DE

Privacy Policy

A. Privacy policy

Personal data that you provide to us when visiting this website will be processed in accordance with the provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other legal provisions applicable to electronic commerce.


B. Name of the data controller

Westend Bank AG
Wendelsweg 64
60599 Frankfurt am Main
T: +49 69 660 595 6 00
F: +49 69 660 595 6 99
E: info@westendbank.de


C. Name and address of the data protection officer

GAR Gesellschaft für Aufsichtsrecht und Revision mbH
Auditing company — Data Protection Officer
Stichlingstraße 1
60327 Frankfurt am Main
E: datenschutz@gar-wpg.com


D. Provision of the website and log files

1. Description and scope of data processing

Every time you visit our website and every time you access a file, data about this process is logged. This is:

  • Your IP address,
  • Information about the browser type and version used
  • the operating system of the user's end device
  • the website you came from, the pages you click on, and
  • the date and duration of the visit.

2. Legal basis for data processing

The legal basis for the temporary storage of this data and the log files is Art. 6 (1) (f) GDPR (legitimate interests of us as the responsible website operator)

3. Purpose of data processing

We analyse this information for statistical purposes and to improve your website without creating personal user profiles. The data is not analysed for marketing purposes. It is also not shared with third parties.

4. Duration of storage

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. If the data is collected for the provision of the website, it is deleted when the respective session has ended. If the data is stored in log files, it is deleted after no more than seven days.


E. E-mail contact

1. Description and scope of data processing

On our website you have the option of contacting us by e-mail. In this case, the information you provide will be stored for the purpose of processing your contact. It will not be shared with third parties. The data collected in this way is also not compared with data that may be collected by other services on our site.

2. Legal basis of the processing

The legal basis for the processing of this data, which is transmitted in the course of sending an enquiry, is Art. 6 (1) (f) GDPR (legitimate interests of us as the controller).

If the request concerns the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) (f) GDPR (fulfilment of a contract).

3. Purpose of the processing

The sole purpose of processing this personal data is to process the contact. The data will not be shared with third parties.

4. Duration of storage

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is the case for data for the fulfilment of a contract or for the implementation of pre-contractual measures if the data is no longer required for the implementation of the contract. Even after conclusion of the contract, it may be necessary to store the contractual partner's personal data in order to fulfil contractual or legal obligations (e.g. tax retention obligation)

5. Right to object

The user has the option to object to data processing at any time. The objection should be sent to the following e-mail address: datenschutz@gar-wpg.com

All personal data stored in the course of the contact us will be deleted in this case.


F. Use of cookies

1. Description and scope of data processing

We use so-called cookies on our website. These are small text files which your Internet browser stores on your computer. They serve to recognise multiple use of our website by the same user / Internet connection owner. They serve to optimise our Internet presence and our offers. These are mostly so-called session cookies, which are deleted again at the end of your visit.

Some cookies provide information to recognise you automatically. This recognition is made possible by the IP address stored in the cookies.

2. Legal basis of the processing

The legal basis for the processing of personal data using cookies is Art. 6 (1) (f) GDPR. (legitimate interests of us as the controller).

3. Purpose of the processing

The purpose of using technically necessary cookies is to simplify the use of the website for users. Some features of our website cannot be offered without the use of cookies. This requires the Internet browser to be recognised even after a website change.

4. Duration of storage

You can delete individual cookies or the entire cookie inventory via your browser settings. Of course, you can also view our website without cookies. Internet browsers are usually set to accept cookies. In general, you can deactivate the use of cookies at any time via your browser settings. Please use the help functions of your internet browser to find out how to change these settings. Please note that individual features of our website may not work if you have deactivated the use of cookies.


G. Other links to external providers

Insofar as there are links to websites of other providers, this privacy policy does not apply to their content. We have no knowledge of and no influence over what data the operators of these sites may collect. Information can be found in the privacy notice of the respective page.


H. Encryption of personal data

All information that you entrust to us in the dialogue and application forms is transmitted securely using modern Internet technology and used exclusively for the intended purpose.

We use a transmission method based on the SSL protocol (Secure Sockets Layer protocol). The latter enables encryption of all data traffic between your browser and our server. This protects your data from manipulation and unauthorised access by third parties during transmission.


I. Purpose limitation of your data

Your personal data will only be used for the purpose for which you have provided it to us or for the use and disclosure of which you have given your consent. Data will only be collected from or transferred to state institutions and authorities within the framework of mandatory national legislation. Our employees are obliged to maintain confidentiality and data secrecy.


J. Rights of the data subject

If a user's personal data is processed, the user is a "data subject" within the meaning of the GDPR. You have the following rights vis-à-vis us as the controller:

  • Right to information
  • Right to rectification
  • Right to restriction of processing
  • Right to cancellation
  • Right to information
  • Right to data portability
  • Right to object
  • Right to revoke the declaration of consent under data protection law
  • Right to lodge a complaint with a data protection authority

If you have given us your consent, you can revoke it at any time with effect for the future.

You may lodge a complaint with a supervisory authority at any time, e.g. with the competent supervisory authority in the federal state of your place of residence or with the authority responsible for us as the controller.


K. Data protection information - handling of your data in accordance with Art. 13, 14 and 21 GDPR

In addition to the website, we also process personal data as part of our business relationship. Information on this data processing and your data protection claims and rights, some of which also relate to data processing on our website, can be found in our privacy policy.

There you will find information on the following topics:

  • Who is responsible for data processing and who can I contact?
  • What sources and data do we use?
  • What do we process your data for and on what legal basis?
  • Who receives my data?
  • How long will my data be stored?
  • Is data transferred to a third country or an international organisation?
  • What data protection rights do I have?
  • Do I have an obligation to provide data?
  • To what extent is there automated decision-making in individual cases?
  • To what extent will my data be used for profiling (scoring)?