Logo EFiS AG

Data Protection Declaration

The protection of your personal data is very important to EFiS AG. We process your personal data responsibly and in accordance with applicable data protection laws, in particular the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG new).

Below we explain how personal data are collected, processed, used, and disclosed.

Responsible Authority

The responsible authority within the meaning of data protection laws, in particular the GDPR, is:

EFiS AG
Am Weiher 1
63303 Dreieich
Germany

Data Protection Officer

External Data Protection Officer of EFiS AG
c/o TÜV SÜD Akademie GmbH
Westendstraße 160
80339 Munich
Germany

Email: datenschutz@paymentgroup.de

Purposes of Data Processing

Management of Our Websites

When you visit our websites, technical information necessary for access and operation (e.g. IP address, browser settings) is recorded. We also collect information about your activities during your visit for statistical analysis to improve and develop our websites, products, and services.

Maintenance of Business Contacts

In the course of relationships with customers, prospects, partners, and suppliers, we process business-related contact data (e.g. contact details, position or title of employees and authorized users) for contract fulfillment, service provision, and the development of business relationships.

Answering Inquiries

If you contact us regarding products or services, download documents, or register for events, we process the information required to handle your request, grant access to documents, and contact you (e.g. name, contact details, request details).

We process personal data only for the purposes stated in this declaration. Personal data are not transferred to third parties for other purposes. We share personal data only if:

  • you have given explicit consent,
  • processing is required to fulfill a contract,
  • processing is required to meet a legal obligation,
  • processing is necessary to safeguard legitimate interests, and
  • there is no overriding legitimate interest against disclosure.

Security

EFiS AG implements comprehensive technical and organizational measures to protect personal data from unauthorized access, misuse, or disclosure and to ensure data accuracy.

Retention Period

Personal data are stored only as long as necessary to fulfill the purposes of processing, including compliance with legal or regulatory obligations (e.g. auditing, billing, statutory retention periods) or dispute resolution.

Deletion or Blocking of Data

We adhere to the principles of data minimization and data economy. After the purpose ceases to apply or statutory retention periods expire, personal data are routinely blocked or deleted in accordance with legal requirements.

Cookies

Our website uses cookies. Cookies are small text files transferred from a website server to your device. They provide data such as IP address, browser used, operating system, and internet connection.

Cookies cannot be used to launch programs or transmit viruses. They help facilitate navigation and ensure proper display of our website. Data collected via cookies are not shared with third parties, and personal data are not linked without consent.

You can generally use our website without cookies. Browsers usually accept cookies by default; you can disable cookies via your browser settings. Please note that some website functions may not work if cookies are disabled.

Registering on Our Website

When registering for personalized services, we collect personal data such as name, address, and contact details (telephone number, email address). Registered users can access content available only to registered users and may change or delete their data at any time. Upon request, we provide information about stored personal data and correct or delete them unless statutory retention requirements apply.

Newsletter

With your explicit consent, we send newsletters or similar information by email. Providing an email address is sufficient. We use a double opt-in procedure to verify registration. Data are used exclusively for newsletter distribution and are not shared with third parties.

You can revoke consent at any time via the unsubscribe link in each newsletter, directly on the website, or via the contact details at the end of this declaration.

Contact Form

If you contact us by email or contact form, you voluntarily consent to data processing for communication purposes. A valid email address is required; additional information is optional. Data are stored to process the inquiry and deleted automatically after completion.

Using Google Maps

This website uses the Google Maps API to display geographic information. Google may collect and process data related to the use of map features. For details, please refer to Google’s privacy notices and the Google Privacy Center.

Embedded YouTube Videos

Some pages embed YouTube videos operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When visiting a page with an embedded video, a connection to YouTube servers is established. If logged into your YouTube account, your browsing behavior may be associated with your profile. You can prevent this by logging out beforehand.

YouTube may use cookies to collect usage information. To prevent this, block cookies in your browser. Further information:
https://www.google.de/intl/de/policies/privacy/

Data Protection in Apps / EFiS Applications

When downloading or using apps or applications, access information (date, time) and content may be stored and evaluated solely for statistical purposes. No transfer to third parties takes place.

EFiS AG expressly notes that data transmission over the internet may have security gaps and cannot be fully protected against third-party access.

Changes to This Data Protection Declaration

We reserve the right to amend this declaration to comply with current legal requirements or to reflect changes in our services. The version valid at the time of your visit applies.

Rights of Data Subjects

You may exercise the following rights at any time via our Data Protection Officer:

  • access to stored data and processing details,
  • rectification of personal data,
  • deletion of stored data,
  • restriction of processing where deletion is not yet permitted,
  • objection to processing, and
  • data portability where consent was given or a contract concluded.

You may revoke consent to data processing at any time with effect for the future.

Right of Appeal

If you believe that your personal data are processed in violation of applicable data protection laws, you may lodge a complaint with:

  • EFiS AG,
  • our Data Protection Officer, or
  • the competent supervisory authority.

The competent authority depends on your place of residence, workplace, or the alleged violation.

Governing Law

The law of the Federal Republic of Germany applies exclusively.

Contact for Data Protection Matters

If you have questions regarding data protection, please email:

gdpr@paymentgroup.de