Privacy
Our Privacy Information
Our privacy notice applies to all websites managed by die Bayerische. These websites may contain links to other providers, and our privacy principles do not extend to those sites. The General Data Protection Regulation, the German Federal Data Protection Act and the German Telemedia Act serve to protect the right of individuals to determine how their personal data is used. Compliance with the legal protection provisions is ensured by the company data protection officer and the internal audit department.
Data protection information in accordance with the General Data Protection Regulation (GDPR)
With this notice, we are informing you and any other data subjects about the processing of your personal data by the companies of the Bavarian and the rights to which you are entitled under data protection law. Please inform any other data subjects (e.g. insured persons, beneficiaries, contributors, etc.) accordingly.
Information on the processing of personal data
Data protection principles in detail
1. Anonymity:
You can visit our generally accessible web pages freely and anonymously and leave them at any time and from any location.To optimize our website, the domain name or IP address of your internet provider, the operating system of your PC and your browser type, as well as the website from which you are visiting us, the access date and the duration are automatically stored without any reference to your person being established.
2. Cookies
The cookies we use enable us to optimize our website according to your needs. They are not used for personal purposes and are automatically deleted from your hard drive after their period of validity has expired. You can use your browser settings to determine whether and how you allow cookies to be used on your computer.
3. Online services
If you provide us with personal data as part of our online services, such as submit personal data, such as a claim or a change of address, we process this data for the purpose for which you have provided it. We use a state-of-the-art security procedure to transmit the data you enter.
Explanations and notes on data collection
For consent to the collection and use of health data and a declaration of release from the duty of confidentiality, you will find a sample template currently used in health, life and accident insurance.
If you have any further questions about data protection, you can contact the data protection officer of BY die Bayerische Vorsorge Lebensversicherung a.G. and its subsidiaries:
BY die Bayerische Vorsorge Lebensversicherung a.G.
Data Protection Officer
81732 Munich
datenschutz@diebayerische.de
Code of Conduct
The German Insurance Association (GDV) has developed a code of conduct for data processing in the insurance industry in consultation with its member companies. The content was jointly developed by the GDV with consumer protection associations and data protection supervisory authorities. The Berlin Data Protection Officer has approved the code of conduct.
The Code of Conduct substantiates the regulations of the Federal Data Protection Act for insurance companies. It creates a sector-wide data protection standard and promotes compliance with data protection regulations.
The insurance companies of die Bayerische joined this code of conduct on May 1, 2015 and are therefore committed to complying with it.
You can find the text of the Code of Conduct here.
Service provider list
We do not carry out certain tasks ourselves, such as risk assessment, claims processing or telephone customer care, during which your health data may be collected, processed or used. Instead, we transfer the completion of these tasks to another company of die Bayerische or another agency. If your data protected under Section 203 of the German Penal Code (StGB) is passed on in this context, we require your release from confidentiality for us and, if necessary, for the other parties.
We maintain a continuously updated list of the bodies and categories of bodies that collect, process or use health data for us in accordance with the agreement, stating the tasks transferred.
For the current overview, please refer to our service provider list.
Analytical tools and tracking tools – Category 1
RudderStack
To ensure the lawful use of tracking services such as analysis and marketing services, we use the tracking proxy function of the Customer Data Platform (CDP) from RudderStack, Inc. (96 S. Park Street, San Francisco 94107, USA). The tracking proxy function enables us to avoid direct access by the third-party providers we use to users' devices and ensure complete control over individual data parameters when communicating with websites by placing restrictions on access for third-party providers and defining conditions for the transfer of data to third-party providers. To use the tracking proxy function of the RudderStack CDP, we use so-called first-party cookies, which we store on your device for recognition purposes and with the help of which we collect information from your device. For this purpose, your browser is assigned a randomly generated identification number (cookie ID/device ID). The device access is only from the domain of the web server "Pangaea Life" or through a data instance of "Pangaea Life" within the RudderStack CDP.
With the help of the tracking proxy function of the RudderStack CDP, we process the information generated by your device about the use of our website, as well as access data, for the purposes of reducing the number of third-party providers integrated on the website to one that is bound by instructions, avoiding access to end devices by third-party domainsthird-party domains, full control over individual data points collected from end devices, the reduction of data points in your own database to ensure the legal conformity of subsequent processing, as well as control over the transfer of data points by defining conditions for third-party providers. The access data includes, in particular, complete URLs and page titles, unique cookie ID/device ID, user agent and IP address. Your data will be processed exclusively on servers in Frankfurt am Main in Germany.
The tracking proxy function of the RudderStack CDP is used without consent in accordance with the exception in § 25 para. 2 no. 2 TTDSG. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. f) GDPR. Our legitimate interests correspond to the aforementioned purposes of the tracking proxy function of the RudderStack CDP. The storage period for first-party cookies and the cookie ID/device ID for recognizing user devices is up to 60 days, depending on the use case described below for which the RudderStack CDP is used. Insofar as RudderStack, Inc. also processes your data in the United States, no adequacy decision has been made by the EU Commission for any data transfer to the United States. We have therefore agreed with RudderStack, Inc. standard contractual clauses provided by the EU Commission to oblige RudderStack, Inc. to maintain an adequate level of data protection. We will provide you with a copy of the standard contractual clauses upon request. Further information on data protection at RudderStack can be found at https://www.rudderstack.com/privacy-policy
You can object to the processing. You have the right to object on grounds relating to your particular situation. You can send us your objection using the contact details provided in the "Controller and Data Protection Officer" section.
Use cases: data transfers using the tracking proxy function of the RudderStack CDP
The tracking proxy function of the RudderStack CDP is used for server-side data transfers, e.g. the transfer of user data to the processing systems of sales partners and agents.
AB-Tasty
We use the web analysis service AB Tasty from the company AB TASTY SAS, 3 impasse de la Planchette, F-75003 Paris ("AB Tasty") to carry out A/B and multivariate tests to continuously improve our online services. In addition, AB Tasty is used to display content that requires spontaneous adaptation of the media content. AB Tasty is required to implement this dynamic display.
AB Tasty collects statistical information about visitor access. This information is usage data (browser used, number of pages viewed, number of visits, order of visits, duration of visit, interactive actions such as filling/emptying a shopping cart, recording of the use of individual web pages) which is collected anonymously and statistically evaluated.
It is not possible to draw any conclusions about a specific person at any time.
In addition, AB Tasty uses your IP address to perform a geolocalization (regional details of your location). After the geolocalization, which takes place immediately when you visit the site, your IP address is deleted immediately. A personalized pattern is formed to display content that matches your interests. This pattern is encrypted and does not allow any conclusions to be drawn about your person.
We use the collected data to optimize our internet offering.
Cookies are stored for the purpose of saving and recognizing site visitors. These have a maximum term of 13 months and are then automatically deleted.
You also have the option to manually delete the cookies or to prevent them from being stored in the future. More information about how AB Tasty processes your data can be found at https://www.abtasty.com/de/nutzungsbedingungen/
This page also contains instructions on how you can deactivate the tracking at any time.
Analytical tools and tracking tools – Category 2
Hotjar
This website uses Hotjar, an analysis software of Hotjar Ltd. ("Hotjar") (Hotjar: Website Heatmaps & Behavior Analytics Tools , Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julian's STJ 1000, Malta, Europe).
Hotjar enables us to measure and evaluate usage behavior (clicks, mouse movements, scrolling, etc.) on our website. The information generated by the "tracking code" and "cookie" about your visit to our website is transmitted to the Hotjar servers in Ireland and stored there.
The following information is collected in relation to end device and browser of the end user:
Analytical and tracking tools – Category 3
Facebook Retargeting and Conversions
We use the pixel of Facebook Ireland Limited (Website Custom Audience Pixel). This pixel is used to collect information about the use of this website (e.g. information about viewed articles) by die Bayerische and Facebook Ireland Limited as joint controllers and to transmit this information to Facebook Ireland Limited. This information can be assigned with the help of further information that Facebook Ireland Limited has stored about the user, e.g. because the user has an account on the "Facebook" social network.
The information collected by the pixel can be used to display interest-based ads in the respective Facebook account (retargeting). The information collected via the pixel can also be aggregated by Facebook Ireland Limited and the aggregated information can be used by Facebook Ireland Limited for its own advertising purposes, as well as for third-party advertising purposes. For example, Facebook Ireland Limited can deduce certain interests from the user's surfing behavior on this website and also use this information to advertise third-party offers.
Furthermore, Facebook Ireland Limited can combine the information collected via the pixel with other information that Facebook Ireland Limited has collected via other websites and/or in connection with the use of the social network "Facebook", so that a profile of the user can be stored at Facebook Ireland Limited. This profile can be used for advertising purposes. Facebook Ireland Limited is solely responsible for the permanent storage and the described further processing of the tracking data collected via the website custom audience pixel used on this website.
We have also activated the automatic advanced matching ("Advanced Matching") as part of the Facebook pixel function. This pixel feature allows us to send hashed email, name, gender, city, state, zip code, and birth date or phone number to Facebook as additional information, provided that this data is made available to us and consent has been granted for this. Activating this feature allows us to tailor Facebook advertising campaigns even more precisely to people who are interested in our services or products.
This website uses Hotjar, an analysis software of Hotjar Ltd. ("Hotjar") (Hotjar: Website Heatmaps & Behavior Analytics Tools , Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julian's STJ 1000, Malta, Europe).
Hotjar enables us to measure and evaluate usage behavior (clicks, mouse movements, scrolling, etc.) on our website. The information generated by the "tracking code" and "cookie" about your visit to our website is transmitted to the Hotjar servers in Ireland and stored there.
The following information is collected in relation to end device and browser of the end user:
Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google"). Google Analytics uses so-called "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website will generally be transmitted to and stored by Google on servers in the United States.
IP anonymization has been activated on this website so that the IP address of Google users within member states of the European Union or in other contracting states of the Agreement on the European Economic Area is shortened beforehand. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services regarding website activity and Internet usage for the website operator.
The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google. You can prevent the storage of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use all the features of this website to the fullest extent possible. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link:http://tools.google.com/dlpage/gaoptout?hl=de
Note on tracking demographic data
We also use Google Analytics to evaluate data from AdWords and the DoubleClick cookie for statistical purposes. If you do not want this, you can disable it via the Ads Preferences Manager at http://www.google.com/settings/ads/onweb/?hl=de.
Remarketing
We also use remarketing technology from Google Inc. (1600 Amphitheater Parkway, Mountain View, CA 94043, USA; "Google"). This technology enables users who have already visited our websites and online services and shown an interest in our offering to be retargeted with targeted advertising on the pages of the Google Partner Network. The advertising is displayed by means of cookies, which are small text files stored on the user's computer. The text files allow user behavior to be analyzed when visiting the website and then used for targeted product recommendations and interest-based advertising.
If you do not wish to receive interest-based advertising, you can disable Google's use of cookies for these purposes by visiting https://www.google.de/settings/ads. Alternatively, users can disable the use of third-party cookies by visiting the opt-out page of the Network Advertising Initiative.
By using our offers, you consent to the processing of data about you by Google in the manner and for the purposes set out above. Please note that Google has its own data protection guidelines that are independent of ours. We do not assume any responsibility or liability for these guidelines and procedures. Please familiarize yourself with Google's data protection provisions before using our website.
Google Conversion Tracking
As an AdWords customer, we also use Google Conversion Tracking, an analysis service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). Google Adwords places a cookie on your computer ("conversion cookie") if you have reached our website via a Google ad. These cookies expire after 30 days and are not used for personal identification. If you visit certain pages of our site and the cookie has not yet expired, we and Google can recognize that someone clicked on the ad and was redirected to our site. Each AdWords customer receives a different cookie. As a result, cookies cannot be tracked across the websites of AdWords customers. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. The AdWords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that could be used to personally identify users. If you do not wish to participate in the tracking process, you can also refuse the setting of a cookie required for this – for example, via a browser setting that generally disables the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "googleadservices.com“.
Transfer to third countries
Should we transfer personal data to service providers or other contractual partners outside the EU or the EEA who are bound by instructions, a transfer will only take place to third countries for which an adequacy decision has been made in accordance with Art. 45 (1) of the European Commission or other suitable guarantees ensure an adequate level of data protection. The latter is done in particular by concluding so-called standard data protection clauses in accordance with Art. 46 (2) lit. c GDPR. The standard contractual clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32021D0914&from=DE
Data protection information on social media
Facebook fan page
Social media has become an integral part of the internet. Therefore, Die Bayerische has set up a Facebook fan page for its Pangaea Life site. You do not need to be a member of Facebook to see this content. We would like to point out that every time you visit our page on Facebook, visitor data is collected, stored and used. Die Bayerische has no influence on the collection and further use of this data, as it is carried out solely by Facebook. You can find information about what information is collected in the Facebook privacy policy at Facebook.
Further data protection information about Facebook
The moment you access our fan page, your browser connects to Facebook and transmits information. This data is transmitted, among other things:
For visitors who are not logged in/registered on Facebook:
- IP address: Facebook automatically determines the user's IP address when a fan page is accessed.
- Cookies: When you access our fan page, cookies are automatically set. According to Facebook, the so-called datr cookie is used to identify the web browser that connects to the Facebook page and plays a key role in protecting the social network from "malicious activity". The datr cookie is valid for two years but can be deleted via the browser settings.
For visitors who are registered and logged in to Facebook:
- IP address: Facebook also determines the IP address of the user for logged-in visitors (see above)
- Cookies: In this case, too, a datr cookie is set (see above). If you are a Facebook member and are logged into your Facebook profile when you visit our "fan page", the c_user cookie is also activated. Facebook links your visit to the "fan page" with your personal user account. This enables Facebook to track your user behavior.
- Facebook Insights
Furthermore, Facebook provides fan page administrators with a tool that can be used to retrieve statistical information about the use of their pages. You can find more information at https://www.facebook.com/help/794890670645072.
What you can do about it
If you are a Facebook member and do not want Facebook to collect data about you via our fan page and link it to your stored member data on Facebook, you must:
- log out of Facebook before visiting our fan page
- then delete the cookies stored on the device
- and close and restart your browser.
This way, all Facebook information that can be used to identify you will be deleted, according to Facebook.
Disclaimer of warranty
We endeavor to provide information that is as up to date and accurate as possible. The contents have been carefully prepared and are regularly checked. Nevertheless, die Bayerische does not guarantee or assume liability for the correctness, completeness and timeliness of all information contained therein.
Use of the website and the information contained therein is at your own risk. Changes may be made at any time. The website may contain third-party information. Die Bayerische is not liable for the accuracy of this information or for the content of websites accessed via hyperlinks.
Copyright
All rights reserved. The content and structure of the websites of die Bayerische company are protected by copyright. Information and data (text, image and graphic files), even in part, may only be used or reproduced with the written permission of die Bayerische company.
Use of Salesforce Sales Cloud and Marketing Cloud
Data that you provide to us via our website (e.g. in contact forms) is currently stored in the Salesforce Sales Cloud (Germany GmbH, Erika-Mann-Str. 31, 80636 Munich) on servers in the EU and used to process your request. The data in the Salesforce Sales Cloud and in the Salesforce Marketing Cloud are used exclusively by us. Under no circumstances will your data be sold to third-party companies, persons or institutions.
The processing of your data in the Salesforce Sales Cloud is based, where relevant, on our legitimate interest in using a CRM system in accordance with Art. 6 (1) 1 lit f) EU-GDPR, otherwise on your consent in accordance with Art. 6 (1) 1 lit a) EU-GDPR.
The processing of your data in the Salesforce Marketing Cloud is based on your consent in accordance with Art. 6 (1) 1 lit. a) EU GDPR.
Online services and surveys
If you provide us with personal data as part of our online services, for example to answer contact requests, we process this data for the respective purpose for which you have provided us with the data. If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored and processed by us for the purpose of processing the inquiry and in the event of follow-up questions. Your data will be used exclusively for the purpose of answering and processing your question. The data processing is carried out here in accordance with Art. 6 Para. S. 1 lit. f GDPR on the basis of legitimate interest.