Information on data protection
We would like to inform you how your personal data will be processed by the Münchener Rückversicherungs-Gesellschaft Aktiengesellschaft in München (MR AG) in connection with the Group-wide communications including the websites utilised for it as well as of your rights under data protection law.
Who is responsible for processing your data?
Aktiengesellschaft in München
80802 Munich, Germany
Phone: +49 (89) 38 91-0
Fax: +49 (89) 39 90 56
If you have any questions about this information, you can also contact the Data Protection Officer. The Data Protection Officer can be contacted by post at the above address or by sending an e-mail to email@example.com.
What types of data are processed in connection with the Group-wide communications? For which purposes? On what legal basis? Where do we obtain your data? How long will we store your data?
Your MR Group unit generally collects your contact details (such as your first name, last name, business e-mail address as well as telephone number and management level) from you during the hiring process or in the course of your employment or assigns them to you. Subsequently, your MR Group unit will forward your contact details to MR AG which will centrally store your contact details in order to use them for Group-wide communications such as Christmas greetings, management updates and to communicate during a crisis.
The legal basis for this with regard to employees of MR AG is Section 26 (1) s 1 German Federal Data Protection Act (BDSG)
As for the other MR Group units, we process your data based on the legitimate interest of MR AG pursuant to Art. 6 (1) s 1 f) General Data Protection Regulation (GDPR) to enable and ensure (timely) Group-wide communications.
MR AG may utilize IT Service Providers in relation to the processing of data in connection with Group-wide communications.
MR AG will delete your personal data as soon as it is no longer required for the purposes set out above, unless there is a legal obligation to retain the data.
After the end of your employment at the Munich Re Group, your contact details which are stored for the Group-wide communications at MR AG will be deleted at the instigation of your MR Group unit.
Utilization of cookies on websites of the Group-wide communications (for statistical analyses). What types of data will be part of the analyses? For which purposes? On what legal basis? How long will cookies be stored? How can I opt‑out?
The e-mails send for Group-wide communications may include links to websites of MR AG which display content such as videos. If you visit these websites small files, i.e. a so-called cookies, will be placed on your device. They comprise cookies that are required for technical purposes, and without which the website functionality could not be guaranteed.
MR AG will not combine the information generated through statistical analyses with your name or other contact details of yours. Furthermore, your IP address will solely be stored in shortened form. MR AG will not be able to draw conclusions about the usage behavior of individual employees / website users based on the information included in the statistical analyses available to it.
The legal basis for the utilization of cookies and the performance of statistical analyses is Article 6 (1) s 1 f) GDPR. Our legitimate interest regarding the data processing related thereto is the performance of statistical analyses in order to determine the reach of these websites and to improve the Group-wide communications including its websites.
Most of the cookies we use are session cookies. They are automatically deleted at the end of your visit. Other cookies, such as those used for statistical evaluations, remain on your device as follows. However, you may delete these cookies at any time or block them altogether beforehand through the settings of your browser.
- JSESSIONID, www.munichre.com, the session ID for internal use on the server, specifically used for load distribution, is removed at the end of your browser session.
- s_cc, Session-Cookie, detects whether cookies are permitted, and is removed at the end of the browser session.
- s_sq, Session-Cookie, registers the last link clicked, and is removed at the end of the browser session.
- s_ecid, contains a copy of the Adobe Experience Cloud ID for visitor identification using Adobe Analytics, duration 24 months
- AMCV_###AdobeOrg, contains the unique Adobe Experience Cloud user ID for visitor identification using Adobe Analytics, duration 24 months
- s_vi, contains a unique visitor ID for visitor identification using Adobe Analytics, duration 24 months
- s_fid, contains a copy of the unique visitor ID for visitor identification using Adobe Analytics, duration 24 months
MR AG utilizes Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West Business Campus, Saggart D24, Dublin, Ireland, and its parent company Adobe Systems Incoporated, 345 Park Avenue, San Jose, CA95110, USA, as service providers which process your data in relation to the placement of cookies on your device and the performance of statistical analyses solely on behalf of and for MR AG. MR AG has concluded so called EU Standard Contractual Clauses with Adobe Systems Incoporated as appropriate safeguards based on Art. 46 (2) (c) GDPR in order to properly protect your data in the USA. You may review a template of the utilized EU Standard Contractual Clauses under the following link: https://eur-lex.europa.eu/legal-content/en/TXT/?uri=CELEX%3A32010D0087. You may further find a list of the sub-providers utilized by Adobe under the following link: https://www.adobe.com/de/privacy/sub-processors.html.
Opt-out / Right to object as regards to the performance of statistical analyses through cookies
If you do not want the aforementioned cookies for the performance of statistical analyses to be placed on your device, you may object through a so-called opt-out. By clicking the following button called „Deactivate Cookies for statistical analyses“ you can deactivate the aforementioned cookies. Subsequently, an opt-out cookie will be placed on your device which will prevent that cookies will be placed on your device for the purpose of performing statistical analyses on the websites of the Group-wide communications. The purpose of the data processing in relation to the opt-out cookie is to enable and ensure your ability to object in this regard while the legal basis is Art. 6 (1) s 1 c) GDPR.
The opt-out cookie (munichre_com_stat_opt_out, www.munichre.com) will be stored on your device for a period of 10 years. However, you may delete these cookie at any time through the settings of your browser.
Utilization of Server-Log-Files on websites of the Group-wide communications
The information that your browser automatically sends us is collected automatically and saved in server log files. They contain:
- Browser type and version
- Operating system used
- Referrer URL (the URL that the user comes from)
- Host name (network name) of the accessing computer
- Time of server request
This data cannot be traced to individual people. We do not merge this data with other data sources. We reserve the right to review the information subsequently, and report it to authorities (such as the police or public prosecutor’s office), if there are concrete indications that our internet presence is being used illegally (for example, a hacking attack on our network). The legal is Article 6 (1) s 1 f) GDPR.
What data protection rights do you have?
In addition to the aforementioned opt-out in relation to cookies for statistical analyses, you have - in relation to the processing of personal data in connection with Group-wide communications - a right to object, you have a right to information, a right to rectify or delete data under certain conditions, as well as a right to restrict processing. Please contact the aforementioned address to exercise these rights.
Right to object
You may object to us processing your data for the purposes of protecting legitimate interests, on grounds relating to your particular situation. We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.
You may contact the Data Protection Officer mentioned above or the data protection authorities should you have any complaints.