Privacy Policy

Your privacy and data protection are fundamental to our commitment to trust and security.

Last Updated: January 2024
Data Controller

Sicher Bank AG

Maximilianstraße 12, 80539 München, Germany
+49 8654 38 48 50
info@sicherbank.com

Registered with the German Federal Financial Supervisory Authority (BaFin) under license number DE-12345-2024. Commercial Register: Munich HRB 123456.

Legal Basis for Processing

Contract Performance (Art. 6(1)(b) GDPR)

  • • Account opening and management
  • • Investment advisory services
  • • Transaction processing
  • • Portfolio management

Legal Obligation (Art. 6(1)(c) GDPR)

  • • Anti-money laundering (AML)
  • • Know Your Customer (KYC)
  • • Tax reporting obligations
  • • Regulatory compliance

Legitimate Interest (Art. 6(1)(f) GDPR)

  • • Risk management and assessment
  • • Fraud prevention and security
  • • Service improvement
  • • Marketing communications

Consent (Art. 6(1)(a) GDPR)

  • • Optional marketing preferences
  • • Cookies and tracking
  • • Third-party integrations
  • • Research participation
Data We Collect

Identity Data

  • • Full name and title
  • • Date and place of birth
  • • Nationality and residence
  • • Government-issued ID
  • • Passport/ID numbers
  • • Biometric data (if required)

Financial Data

  • • Account balances and history
  • • Transaction records
  • • Investment portfolios
  • • Credit history and scores
  • • Income and asset information
  • • Tax identification numbers

Technical Data

  • • IP addresses and device IDs
  • • Browser and system information
  • • Login credentials (encrypted)
  • • Session and usage data
  • • Geolocation data
  • • Security logs and audit trails
Data Sharing and Recipients

Internal Recipients

Your data is shared internally only with authorized personnel who require access to perform their duties, including relationship managers, compliance officers, risk management teams, and IT security personnel. All internal access is logged and monitored.

External Recipients

Service Providers
  • • IT infrastructure providers
  • • Payment processors
  • • Custodian banks
  • • External auditors
Regulatory Bodies
  • • BaFin (German regulator)
  • • Tax authorities
  • • Law enforcement (when required)
  • • European Central Bank
Your Rights Under GDPR

Right of Access (Art. 15)

Request a copy of your personal data and information about how we process it.

Right to Rectification (Art. 16)

Request correction of inaccurate or incomplete personal data.

Right to Erasure (Art. 17)

Request deletion of your personal data (subject to legal retention requirements).

Right to Restrict Processing (Art. 18)

Request limitation of processing in certain circumstances.

Right to Data Portability (Art. 20)

Receive your data in a structured, machine-readable format.

Right to Object (Art. 21)

Object to processing based on legitimate interests or for direct marketing.

Right to Withdraw Consent

Withdraw consent for processing based on consent at any time.

Right to Lodge a Complaint

File a complaint with the relevant data protection authority.

Technical and Organizational Measures

Technical Measures

  • • AES-256 encryption for data at rest
  • • TLS 1.3 for data in transit
  • • Multi-factor authentication
  • • Regular security assessments
  • • Intrusion detection systems
  • • Automated backup and recovery

Organizational Measures

  • • Staff training and awareness programs
  • • Access controls and authorization
  • • Data processing agreements
  • • Incident response procedures
  • • Regular compliance audits
  • • Privacy by design principles
Data Protection Contact

Data Protection Officer

dpo@sicherbank.com
+49 8654 38 48 51
Data Protection Office
Sicher Bank AG
Maximilianstraße 12
80539 München, Germany

For all privacy-related inquiries, data subject requests, or concerns about how we handle your personal data, please contact our Data Protection Officer. We will respond to your request within 30 days as required by GDPR.