Data Protection Declaration

We place the highest value on protecting your privacy and ensure that all data is processed in strict compliance with applicable data protection laws.

Please ensure that this information is also shared with any current or future authorized representatives and any potentially additional insured persons.

Identity and contact details of the controller

OSKAR SCHUNCK GmbH
Englschalkinger Straße 12
81925 Munich
Phone +49 (0)89 381770
Fax +49 (0)89 38177299
E-mail info@schunck.de

Contact details of the Data Protection Officer

Ecclesia Group
Data Protection Officer
Ecclesiastrasse 1 – 4
32758 Detmold
Phone +49(0)52316036129
Fax +49(0)5231603606129
E-mail dsb@ecclesia-gruppe.de

We process your personal data solely for the purpose of providing our services as an insurance broker. This includes, in particular, the arrangement of insurance services and the associated inquiries regarding insurance cover, conclusion of contracts, contract management, and claims handling. The legal basis for this data processing is Article 6(1)(b) of the General Data Protection Regulation (GDPR).

If we have not obtained your personal data directly from you (for example, in the context of claims handling), the legal basis for processing is Article 6(1)(f) of the GDPR. This provision allows processing based on our legitimate interests or those of third parties. Our legitimate interest lies in providing effective support to our clients in all matters related to their insurance coverage, including the handling of claims. Without such data processing, it would not be possible, or only possible with significant difficulty, to handle claims appropriately.

If special categories of personal data are processed, this is done exclusively on the basis of your explicit consent. The legal basis for such processing is Article 9(2)(a) of the GDPR.

Personal data refers to any information relating to an identified or identifiable natural person.

To provide our services as an insurance broker, we process various categories of personal data. These may include, for example, your name, address, bank details, contact information, insurance policy numbers, and other relevant data.

Special categories of personal data, such as health-related information, are processed only with your explicit consent, in accordance with Article 9(2)(a) of the GDPR. In certain cases, the processing of special categories of personal data is necessary for the establishment, exercise, or defense of legal claims. In such instances, the legal basis for processing is provided by Article 9(2)(f) of the General Data Protection Regulation (GDPR).

We will only disclose your personal data to third parties if you have given your consent or if such disclosure is permitted or required by applicable law. Additionally, all our employees are bound by confidentiality obligations and are committed to complying with data protection regulations.

We will only transfer your personal data to government authorities that are legally entitled to receive such information if we are required to do so by law or based on a binding court or administrative order.

In the course of handling matters such as coverage inquiries, contract initiation, policy administration, and claims handling, it may be necessary to transmit your personal data to or receive it from third parties. These may include:

• Policyholders,
• Affiliated companies,
• Insurance companies,
• Reinsurers,
• Insurance brokers,
• Technical service providers,
• Social insurance carriers,
• Financial service providers,
• Lawyers and
• Surveyors/Experts.

For the technical implementation of our broker services, we have commissioned SCHUNCK GROUP GmbH and Ecclesia Holding GmbH to process your personal data on our behalf. This processing is governed by an order processing contract concluded with each company.

We only transfer your personal data to countries outside the European Economic Area (EEA) if it is necessary for the performance of our services, if you have given your explicit consent, or if such a transfer is otherwise legally permitted. In such cases, we implement appropriate safeguards to ensure the protection of your data. Data is only transferred to recipients who guarantee an adequate level of data protection in accordance with the requirements for data transfers to third countries under Articles 44 to 49 of the GDPR

We implement a range of technical and organizational measures to protect your personal data against unauthorized access, loss, manipulation, or destruction. Our security protocols are continuously updated to reflect the latest technological developments and industry standards.

We retain your personal data for the purpose of providing our services as an insurance broker and to fulfill legal obligations. Once your data is no longer required for these purposes, it will be automatically deleted.

Our brokerage services and the associated legal requirements include, in particular, the retention of documents and information in accordance with statutory retention periods (up to ten years), and the documentation of proper advisory and contractual performance within the statutory limitation periods (up to thirty years).

You have the right to request information at any time about the personal data we hold about you. In accordance with Articles 16 to 20 of the GDPR, you also have the right to request the correction of inaccurate data, request the deletion of your personal data, request the restriction of data processing, and exercise your right to data portability.

In accordance with Article 21(1) of the GDPR, you have the right to object to the processing of your personal data that is carried out on the basis of Article 6(1)(f) GDPR (legitimate interests), on grounds relating to your particular situation. To exercise this right, please contact the responsible party at the address provided above. If you object, we will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defense of legal claims.

You have the right to withdraw your consent at any time with immediate future effect. The withdrawal of consent does not affect the lawfulness of any data processing carried out on the basis of your consent prior to its revocation.

If you believe that the processing of your personal data violates the provisions of the General Data Protection Regulation (GDPR), you have the right to lodge a complaint with a supervisory authority.

In order to provide our services as an insurance broker, it is necessary for us to process your personal data. Without this data, we are unable to offer our services.

In specific situations, such as claims handling, the provision of certain information may be voluntary. Where this applies, we will inform you accordingly. Any personal data you provide will be processed solely for the purposes communicated to you.

In cases where we have not received your personal data directly from you, we may obtain it from the following sources:

• Information provided by our clients
• Insurance companies
• Reinsurers
• Insurance brokers
• Social insurance carriers
• Lawyers
• Surveyors/Experts
• Publicly accessible sources (e.g. official registers, address directories, internet)

If you have any questions regarding this data protection information or the processing of your personal data, please feel free to contact us or our Data Protection Officer using the contact details provided above.