Privacy and Information Security
We know that protecting your private sphere when using our website is an important concern. We take our duty to ensure that your data remains confidential very seriously, and we comply with the applicable provisions governing data protection law. We use suitable technology to conduct a dialogue with you and to safeguard your data. ERGO is aware that you are protecting your privacy when using our website is a major concern. We take the protection of your personal data very seriously. It is us as insurer a fundamental concern to ensure the confidentiality of the data our customers and visitors Internet pages are entrusted.
1. Area of application
The following data protection information applies to the online prediction game for Munich RE Group staff and sales partners. This website contains links to third-party websites (external links). These websites are subject to the liability of the respective operators. Should it come to your attention that links on our website refer to websites with content that violates applicable law, please contact us at the following email address:
We will immediately remove these links from our website. ERGO Group AG accepts no responsibility for the topicality, correctness, completeness or quality of the information provided on other sites.
2. How we use your personal details
In the following you can read how we use and process your personal details in the context of the above-mentioned prediction game, and which you are entitled to according to the data protection law.
2.1. Who is responsible for data processing and who is the data protection officer?
The party responsible for data processing is:
ERGO Group AG
You can get in touch with our data protection officer at the above address by sending any correspondence to -Datenschutzbeauftragter- or at the email address email@example.com.
2.2. Which data categories do we use and how do we collect this information?
We collect the minimum personal data needed to take part in our prediction game. We collect this data directly from you.
2.3. What do we need these data for?
We will use your personal data exclusively for the competition or in order to correspond with you about the prediction game. In addition, we will use your data for internal communication concerning the prediction game on the Munich Re Group intranet.
Should we intend to use your personal data for an as-yet unspecified purpose, we will inform you in advance.
2.4. What is the legal basis for your personal data to be processed?
We process your personal data in compliance with the provisions of the European Data Protection Ordinance (DSGVO), the Federal Data Protection Act (new) (BDSG) and all other relevant laws for processing personal data.
The legal basis for the processing of your data in the context of the prediction game is the consent you have given us.
2.5. Who can access your data?
Your personal data will only be used in connection with this prediction game.
Within the team responsible for organising the prediction game, your data will be only passed on to those persons and departments who are responsible for the respective process. There is a very clear division of duties and authorizations throughout the team. We reserve the right to share your information with service providers for the purpose of conducting the prediction game. The integration of service providers is necessary, for instance for the administration and maintenance of IT systems. Our service providers for the prediction game are:
Website hosts Hitcom new media GmbH, who resell the server from their provider Domainfactory GmbH. The contact person for website operations is Holger Totzke.
Furthermore, this data can be forwarded to group companies, e.g. as part of corporate communications or group management.
2.6. Will your data be transferred to a third country?
If personal data are transferred to service providers or group companies outside the European Economic Area (EEA) we will only transfer your personal data to countries that have been found to provide an adequate level of protection for personal data by the EU Commission or if other appropriate data protection guarantees (e.g. the agreement of EU standard contract clauses, Privacy Shield) exist. You can also request the information under the contact information provided further above.
2.7. How do we protect your personal data?
We take appropriate technical and organisational security precautions in compliance with state-of-the-art technology to protect data against accidental or intentional manipulation, loss, destruction or against access by unauthorised persons. We use SSL (Secure Socket Layer) encryption to protect all data you enter in the forms on the website. This SSL connection protects your data from unauthorized access by third parties during transmission. For your own safety, please always use these forms. If you send us unencrypted data in an ordinary, unsecured e-mail, unauthorized persons may gain access to your data or modify it as it is transmitted over the internet.
2.8. What are your rights with regard to the personal data that we hold?
You can write to us at the above address and request to see which personal data we have saved. Under certain circumstances you are entitled to have us correct or delete your details. You are also entitled to restrict the processing of your data and can ask us to disclose to you all your personal data in a structured, standard and machine-readable format.
2.9. Right to objection
If we process your data to protect legitimate interests, you may object to such processing for reasons arising from your particular situation. We will then no longer process your personal data unless we can prove compelling reasons worthy of legal protection that outweigh your interests, rights and freedoms, or the data is used to assert, exercise or defend legal claims.
We process your data on the basis of the consent you provided; you are entitled to revoke this consent at any time with effect for the future.
2.10. Where can you file a complaint?
Should you have a complaint, you can contact the data protection officer (see above for contact details) or a data protection supervisory authority. The data protection supervisory authority responsible for ERGO is:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
2.11. How long will your personal information be stored?
We delete your personal data once it is no longer needed for the purpose described above. The duration depends on legal proof and storage obligations, which are regulated among other things in the commercial code, tax laws and the tax code. The general duration for storage of data is usually up to ten years. In addition, we may store your personal data for as long as you are legally entitled to file claims against us (statutory limitation period of three years or up to thirty years).
2.12. Are you obligated to share your personal information with us?
You are not obliged to provide personal data when using the website. However, there are services for which we require personal data from you to enable you to participate in the prediction game, e.g. name and email address. In addition, players will receive emails (e.g. tip reminders) as part of the game; this service can be cancelled individually at any time.
From time to time, the development of our website and changes in technology will require us to amend our data protection policy. Please note the current version of our data protection policy whenever you visit the website.
3. List of service providers
The list of service providers lists the companies who process personal data on behalf of ERGO and Munich RE. In individual cases, you are entitled to object to the transmission of your data to the service providers listed, stating your reasons. We will then check whether, due to your specific personal situation, your legitimate interest in objecting to data transmission takes precedence.
The following service providers process personal information for the prediction game:
(1) Holger Totzke Software, Holger Totzke, 44625 Herne
(2) hitcom new media GmbH, 78655 Dunningen
4.2. Data transmission and encryption
SSL (Secure Socket Layer) encryption technology with a key length of at least 128 bits is used to transmit any data or messages you send to ERGO.
5. How we handle emails
ERGO will use the email address you have provided in order to send you emails with the requested information. We only send personal or confidential information in encrypted form and, if this is not possible, by ordinary mail. ERGO will store the email if the content of your message is relevant to a contractual relationship. The email address will only be stored for correspondence with you and will not be passed on to third parties. You will not receive any unsolicited emails from us. If you do receive an unsolicited email purporting to come from us, it is fake and should be deleted. Before sending ERGO an unencrypted email, please bear in mind that it is not protected against unauthorised access, falsification, etc. during transmission. For this reason, we recommend that you use our contact form if you wish to send a message to ERGO.