
Privacy policy
With the following privacy policy, we would like to inform you about the processing of your personal data by Giesecke+Devrient GmbH (hereinafter referred to as "G+D", "we" or "us"). In order to comply with current legal requirements or to reflect adjustments to our services, it may be necessary to adapt this privacy policy in whole or in part.
Processing of personal data on websites
G+D provides websites to inform customers and other interested persons about the G+D Group companies as well as their products and services.
Data Controller
Controller in the sense of DSGVO for the processing of your personal data is the Giesecke+Devrient GmbH, Prinzregentenstr. 161, 81677 Munich, Germany
Group Privacy Officer
Giesecke+Devrient GmbH, Group Privacy Officer, Prinzregentenstraße 161, 81677 Munich, Germany, privacy@gi-de.com
Processing of personal data for business activities
Data Controller
G+D processes personal data in the context of its business activities. The following information is intended for G+D's business partners and customers with whom we have business contact or a business relationship.
The data controller is determined by your business relationship with us. It may deviate from the above-mentioned data controller in accordance with the contractual relationship. It is regularly one of the following G+D companies at the group headquarters in Munich.
Giesecke+Devrient GmbH, Prinzregentenstraße 161, 81677 Munich, Germany
Giesecke+Devrient Currency Technology GmbH, Prinzregentenstraße 161, 81677 Munich, Germany
Giesecke+Devrient Mobile Security GmbH, Prinzregentenstraße 161, 81677 Munich, Germany
Deviations are possible, for example if your business relationship is with a regional subsidiary of G+D, which then regularly acts as data controller. A list of subsidiaries can be found here.
Group Privacy Officer
Giesecke+Devrient GmbH, Group Privacy Officer, Prinzregentenstraße 161, 81677 Munich, Germany, privacy@gi-de.com
Rights of the data subject
In accordance with Art. 15 - 21 GDPR, you have the following rights as a data subject regarding the processing of your personal data by G+D:
- Right to access information about your personal data stored by us (Article 15 GDPR)
- Right to rectification of inaccurate or incomplete personal data concerning you stored by us (Article 16 GDPR)
- Right to erasure of your personal data stored by us, e.g. if there is no longer a legitimate business purpose for processing in accordance with applicable law and statutory storage obligations do not require further storage (Article 17 GDPR)
- Right to restriction of processing, if the accuracy of the personal data is contested by you or the processing is unlawful (Article 18 GDPR)
- Right to data portability, i.e. the right to receive the personal data concerning you, which you have provided us with in a structured, commonly used and machine-readable format (Article 20 GDPR)
- Right to object for the processing of your personal data insofar as such processing is carried out based on Article 6 par. 1 lit. e. or f. GDPR (Article 21 GDPR)
- Right to withdraw consent (Article 7 GDPR)
To enforce your data privacy rights, you can contact us at any time.
If you have the impression that the processing of your personal data does not comply with data privacy laws, you have the right to file a complaint with a supervisory authority (Art. 77 DSGVO); a list of data privacy authorities in Germany can be found at the following link https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
The supervisory authority responsible for G+D at the Group headquarters in Munich is the Bavarian State Office for Data Protection Supervision (www.lda.bayern.de).