Zum Inhalt

Information Obligations

Data Protection Declaration

The Controller within the meaning of Art. 4 No 7 GDPR is:
HFG Inkasso GmbH
Caffamacherreihe 7
20355 Hamburg
T 040 – 41 30 95 71
F 040 – 41 30 93 00
E hfg[at]hfg.de

Our Data Protection Officer is:
Dr. Volker Wodianka
SCHLUTIUS Data Privacy & Compliance GmbH
Ferdinandstraße 3
20095 Hamburg
Telefon: 040 - 33 40 10
Telefax: 040 - 33 40 15 31
Email: privacy-policy[at]hfg.de

The protection of your personal data during all data processing processes  (e.g. collection, processing and transmission) is an important concern for us. Your data is protected as part of statutory regulations, in particular the GDPR. This comprehensive protection is ensured by technical and organisational measures including SSL encryption.

The following statement gives you an overview of which data is collected during your visit to the HFG Inkasso GmbH website, how this data is used and transmitted, what security measures we take to protect your data and how you receive information about the information provided to us.

This data protection declaration applies to the entire website, but not to sites of other providers to which the website links.

1. Collection, use and storage of personal data
In connection with your access to our website, data is stored for security purposes which may allow you to be identified (e.g. date, time and pages viewed, IP address of the requesting computer, data identifying the browser and operating system used and the referrer page). The temporary storage (7 days) of this data is for exclusively internal system-related and statistical purposes (e.g. to guarantee the trouble-free establishment of a connection, to evaluate system security). The legal basis is Art. 6(1)(f) GDPR.  No personal processing of these data takes place.

In order to answer your questions, process your requests or provide you with support, it is necessary to ask you for your personal data (contact information, date of birth and, if applicable, your HFG-file reference). The data you enter when using the contact forms will be used and stored only to answer your questions, process your requests, or support you. The legal basis is Art. 6(1)(f) GDPR. If contact is established for the purposes of potentially concluding a contract, an additional legal basis is Art. 6(1)(b).

It is up to you to decide to what extent you use our website and forms and provide your data.

You may revoke any consent you have given to data processing at any time with future effect, in which case we will refrain from processing the data in the future, unless a statutory authority or obligation exists to process data.

2. Transmission of data
We only pass on your personal data from the use of our email contact or contact form to other companies of the HFG Group or other third parties (recipients) if the requirements of Art. 6(1)(a-c), Art. 28 GDPR are fulfilled. There will be no transmission for purposes other than those mentioned above.

3. Cookies
In order to extend our website's range of functionality and to make its use a more pleasant experience, we use cookies. These cookies allow us to store data on your computer when you visit our website. The data processed by cookies is required for the aforementioned purpose in order to protect our legitimate interests in accordance with Art. 6(1)(f) GDPR. You have the option to prevent cookies from being stored on your computer by selecting the appropriate settings in your browser. However, we would like to point out that in this case you can only use the functions of this website to a limited extent.

4. Privacy policy for the use of Google Web Fonts
This site uses web fonts provided by Google for the uniform display of fonts. When you open a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. If your browser does not support web fonts, a standard font is used by your computer.

Further information about Google Web Fonts
Further information in Google's privacy policy

5. Privacy policy for the use of Google Maps

This page uses the map service Google Maps via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

More information on how user data is handled can be found in Google's privacy policy

6. Privacy policy for the use of XING

Our website uses functions of the XING network. The provider is XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany. Each time one of our pages containing XING features is accessed, your browser establishes a direct connection to the XING servers. To the best of our knowledge, no personal data is stored in the process. In particular, no IP addresses are stored nor is usage behaviour evaluated.

Further information on data protection in the XING privacy policy

7. Data protection declaration for the use of HVV timetable information

Our website uses the timetable information by HVV – Hamburger Verkehrsverbund GmbH, Steindamm 94, 20099 Hamburg, Germany. Each time you access one of our pages which contain functions from the HVV timetable information, a connection to HVV servers is established. To the best of our knowledge, no personal data is stored in the process.

More information about HVV timetable information
In the data protection regulations of Hamburger Verkehrsverbund GmbH

8. Rights of affected persons
If the legal requirements are met, you have the following rights under Articles 15 to 22 GDPR: the right to information (Article 15 GDPR), rectification (Article 16 GDPR), deletion (Article 17 GDPR), restriction of processing (Article 18), and portability (Article 20 GDPR).

You have a right to object to the processing of your personal data as part of the stipulations of Art. 21(1) and 21(2) GDPR.

 In accordance with Article 77 GDPR, you have the right to complain to the competent supervisory authority if you believe that the processing of your personal data is not lawful.

9. Safety information

HFG has taken all necessary technical and organisational security measures to protect your personal data from loss and misuse. Your data is stored in a secure operating environment that is not accessible to the public. In accordance with this privacy policy, access to your information is only possible for specially authorised persons.

Our information system is a secure area. A firewall is installed to prevent access from other networks connected to the internet. Only employees who need the information for performing a specific task receive access to personal data. Our employees are trained in security and data protection practices.

Your personal data is encrypted during transmission using Secure Socket Layer (SSL) technology. This means that communication is performed using a recognised encryption method if your browser supports SSL.

We would like to point out that the confidentiality of the transmitted information is not guaranteed when communicating over email. The content of emails can be intercepted by third parties.

10. Questions regarding data protection
For questions regarding data protection, please contact us at privacy-policy[at]hfg.de or by post at the address given in the site notice.

Our Data Protection Officer is:

Dr. Volker Wodianka
SCHLUTIUS Data Privacy & Compliance GmbH
Ferdinandstraße 3
20095 Hamburg
Telefon: 040 - 33 40 10
Telefax: 040 - 33 40 15 31
E-Mail: privacy-policy[at]hfg.de

Updated: May 2018