling statutory duties of disclosure (e.g. social insurance providers, tax authorities or criminal prosecution authorities).

Duration of data storage

We shall delete your personal data as soon as it is no longer required for the aforementioned purposes. In this context, it may be that personal data is retained for the period in which claims may be asserted against our company (statutory limitation period of 3 or up to 30 years). In addition, we shall store your personal data insofar as we are under a statutory obligation to do so. Corresponding duties of documentation and retention are contained inter alia in the German Commercial Code [Handelsgesetzbuch – HGB], the Fiscal Code [Abgabenordnung], and the Money Laundering Act [Geldwäschegesetz]. According thereto, retention periods may be up to 10 years.

Rights of affected parties

You may request information related to your stored personal data from the above address. Furthermore, under certain preconditions, you may request correction or deletion of your data. You may additionally be entitled to a limitation on processing of your data as well as to surrender of the data supplied by you in a structured, usual and machine-readable format.

Right of objection

You are entitled to object to processing of your personal data for the purposes of direct advertising without providing any indication of reasons. If we process your data for the purpose of safeguarding legitimate interests, you may object to such processing on the basis of reasons connected to your particular situation. We shall then no longer process your personal data unless we are able to evidence mandatory protectable reasons for processing which outweigh your interests, rights and freedoms or unless processing serves the assertion, exercise or defence of legal claims.

Right of appeal

You have the option of filing an appeal with the aforementioned data protection officer. In addition, you have the right of appeal to a data protection authority. The competent data protection authority for our company is:

Der Baden-Württembergische
Datenschutzbeauftragte
Postfach 10 29 32
70025 Stuttgart

Data transfer to a third country

In the event that we transfer personal data to service providers outside the European Economic Area (EEA), transfer shall only take place insofar as the EU Commission has confirmed that such third country has a reasonable level of data protection or that other reasonable data protection guarantees (e.g. binding intracompany data protection rules or EU standard contractual clauses) are in place. Detailed information in this regard as well as on the level of data protection at our service providers in third countries is contained in the overview of service providers in the Appendix.

Overview of service providers of Real Garant Versicherung AG

We shall process your personal data in accordance with the rules of conduct governing the handling of personal data by the German insurance industry and the consent given by you as appropriate within the framework of your insurance application or benefit handling. This shall also comprise the transfer of data to service providers in so far as required for service provision. This list names such service providers as well as categories of service provider.

Individual service providers may also be based outside the European Economic Area. Data transfer to such service providers may for instance take place if this is imperative for the purpose of fulfilling the contract concluded with you. Otherwise, such transfer shall only take place if a reasonable level of data protection at the headquarters of the service provider is ensured on the basis of an adequacy ruling by the European Commission (as, for instance, in the case of Switzerland) or on the basis of suitable guarantees, in particular adoption of the standard data protection clauses enacted by the European Commission (details of which may be obtained from us). Service providers/categories headquartered outside the European Economic Area are identified with: 1.

  • Real Garant GmbH Garantiesysteme
  • Zurich Insurance plc subsidiary for Germany

Service providers working for the above group companies and whose principal activity is data processing

Service providerType of work contracted
Zürich Beteiligungs-Aktiengesellschaft (Germany)Central Services(z.B. Legal & Tax, Audit)

Categories of service provider working for the above group companies and whose principal contractual activity does not consist in the processing of personal data or which only work occasionally

Service provider categoryType of work contracted
Disposal CompaniesDisposal of files/data carriers
Assistance-Suppliers1Assistance services
Call-CenterTelephone services
Printing companyPrint service providers (Print/Postal shipping)
Other Experts and testing services providersCreation of expert assessments as well as consulting in specific cases
IT- and telecommunications service providersIT-Services (z.B. IT, telecommunication, network, maintenance)
Personnel secondment companiesPostal input management/Document-Management
Marketing-AgenciesMarketing campaigns
Law firmsLegal services
ReinsurerIntegration in the risk und claims assessment in specific cases
Claims service providers/Restoration/WorkshopsSupport in claims handling
Translators and interpretersTranslations
External AuditorsAuditing services
Credit insititutesCredit note / direct debit

Note: In so far as service providers are not engaged as processers bound by strict instructions, but have their own decision-making authority (such as, for instance, typically, in the case of experts), your personal data shall not be transferred to such service providers if you object to such transfer and are able to show that, in a particular situation, by way of exception, your protectable interests outweigh the interests of the transferring company.

Dated: 05/2018

Overview of service providers of Real Garant GmbH Garantiesysteme

We shall process your personal data in accordance with the rules of conduct governing the handling of personal data by the German insurance industry and the consent given by you as appropriate within the framework of your insurance application or benefit handling. This shall also comprise the transfer of data to service providers in so far as required for service provision. This list names such service providers as well as categories of service provider.

Individual service providers may also be based outside the European Economic Area. Data transfer to such service providers may for instance take place if this is imperative for the purpose of fulfilling the contract concluded with you. Otherwise, such transfer shall only take place if a reasonable level of data protection at the headquarters of the service provider is ensured on the basis of an adequacy ruling by the European Commission (as, for instance, in the case of Switzerland) or on the basis of suitable guarantees, in particular adoption of the standard data protection clauses enacted by the European Commission (details of which may be obtained from us). Service providers/categories headquartered outside the European Economic Area are identified with: 1.

  • Real Garant Versicherung AG
  • Zurich Insurance plc subsidiary for Germany

Service providers working for the above group companies and whose principal activity is data processing

Service providerType of work contracted
Zürich Beteiligungs-Aktiengesellschaft (Germany)Central Services(z.B. Legal & Tax, Audit)

Categories of service provider working for the above group companies and whose principal contractual activity does not consist in the processing of personal data or which only work occasionally

Service provider categoryType of work contracted
Disposal CompaniesDisposal of files/data carriers
Assistance-Suppliers1Assistance services
Call-CenterTelephone services
Printing companyPrint service providers (Print/Postal shipping)
Other Experts and testing services providersCreation of expert assessments as well as consulting in specific cases
IT- and telecommunications service providersIT-Services (z.B. IT, telecommunication, network, maintenance)
Personnel secondment companiesPostal input management/Document-Management
Marketing-AgenciesMarketing campaigns
Law firmsLegal services
Claims service providers/Restoration/WorkshopsSupport in claims handling
Translators and interpretersTranslations
External AuditorsAuditing services
Credit insititutesCredit note / direct debit

Note: In so far as service providers are not engaged as processers bound by strict instructions, but have their own decision-making authority (such as, for instance, typically, in the case of experts), your personal data shall not be transferred to such service providers if you object to such transfer and are able to show that, in a particular situation, by way of exception, your protectable interests outweigh the interests of the transferring company.

Dated: 05/2018