Data Protect Statement
In the sections below, we would like to brief you on the ways in which we process your personal data. We take the protection of your data very seriously and comply with the applicable regulations of the Federal Republic of Germany and of the European Union.
For the legal provisions, go to:
http://eur-lex.europa.eu/legal-content/DE/TXT/ HTML/?uri=OJ:L:2016:119:FULL&from=DE.
Responsible Entity
The entity responsible for the data processing on this website is:
d.i.i. Deutsche Invest Immobilien AG
Biebricher Allee 2
D-65187 Wiesbaden
Phone: 49. 611. 95 01 68 - 0
E-mail: info(at)dii.de
Responsible entity is the natural or legal person who, alone or jointly with others, defines the purposes and means of processing personal data (e.g. names, e-mail addresses, or similar).
Scope of Application
This data protection policy applies to the following services:
- our online services involving the buying/selling or renting/letting of real estate, property funds, equity investments, available particularly at www.dii.de;
- whenever reference is made to this Data Protection Statement in one of our service offers (e.g. websites, sub-domains, mobile applications, web services or links placed in third-party Internet pages), regardless of how it is retrieved or used.
Data Protection Officer
Data protection is an important concern. d.i.i. takes the protection of your data very seriously, and has appointed an external data protection officer pursuant to Art. 37, German Data Protection Regulation (GDPR), and Art. 38, German Data Protection Act (BDSG). In all matters pertaining to data protection, you may contact our data protection team and the data protection officer of dii at datenschutz(at)dii.de.
Notes on the Processing of Personal Data
On our Internet pages, we will process your personal data only if you have expressly consented to it or if you volunteer your data. If you do not wish to provide any information about yourself, your decision will render us incapable of processing your request or inquiry.
Purposes
We require your personal data:
- whenever you visit our Internet pages
- if you consented to receiving our newsletter
- if you would like us to contact you with investment offers and information on our property funds, and moreover if you specifically request a contract initiation in the same context
- if you want us to contact you to receive offers of properties to sell and/or to let
- if you want us to contact you because you want to let or sell a property
- if you specifically wish to rent or buy a property (contract initiation)
The purposes stated here could conceivably change in future. We only collect such data as are necessary for a given purpose (“data minimisation” pursuant to Art. 5, Sec. 1c EU-GDPR). Your data will not be disclosed to third parties without your consent, unless doing so is necessary to fulfil contractual or legal obligations. Your data will be stored no longer than necessary for a given purpose (Art. 5, Sec. 1e, EU-GDPR). For legal provisions governing this issue, see Art. 257, Sec. 1, No. 2 and 3, and Art. 257, Sec. 1, No. 1, German Commercial Code (HGB) as well as Art. 147, Fiscal Code of Germany (AO). The periods at issue tend to range from 6 to 10 years (possibly up to 30 years in cases of financial loss).
What Happens to Your Personal Data?
1 Your Visit to Our Website
As soon as you visit our website, certain access data will be stored in a log file. The file identifies your browser type and version, the operating system used, the website from which you are visiting us, the website you are visiting now, date and time of your access and your IP address. The purpose of processing these data is to monitor our website, not least in order to detect possible flaws of our Internet pages. d.i.i. does not link the data contained in the log file to individual persons. However, we reserve the right to access these data if certain facts cause us to suspect that users are exploiting our pages and/or services unlawfully or in breach of contract. This is done to protect the clients and users of d.i.i., their data and the d.i.i. websites and services.
Cookies
Some of our Internet pages use so-called cookies. Cookies will not damage your computer and do not contain viruses. The purpose of cookies is to make our offer more user-friendly, more effective and safer. Cookies are small text files placed on your computer, and saved by your browser.
Most of the cookies used by us are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on your endpoint until you delete them. These cookies enable us to recognise your browser the next time you visit our website.
You can configure your browser so that it will notify you about the placement of any cookies and only allow cookies on a case-to-case basis, exclude the acceptance of cookies for certain cases or in general, and enable the automatic deletion of cookies when closing the browser. Disabling cookies may impair the functionality of this website for you.
Cookies that are necessary to execute the electronic communication process or to provide certain functions requested by you (e.g. shopping basket function), are stored on the basis of Art. 6, Sec. 1, Letters f and b, GDPR. The website operator has a legitimate interest in the storage of cookies for the sake of providing technically error-free and optimised services. Other types of cookies (e.g. cookies for analysing your browsing behaviour) that may be stored by us are separately discussed in this Data Protection Statement.
2 Signing up for Our Newsletter
Once you sign up for our newsletter by submitting your e-mail address, you will receive free updates on the d.i.i. Group and our investment funds several times a year. In addition to your e-mail address that you submit to subscribe our newsletter, we will also save your IP address as well as date and time of your registration. We principally do not disclose your data to third parties. This is done not least to protect ourselves in case that a third party misuses your e-mail address and subscribes our newsletter without your knowledge. Unless we get your unambiguous consent to send you our newsletter, you will receive a link to register for the newsletter. The newsletter will start shipping to you once you registered and consented to the GDPR. If you no longer wish to subscribe our newsletter, you may unsubscribe any time. You will find an “unsubscribe” link at the bottom of each newsletter e-mail.
3 Contact Form
If you send us enquiries using the contact form, your details from the inquiry form, including the contact data you provided therein, will be saved for the purpose of processing your inquiry and follow-up queries, if any. We will not disclose these data without your consent.
Accordingly, processing of the data you entered in the contact form is exclusively subject to your consent (Art. 6, Sec. 1, Letter a, GDPR). You may revoke your consent any time. To do so, it suffices to send a formless e-mail notification to us. The legitimacy of having processed your data up to the time at which you revoked your consent will not be affected by the revocation.
The data you enter in the contact form will remain with us until you request that we delete it, revoke your consent for storage, or whenever the purpose for which the data were stored ceases to apply (e.g. once your request has been processed). Mandatory legal provisions—especially retention periods—remain unaffected.
4 Tenant App
As a tenant you have the possibility to download the tenant app provided by cunio free of charge in order to get in touch with us and to ensure that your requests are processed quickly. The app is subject to the data protection policy of our service provider cunio, which you find here: https://www.cunio.de/datenschutz-apps/
We chose this service provider after a very careful selection process, and collaborate with them on a contractual basis pursuant to Articles 26 and 28, GDPR. If you decide you no longer wish to use the app, contact cunio directly and ask them to delete your account.
5 Property Documentations (Estate Agent Contracts Involving Properties to Sell or Let)
On occasion of viewing appointments, we will ask you to fill in a form in which you confirm the property documentation by us. The documentation serves as evidence securing our agency fee upon conclusion of a contract (see our GTC) and is filled in at the time of the viewing appointment. It includes personal details about you, your signature and details about the property viewed. Property documentations are deleted 30 years after a sale was successfully brokered, at the latest. Property documentations that need not be retained (meaning, if no sale was transacted) are retained for a maximum period of six years (pursuant to the HGB).
6 Contract Initiation for a Property to Sell or Let
Initiation of a lease agreement requires the submission of a so-called “self-disclosure” by the prospective tenant. The data thereby disclosed are not transmitted to us by the user via this website, but are submitted via a form that is filled out manually and handed to us personally or sent to us by post, fax or e-mail. Depending on the circumstances, additional documents with personal data may be required as basis for the lease or sales agreement (e.g. credit rating, proof of income, credit report, etc.). The data are transmitted solely to the respective contracting parties (e.g. landlord or seller). Such data are subject to applicable statutory retention periods pursuant to the HGB.
7 Website Analysis
This website uses Google Analytics web analysis service features. The service is provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
Google Analytics uses so-called “cookies.” These are text files that are placed on your computer to help us analyse how you are using our website. The information generated by the cookie about your use of the website will generally be transmitted to and stored by Google on servers in the United States.
The storage of Google Analytics cookies is based on Art. 6, Sec. 1, Letter a, GDPR – Consent.
IP Anonymisation
We have enabled the IP anonymisation feature for this website. This means that Google will truncate your IP address within any member state of the European Union or within any member state of the Treaty on the European Economic Area prior to its transmission to the United States. Only in exceptional situations will your full IP address be transmitted to a Google server in the United States and truncated there. On behalf of the operator of this website, Google will use this information for the purpose of analysing your use of the website, compiling reports on website activity, and providing other services related to website activity and Internet usage for the website operator. The IP address submitted by your browser within the framework of Google Analytics is not merged with other data by Google.
Browser Plug-in
You may refuse the storage of cookies by selecting the appropriate settings on your browser; however please note that if you do so you may not be able to take advantage of the website’s full functionality. In addition, you can prevent the collection of data generated by the cookie and referring to your use of the website (including your IP address) to Google as well as the processing of the data by Google, by downloading and installing the browser plug-in available under the following link: tools.google.com/dlpage/gaoptout;
Objecting to the Processing of Your Data
You can prevent the collection of your data by Google Analytics by clicking on the following link. Doing so will cause an opt-out cookie to be placed that will prevent the future collection of your data whenever you visit this website: Disable Google Analytics.
For more details on the handling of user data by Google Analytics, see Google’s data protection statement at: support.google.com/analytics/answer/6004245.
8 Job Applications
When you apply for an open position with us, the following data on you will be processed: First and last name, address, landline number, mobile number, e-mail address along with letters of reference and certificates. These data are used for the purposes of contract initiation or contract performance pursuant to Art. 6, Sec. 1, Letter b, GDPR, and pursuant to Art. 26, BDSG (employment relationship). We will not pass your data on to any other recipient and will not transmit them into a third country or to an international organisation. The intended storage duration for such data is 6 months.
What Are Your Rights?
You have the right:
- to demand information about your personal data processed by us pursuant to Art. 15, GDPR. In particular, you may demand information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage duration, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to object, the origin of your data if these were not collected by us, as well as the existence of automated decision-making, including profiling and, where applicable, meaningful information on the details thereof;
- to demand, pursuant to Art. 16, GDPR, the prompt correction of inaccurate or incomplete personal data stored by us;
- to demand, pursuant to Art. 17, GDPR, the deletion of your personal data stored by us unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
- to demand, pursuant to Art. 18, GDPR, the restriction of the processing of your personal data if the accuracy of the data is disputed by you, if the processing is unlawful but you object to their deletion, or if we no longer need the data but you require them to assert, exercise or defend legal claims, or if you have lodged an objection to such data processing pursuant to Art. 21, GDPR;
- to demand, pursuant to Art. 20, GDPR, to have your personal data that you provided us with disclosed to you in a structured, common and machine-readable format or to request its transfer to another responsible party;
- to revoke at any time, pursuant to Art. 7, Sec. 3, GDPR, the consent you once granted to us. As a result, we will be unable to keep processing the data subject to the revoked consent; and
- to complain to a regulator pursuant to Art. 77, GDPR. The best way to do so is normally to contact the regulator responsible for your habitual place of residence or workplace or the regulator responsible for our principal place of business. Here are the contact details of the data protection authority for the state of Hesse:
Hesse Data Protection Commissioner
PO Box 3163
D-65021 Wiesbaden
poststelle(a)datenschutz.hessen.de
Phone: +49 611 1408 - 0
Fax: +49 611 1408 - 611
Right to Object
If your personal data are processed on the basis of legitimate interests pursuant to Art. 6, Sec. 1, Sent. 1. Letter f or a, GDPR, you have the right, pursuant to Art. 21, GDPR, to object to the processing of your personal data if you can cite valid reasons arising from your particular circumstances or if you object to direct marketing. In the latter case you have a general right to object, and we will comply with your requests without requiring a statement detailing your special circumstances. All you need to do to exercise your right of revocation or objection is to send an e-mail saying so to datenschutz(at)dii.de.
Data Security
When you visit our website, we use the standard SSL (Secure Socket Layer) procedure in combination with the highest encryption level that your browser supports. Normally, this will be 256-bit encryption. In case your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. You can tell whether a given page of our website is transmitted in encrypted form by the closed display of the key or padlock symbol in the lower status bar of your browser. Other than that, we use adequate technical and organisational security measures to protect your data against accidental or wilful manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological advances.
Currency of and Amendments to this Data Protection Statement
This is our currently effective Data Protection Statement as of August 2019. Further development of our website and of offers communicated via the same, or changing legal or official requirements, may necessitate revisions of this Data Protection Statement from time to time. You can always retrieve and print out the currently effective Data Protection Statement by visiting our website www.dii.de.