Munich Re logo Not if, but how
EN

Information about data protection for business partners, service providers and interested parties

    alt txt

    properties.trackTitle

    properties.trackSubtitle

    0:00
    0:00

    Transparency regarding how data is processed is a key element of data protection. Our responsibility to ensure that your data is protected in line with the valid data protection regulations is one we take very seriously. This information on data protection is designed to provide you with information on how your personal data is processed by the Munich Re Group and on your rights under data protection law.

    1. Scope of application

    This information on data protection is aimed at business partners, service providers and interested parties.

    2. Who is responsible for processing your data?

    Münchener Rückversicherungs-Gesellschaft
    Aktiengesellschaft in München
    Königinstr. 107
    80802 Munich
    Germany

    Tel.: +49 (89) 38 91- 22 55
    Fax: +49 (89) 39 91 7 22 55
    email:     contact@munichre.com
    (hereinafter referred to as “Munich Re” or “we”)

    You can contact our Data Protection Officer at the postal address above – please include “Data Protection Officer/ Group Compliance & Legal” in the address – or send an email to datenschutz@munichre.com.

    3. What categories of data do we use, and where do we get your data from?

    We process the personal data that you provide us in the course of our business relationship. We will also process, to the extent necessary, any personal data that we legitimately either obtain from public sources (e.g. company publications, media reports, internet) or receive from other companies in the Munich Re reinsurance group. The respective personal data mainly includes your business contact details, your position, our business communication with you and the data this involves, and possibly your professional interests.

    4. For what purposes, and on what legal grounds, will your data be processed?

    We process your personal data in compliance with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and all other applicable laws.

    No automated decision-making is used.

    4.1 (Pre-)contractual duties (Art. 6(1b) of the GDPR)

    The data will be processed in the context of preparing, executing and terminating reinsurance arrangements in all lines of business, in connection with other services, or when using service providers or organising events.

    We will process your personal data (primarily your business contact information) mainly to contact you (including via video conference systems) and to communicate with you and/or your company. The data is processed primarily in our contact management systems. Furthermore, you have the opportunity to enter data in individual systems (e.g. chats in the course of online communications) and to upload documents.

    4.2 Balance of interests (Art. 6(1f) of the GDPR)

    Where necessary, we will process your data beyond the actual framework of our business relationship, for the purposes of legitimate interests pursued by us or a third party. Our legitimate interest lies in the maintenance of our (future) business relationship and the provision of relevant information. Examples of relevant data processing include:

    • Sending digital or postal greeting cards to business partners, for example at Christmas or on corporate anniversaries;
    • Posting brochures or flyers to business partners to inform them of current Munich Re activities;
    • Transmitting data in the Munich Re reinsurance group in our contact management systems; and/or
    • Obtaining contact information using publicly available sources.

    4.3 Consent (Art. 6(1a) of the GDPR)

    Where you have consented to our processing your personal data for specific purposes, that constitutes the legal basis. You can withdraw your consent at any time with effect for the future.

    Such consent particularly applies to:

    • Participating in anonymous and personalised surveys to improve our service quality or in the context of events and seminars;
    • Sending newsletters to regularly inform you of relevant and interesting Munich Re news;
    • Information about, or invitations to, events and seminars; and/or
    • Sending information on the basis of your stated interests.

    4.4 Compliance with legal obligations (Art. 6(1c) of the GDPR)

    We will also process your data to fulfil our legal duties, e.g. based on supervisory provisions, or to compare your data against sanctions lists to comply with counter-terrorism rules (e.g. Council Regulation 2580/2001).

    5. Who receives your data?

    Within Munich Re, only the responsible staff and departments will receive the data required for the process concerned. The data may also be sent to service providers for the purposes for which it was collected. Service providers have to be involved in the administration and maintenance of IT systems, for example. If necessary, companies in the Munich Re reinsurance group will have access to your business contact details within our contact management systems.

    Service providers that we use to send you the information you have requested (e.g. information by mail, newsletters, etc.) will receive the necessary personal data (e.g. postal companies will receive your name and address details). A list of all service providers that process data on our behalf can be consulted or downloaded using the link “Further information” at the end of this data protection information.

    6. Will your data be transferred to a third country?

    As a general principle, we process your personal data in Germany or in countries that are European Union (EU) or European Economic Area (EEA) member states. If we need to transfer personal data to service providers or subcontractors outside the EEA, we will do so only if the European Commission has confirmed that the country’s level of data protection is sufficient, or if data protection is otherwise sufficiently guaranteed (for example, through Binding Corporate Rules, or the European Commission’s Standard Contractual Clauses). You can write to the above-mentioned address to obtain detailed information and to learn more about the level of data protection at our service providers in non-EEA countries.

    7. How long will your data be stored for?

    We will delete your personal data as soon as it is no longer required for the purposes set out in this information on data protection, and provided that no legal documentation or retention requirements apply, for example in the German Commercial Code (HGB), fiscal laws or the German Fiscal Code (AO). In addition, we only store personal data in individual cases if this is necessary in connection with the defence, assertion or exercise of legal claims. You will find more detailed information, where relevant, in the specific data processing sections.

    8. Are you obliged to provide your data?

    We need your personal data, for example to send you the requested information, the newsletter you subscribed to, or invitations to events. Without this data, Munich Re cannot carry out the services you request.

    9. What measures do we take to protect your data?

    We take state-of-the-art technical and organisational security measures to protect data against accidental or intentional manipulation, loss, destruction, and access by unauthorised parties.

    10. What data protection rights can you assert as a data subject?

    You can request information about the personal data we have stored under your name, from the address above. In addition, under certain circumstances, you may request that your data be rectified or erased. Furthermore, you may have a right to restrict the processing of your data and a right to disclosure of the data you have made available in a structured, common and machine-readable format. If you have given your consent, you have the right to revoke it at any time with effect for the future; if you were not informed of any other way to do so when you gave your consent, you can send your revocation to the above address.

    If we process your data for the purposes of safeguarding legitimate interests, you may object to this processing on grounds relating to your particular situation. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or if processing serves the assertion, exercise or defence of legal claims.

    Please contact us at the address above to exercise these rights. 

    11. Who can you contact if you wish to make a complaint?

    If you believe that we have breached applicable data protection law when processing your personal data, you can contact the aforementioned Data Protection Officer or the data protection authorities to make a complaint. The public authority responsible for Munich Re is:

    Bayerisches Landesamt für Datenschutzaufsicht (Data Protection Authority of Bavaria for the Private Sector)
    Promenade 18
    91522 Ansbach
    Germany

    12. Changes to this information on data protection

    We have to amend our data protection information from time to time to make ongoing improvements to our website and to reflect technological advances. When you visit our website, please read the current version of our information on data protection (current version: June 2025).