Login

Privacy statement

We treat all personal information as private and confidential

Privacy statement

We treat all personal information as private and confidential

This page contains information on the kind of data your Sparkasse gathers and how this data is used and protected.

I. Who is responsible for this website?

The data controller as defined by the General Data Protection Regulation (GDPR) is:

Ostsächsische Sparkasse Dresden
Güntzplatz 5
01307 Dresden
Deutschland
e-mail@ostsaechsische-sparkasse-dresden.de

(hereinafter also referred to as "Sparkasse", "we", "our" or "us")

If you have any questions regarding this privacy policy or about how we protect your personal data, please contact Sparkasse's data protection officer.

Dana Hoinicki
Datenschutzbeauftragte
Güntzplatz 5
01307 Dresden
Deutschland
Datenschutz-OSD@ostsaechsische-sparkasse-dresden.de

II. What is data processing?

When we process personal data, it means that we collect, store, transmit, delete or otherwise use the information. Personal data refers to information about natural persons who use this website to obtain information on Sparkasse's products and offers.

If you are already a Sparkasse customer, your data will be processed in the context of your business relationship with Sparkasse. You can find more information about this in our privacy policy. The privacy policy also provides information regarding other products and services that can be accessed via this website (for example, about data processing in the context of online banking).

Below you will find an overview of which data we collect when you visit this website and for what purposes the data is processed.

III. How is your data processed when visiting this website?

1. Data needed to display the website and ensure its stability and security

When you use our website for purely informational purposes, we collect the following data, which we require for technical purposes:

  • IP address of the device you are using
  • Name of the accessed file (specific page)
  • Date and time of access
  • Volume of data transferred
  • Access status (successful/unsuccessful)
  • Browser type and version as well as which operating system you use
  • URL of the previously visited page (so-called "referrer URL")

In accordance with Art. 6 para. 1 lit. f) GDPR, the processing of the above-mentioned data is necessary for the purposes of pursuing our legitimate interests. In the event of the unlawful use of this website, the data may also be used to identify potential violations.

In addition, this information will be analysed for statistical purposes as well as to improve our website. This will be done without creating personal user profiles.

2. Use of cookies and analysis services

This website uses cookies. Cookies are small text files which are stored on your device so that information can be retrieved again at a later date.

If you do not want cookies to be stored on your device, you can prevent this by configuring your browser settings accordingly. You can also delete any cookies that have already been stored. However, when deactivating technical cookies (strictly necessary cookies), the full functionality of the website may no longer be available.

a) Purpose and scope of data processing

Technical cookies:

We use technical cookies to improve the security of our website and to make it more user-friendly. The data collected by the technical cookies is not used to create user profiles. The following data is stored and transmitted using these cookies:

  • Current session ID
  • Items in the shopping cart or current application processes
  • Use of certain website content, including frequency or extent of use
  • Viewing of certain website content, e.g. product information
  • Settings relating to your regional Sparkasse branch
  • Settings relating to search functions on the website

Most of the technical cookies used are so-called "session cookies". These are automatically deleted at the end of your visit, i.e. when you close your session or browser. Some cookies, however, remain on your device until you delete them, or they expire (so-called persistent cookies have set expiration dates).

For the use of basic online banking without any additional convenience functions, the following cookies are essential:

  • JSESSIONID
  • IF6CONTEXT
  • IFCLONE

Analytical cookies:

We also use cookies that allow us to analyse your browsing behaviour on our website. This is done for the purposes of reach measurement and advertising. All of your data collected in this manner is pseudonymised by technical means and can no longer be directly attributed to you. This data will be stored separately from any other personal information we collect from you.

You can object to the use of analytical cookies and the associated analysis services. More information on how to object (opt out) can be found in the relevant sections below.

intelliAd

This website uses web analysis services and bid management technology provided by IntelliAd Media GmbH, Sendlinger Straße 7, 80331 Munich. Only anonymised usage data is collected, aggregated, stored and converted into pseudonymised user profiles. IntelliAd then provides us with various statistics based on this data.

Purpose of processing: IntelliAd is used to monitor and evaluate the success of our online marketing activities and to continuously optimise them.

Opt-out: You may object to the use of your data by IntelliAd by clicking on following opt-out link: https://login.intelliad.de/optout.php

adForm

This website uses web analysis services provided by Adform A/S, Wildersgade 10B, 1st Floor, DK-1408, Copenhagen, Denmark. Only anonymised usage data is collected, aggregated, stored and converted into pseudonymised user profiles. adForm then provides us with various statistics based on this data.

Purpose of processing: adForm is used to monitor and evaluate the success of our online marketing activities and to continuously optimise them.

Opt-out: You may object to the use of your data by adForm by clicking on following opt-out link: https://site.adform.com/privacy-center/platform-privacy/opt-out/

b) Legal basis, objection and deletion

The legal basis for the processing of technical cookies is Art. 6 para. 1 lit. b) of the General Data Protection Regulation (GDPR), as these are essential for making the website available.

The processing of data by means of other cookies is necessary for the purpose of pursuing our legitimate interests and on the basis of a balance of interests, which always takes your interests as the data subject into account (Art. 6 para. 1 lit. f) GDPR). Processing is necessary to pursue the above-mentioned legitimate interests, listed below:

  • Analysis and statistical evaluation of website use
  • Website optimisation
  • Providing personalised offers and content
  • Measuring the performance of advertising campaigns

3. Third-party applications

Google Maps

This website uses the map service Google Maps,  which allows the display of interactive maps and the use of the map feature directly on our website. The Google Maps service uses persistent cookies. When visiting the page on our website that uses Google Maps, Google will receive a notification that you have accessed the page. In addition, the information listed under Section III. 1 will be transmitted to Google. This takes place regardless of whether you are logged in to a Google user account. If you are logged in to Google, your data will be assigned to your user account. If you do not want the data to be assigned to your account, you will need to log out before accessing the map feature. Google stores your data as a user profile and utilises it for advertising, market research and/or to provide personalised services on their website. More specifically, such analysis is carried out (even for users who are not logged in) to provide targeted advertising and to provide other social network users with information about your activities on this website. You have the right to object to the creation of these user profiles. This right can be exercised directly with Google.

For more information regarding the purpose and extent to which Google collects, processes and uses data  as well as your rights in this regard and the settings available to protect your privacy, please see Google's privacy policy: https://www.google.de/intl/de/policies/privacy. Google also processes your information in the USA and does so within the framework of the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

Live chat

You can use the "Live Chat" feature on this website to contact us. The live chat feature is a service provided by talkevent Software GmbH on behalf of Sparkasse. Talkevent Software GmbH is based at Charlswerkstr. 13b, 51063 Cologne.

In order to prevent abuse and in addition to the information you enter, the following data is stored when using the chat assistant:

  • IP address
  • Date and time

The legal basis for the processing of this information is Art. 6 para. 1 lit. b) and f) of the General Data Protection Regulation (GDPR). The chat data will be deleted no later than 90 days after the chat.

Newsletter

To receive information on the latest offers and news, you can subscribe to Sparkasse's newsletter via this website. We will only send the newsletter with your consent or where we have a lawful basis for doing so. To this end, we have appointed the Sparkassen-Finanzportal GmbH, Friedrichstraße 50, 10117 Berlin as the service provider.

The so-called double opt-in procedure is used to register for the newsletter. Once you have registered, an email will be sent to the email address with which you registered, in which you will be asked to confirm your registration. If you do not confirm the registration within the time frame specified in the email, your details will be automatically deleted. Only if you confirm your registration within the specified time frame will your email address be saved for the purpose of sending the newsletter.

You IP address, as well as the date and time of registration, will also be saved. The purpose of this is to be able to provide proof of your registration (consent) and, if necessary, to identify any potential abuse of your personal information.

You may withdraw your consent to the receipt of our newsletter at any time. An unsubscribe link is included at the bottom of every newsletter.

The legal basis for this data processing is Art. 6 para. 1 lit a) and b) GDPR.

IV. Who receives your data?

Your information will only be shared with third parties insofar as you have consented to this or where we have a legal obligation to do so.In particular such recipients may include:

  • Law enforcement
  • Other Sparkassen Finance Group companies

Our service providers may also receive such data if they meet Sparkasse's special confidentiality requirements. In particular, these may include IT service providers, consulting services and companies in sales and marketing. The appropriate data protection agreements will be arranged with these service providers.

V. When will your data be deleted?

Should the data mentioned in this policy no longer be required for its original purpose, it will be deleted. In the event that the further processing of the data is – temporarily – required for other purposes, this will not apply.

Insofar as the storage period defined for individual services differs from the above, this information will be available in the description for each service.

VI. Will your data be transmitted to third countries or international organisations?

As a rule, the data we collect when you visit this website is not transmitted to international organisations or third countries (states outside the European Economic Area -EEA). For more information on the possible transmission of pseudonymised data by analysis services, please see the section "Analytical cookies".

VII. What are your rights with regard to the processing of your data?

You have the following rights concerning your personal information held by Sparkasse:

  • The right to information
  • The right to rectification or deletion
  • The right to restriction of processing
  • The right to data portability
  • The right to object or to withdraw consent

Information about your right to object in accordance with Art. 21 GDPR

1. Case-specific right to object

You have the right to object at any time, on grounds relating to your own particular situation, to the processing of your personal data based on Art. 6 para. 1 lit. e) GDPR (processing carried out in the public interest) or Art. 6 para. 1 lit. f) GDPR (data processing necessary for pursuing the legitimate interests of the controller); including profiling based on these provisions as defined by Art. 4 para. 4 GDPR.

Should you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for such processing which outweigh your personal interests, rights and freedoms; or where such processing serves in the establishment, exercise or defence of legal claims.

2. Objection to the processing of your data for the purposes of direct marketing by Sparkasse

In individual cases, we process your personal information for the purposes of direct marketing. You have the right to object at any time to the processing of your personal data for such marketing; this includes profiling insofar as it is related to such direct marketing.

Should you object to the processing of your data for direct marketing purposes, we will no longer process your personal data for such purposes.

The objection need not follow a particular form and should be addressed to:

Ostsächsische Sparkasse Dresden
Güntzplatz 5
01307 Dresden
Deutschland
e-mail@ostsaechsische-sparkasse-dresden.de

You also have the right to lodge a complaint with the following supervisory authority regarding the processing of your data:

Der Sächsische Datenschutzbeauftragte
Kontor am Landtag
Devrientstraße 1
01067 Dresden
Germany
Tel.: +49 351/493-5401
Fax: +49 351/493-5490
saechsdsb@slt.sachsen.de
http://www.datenschutz.sachsen.de

VIII. Is your data used for automated decision-making or profiling?

The data collected from visits to this website is not used for automated decision making as defined by Art. 22 GDPR.

We may process data captured when you visit our website in order to provide you with information and advice about products that are relevant to you. This processing may include an assessment of personal aspects for the purpose of needs-based communication and advertising, including market and opinion research. For more information, please see the section "Analytical cookies".

Date: May 2018

Data protection

Your Sparkasse treats all of the personal data that you provide when visiting this website as specified under the German Federal Data Protection Act (BDSG) and the legal regulations that govern electronic transactions.

Collection and use of data

Every time you visit your Sparkasse's website and open a file we collect data about this process. This data comprises:

  • Your IP address
  • The website from which you have navigated to this site
  • The pages you view and
  • The date and duration of your visit

Sparkasse only uses this information for statistical purposes and in order to improve this website and
does not create any personal user profiles when doing so, or pass on this information to any third parties.

Use of cookies

Cookies are small text files that the Sparkassen web server sends to your PC where they are stored on your hard drive. We use two types of cookies. One of these is a temporary one that is sent to your PC every time you use your Sparkassen's online banking services. This cookie is designed to make online banking more secure and is automatically deleted from your PC as soon as you log out.

The other type of cookie is designed to identify your local Sparkasse. This cookie ensures that all of the offers and information you are provided with are specific to your Sparkasse. If you wish, you can stop this cookie from being stored on your PC by changing the corresponding settings under "Third party cookies" on your web browser.

Storage of anonymised user data  

This website uses the web analytics and bid management service provided by intelliAd Media GmbH, Sendlinger Straße 7, 80331 Munich, Germany and web statistics and counter system provided by Sparkassen-Finanzportal GmbH, Friedrichstraße 50, 10117 Berlin, Germany. These applications only record, aggregate and store anonymised data in anonymised user profiles. In addition to the above, you also have the right to refuse access to your data in accordance with Article 15 of the latest version of the  German Telemedia Act.

Google maps

Your Sparkasse's branch locator uses Google Maps API from Google Inc. to show the location of branches on an interactive map. When using Google Maps on the Sparkassen website, user information and a user's IP address will be transferred and stored on Google's servers in the USA. 

Under its data protection policy, Google does not pass this information on to third parties, but does make exceptions to this rule. This means that data collected in this way may be provided to third party where such is required under USA legislation or where such data is processed by third parties on Google's behalf. More information on Google Inc.'s data protection policy: http://www.google.com/policies/privacy/.

You can also disable Google Maps to stop your personal data from being transmitted to Google. To do so, disable Java Script in your browser. Please note that doing so means that it will no longer be possible to use our branch locator.

Other links to external service providers

The contents of other third party websites to which we may provide links are not covered by our privacy statement. Your Sparkasse furthermore does not have any knowledge or influence over the data the operators of these websites collect on these pages. Please refer to the privacy statements on these websites for more information on this.

Encrypting personal data

All of the information you provide to your Sparkasse in message and application forms are securely transmitted using the latest internet security technology and used only for the purposes specified.

Your Sparkasse uses a SSL (Secure Sockets Layer Protocol) based data transmission procedure. This protocol enables all of the data that is transmitted between your browser and the Sparkasse's server to be fully encrypted. This protects your data from being manipulated or accessed by unauthorised third parties during transmission.

Use of data

We only use the personal data we collect for the purpose it is provided and only share it to the extent you have agreed to. We only collect and disclose personal data to government agencies and authorities where legally required. All Sparkassen staff are legally bound to protect banking information and personal data.

International transfer regulations

When making international transfers and individual express money transfers, the data on the transfer order is transmitted to the beneficiary's financial institution via the only global provider of secure financial messaging service, the Society for Worldwide Interbank Financial Telecommunication (SWIFT), located in Belgium.

Under the agreement between the European Union and the United States of America regarding the processing of payment transfer data and its transmission from the European Union to the United States, the US authorities have been granted access to transfer data transmitted using SWIFT to support it in its fight against international terrorism and have been given permission to store the same for up to five years. This does not apply to transfers made within the SEPA area.

Right to information and deletion

According to Article 3 of the  German Federal Data Protection Act (BDSG), you, as a user, have the right to information on the personal data that your Sparkasse has stored on you.

You also have the right to revoke any consent regarding the collection, processing and use of your personal data at any time with future effect you may previously have granted. In this case, all of the personal data on you held by your Sparkasse will be deleted. This does not apply to data required for banking purposes, such as your account details.

Please contact our data protection officer for more information on how your personal data is processed or other questions about data protection in general, or if you wish to make a complaint.

Data protection officer:
Ostsächsische Sparkasse Dresden
Güntzplatz 5
01307 Dresden
Datenschutz-OSD@ostsaechsische-sparkasse-dresden.de 

i