Inhaltsbereich

Data protection

We are delighted by your interest in our company and products. With this data protection policy we inform you about the processing of your personal data (hereafter also simply re-ferred to as “data”) when you visit our website and use our services. You also receive information on the rights to which you are entitled. We highly value data protection and it goes without saying that we comply with the applicable data protection pro-visions, in particular including the European General Data Protection Regulation (GDPR) and Federal Data Protection Act (BDSG).

If you do not understand the terms that we use in this data protection policy, our glossary of data protection terms may provide assistance. If you have questions on data protection, you can also contact us (in no specific form) using the contact data stated below.

The following is responsible for data processing
SaarLB
Landesbank Saar
Ursulinenstraße 2
66111 Saarbrücken
Email: service@saarlb.de
Tel.: 0049 681-383-01

You can reach our data protection officer at
SaarLB
Landesbank Saar
Claudia Lemmer
Ursulinenstraße 2
66111 Saarbrücken
Email: datenschutz@saarlb.de
Tel.: 0049 681-383-1682

I. Data processing when you visit our website

In connection with the visit to our website, we collect and process your personal data. This occurs for the purposes and in the scope described below. We only pass on the data to third parties as described below. 1. Provision of our website and services

In order to be able to provide our website and the services it presents, we collect and process the following data automatically when you visit our website:

  • Date and time of your access
  • Your IP address
  • The address of the website from where you came to us
  • Our pages that you open
  • Information on your internet browser (browser type and version)
  • The operating system of the device you use to access our website and services
  • Your internet service provider

The legal basis for processing your data to provide our website and services is Article 6 Par-agraph 1 Sentence 1 Letter f) GDPR. We have a justified interest in processing your data so that we can offer our website and its services in a technically flawless manner, securely and optimised to your needs. We store this information for security reasons but without your IP address in log files and delete it after 7 days.

Longer storage only takes place if required in individual cases (e.g. specific suspicion of abuse or fraud). In these cases the relevant log files are stored until the matter has been clarified and the associated necessary measures are concluded.
In order to provide our website and its services (including those stated below) we use service providers who process your data stated in this data protection policy only as requested and instructed by us (so-called contract processors under Article 28 GDPR) and have undertaken suitable technical and organisational measures to protect your rights. These include in par-ticular the services associated with hosting the website, including those provided by one4vision, Talstraße 34-42, Residenz am Schlossgarten, 66119 Saarbrücken.

2. Use of cookies
We use so-called “cookies” on our website. These are text files that are stored in or by your internet browser on your computer system. When you call up a website a cookie may be stored on your system. This contains a sequence of characters using which your browser can be identified when you next call up the website. If no contrary deletion periods are stated in the following explanations, independently of the type and purpose of the cookie the following applies to the storage term:You have unrestricted control on the use of cookies. They are stored on your computer which transmits data from them to our site. Most browsers are set by default to accept cookies but the transfer of cookies can be deactivated or restricted by changing the browser settings. Cookies already stored can be deleted at any time. This can be done automatically through the relevant setting on your browser.

If cookies are deactivated for our website, the user may no longer have complete use of all functions on the website.You can prevent the installation of cookies by adjusting the relevant setting in your browser software; but in this case we expressly point out that you may not be able to use the full func-tions of this website.

3. Matomo
This website uses the web analysis service Matomo by Matomo Org. to analyse and regularly improve the use of our website. The statistics we receive help us improve our range and make it more interesting for you as a user. The legal basis for the use of Matomo is Art. 6 Para. 1 S. 1 lit. f GDPR.

Cookies are stored on your computer for this analysis. The information thus collected is stored exclusively on our server in Germany. You can stop the analysis by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, we point out that you may not be able to use the full functions of the website. You can prevent the storage of cookies by setting your browser. It is possible to prevent the use of Matomo by activating the opt-out plug-in.
This website uses Matomo with the “AnonymizeIp” extension. This processes IP addresses in an abbreviated form to exclude direct reference to a particular person. The IP address transferred by your browser using Matomo is not merged with other data collected by us.The Matomo program is an open source project. You can find information from the third-party supplier on data protection at matomo.org/privacy-policy/.

You can decide whether a unique web analysis cookie may be stored in your browser on our homepage in order that the website operator is able to collect and analyse various statistical data.

You may choose not to have a unique web analytics cookie identification number assigned to your computer to avoid the aggregation and analysis of data collected on this website.

To make that choice, please click below to receive an opt-out cookie.

4. Contact us {in particular when using forms}
You have the opportunity to contact us by various means. These include in particular con-tacting us using the forms on our website or by email. The data processing that takes place when you contact us, depending on the content of your message, may be used for different purposes. In general we store and process the stated data to handle the matter for which you contacted us.

The legal basis for processing your data when you contact us is Article 6 Paragraph 1 Sen-tence 1 Letter a) GDPR.
Something different only applies if the content about which you contact us is used directly to implement an existing contractual relationship between us. In this case the processing of your data is based on Article 6 Paragraph 1 Sentence 1 Letter b) GDPR.

Your data stored when making contact is deleted as soon as it is no longer required and if there is no statutory storage obligation. The check on whether storage is required takes place at least annually. In contrast, content on contractual relationships is stored for at least 6 years of if relevant for tax purposes at least 10 years.

5. Use of our newsletter
You can register for our free IR newsletter here: www.saarlb.de/index.php
To do so, you enter your data in the planned entry mask and it is transferred to us. This rela-tes to the following data:
(1) Full name
(2) Institution
(3) Email address

As soon as the message to register for the newsletter is sent, the following other data is also stored:

(1) Your IP address
(2) Date and time of sending

Before sending your data we ask you to give your consent to the processing of this data and refer you to this data protection policy. Your data is processed with your consent. The legal basis is Art. 6 Para. 1 lit. a GDPR.

After registration you receive an email that requests confirmation of your registration. This confirmation is required so that nobody can register with a third-party email address. The newsletter registrations are logged to be able to document the registration process pursuant to the legal requirements. This includes storing the registration and confirmation timing as well as the IP address.

As the processing of data is also required to deliver the requested newsletter, the legal bases are in addition Art. 6 Para. 1 lit. b and lit. f GDPR.

Your data is not forwarded to third parties when we process your data for sending out news-letters. The data is exclusively used to send the newsletter.

You can terminate the subscription to the newsletter at any time or object to the sending of additional newsletters. Each newsletter contains an appropriate link to the unsubscribe form. We therefore also enable the revocation of your consent to store your data. You can direct your revocation at any time with no specific form to the contact details stated in I.
If the data is required to fulfil a contract or implement pre-contractual measures, advance deletion can only take place if the contractual or statutory obligations permit this. We may be contractually or statutorily obligated to store data after the contract ends (e.g. for tax purpos-es). The storage periods that apply must be determined individually for the relevant contracts and contractual parties.

6. Data protection information for online banking
You can undertake your bank transactions in online banking via our web branch.
The data processed as part of online banking (in particular access and authentication data such as use code, PINs, TANs, online banking entries and such transaction data as booking rates, payment recipients, account data, references, transfer and credit card information) is used by us exclusively for the purposes of providing online banking and implementing pay-ments.

We may be obliged as a result of statutory requirements (in particular from the Money Laun-dering Act, Lending Act and Payment Service Supervision Act) to transfer your transaction data to state institutions.

In addition, the data when technically providing online banking and handling payments is passed to our payment service providers. They process your data exclusively at our request and to our instructions (so-called contract processor under Article 28 GDPR) and have un-dertaken appropriate technical and organisational measures to protect your data.
For particular international transfers and separately requested urgent transfers, the data con-tained in the transfer may be passed on via international payment service providers (in par-ticular SWIFT with its head office in Belgium and TARGET2) to the recipient’s bank.

The legal basis for handling payments is the implementation of our contract with you, Article 6 Paragraph 1 Sentence 1 Letter b) GDPR. The legal basis for the statutorily required transfer of data to third parties and their storage beyond our contractual relationship is Article 6 Paragraph 1 Sentence 1 Letter c) GDPR.

We store the data processed as part of the online banking for as long as this is required for technical provision and contract implementation. We also process your data for as long as we are obliged to do so under statutory and supervisory law requirements, in particular from tax and fee law.
Is a system under sparkasse.mein-check-in.de/saarlb/position-43449 ?

6a. SWIFT
For bank transfers to foreign destinations and specially commissioned rapid transfers, the data contained in the transfer are transmitted to the financial institution of the beneficiary using the Society for Worldwide Interbank Financial Telecommunication (SWIFT), headquar-tered in Belgium, which is the only payment notification service operating globally. Payments within Europe are processed in the operating centres in the Netherlands and Switzerland.
Under the “Agreement between the EU and USA on the processing of payment data and their transfer to the US finance ministry for the purposes of tracking the financing of terrorism (Terrorist Finance Tracking Program - TFTP)” (so-called SWIFT agreement), US authorities receive access to the transfer data transferred via SWIFT and stored in the European SWIFT operating centres for the purposes of combating international terrorism. Transfers within the EURO payment area (SEPA) are excluded from this agreement.

Data from payment orders to other countries outside Europe remain stored in the SWIFT operating centres in the Netherlands and the USA for reasons of system security. The access by US security organisations to the SWIFT payment data for countries outside Europe stored in the operating centre in the USA is subject exclusively to US law.

7. Application form
You have the opportunity to apply online for vacant positions via our applicant portal.If you enter data in the entry mask planned for this, it is transferred to and processed by us. This relates to the following compulsory data:

(1) Form of address
(2) Last name, first name
(3) Street, postcode, town/city, country
(4) Email address
(5) Phone number
(6) Name and place of last school attended
(7) Highest school examination achieved
(8) Grade system
(9) Average grade of final certificate
(10) Date of availability
(11) Desired salary
(12) CV
(13) Introductory letter
(14) Work references

We also process the data that your provide us with voluntarily.

Before sending your data we would ask you to give your consent to the processing of the data and refer you to this data protection policy. Your data is then processed with your consent. The legal basis is therefore Art. 6 Para. 1 GDPR.
You may withdraw your consent at any time. You can direct your revocation at any time with no specific form to the relevant administrator. However where there is doubt, it is not possible to process your application.
You declare your consent to the HR department employees, relevant department and re-sponsible bodies (works council, if relevant disability representatives) being able to access your personal data. Your data is exclusively used by a limited group of people. Your personal data is not transferred by us or people appointed by us to third parties except if we are obliged to pass them on due to binding statutory regulations (e.g. to state-run bodies).

Contract data processing
As a result of a separate agreement in the processing of personal data, the personal data is collected, processed and used by the company PERBILITY GmbH, Starkenfeldstraße 21, 96050 Bamberg under the framework of contract data processing pursuant to Art. 28 GDPR in line with the relevant statutory requirements on our behalf. This is however not associated with the transfer of your personal data to third parties as defined by data protection law. We remain responsible to you under data protection law.

Storage and deletion of data
The general statutory storage and deletion periods apply. We delete your data as per the key statutory provisions after concluding the relevant recruitment process.
It is then no longer possible for our company to access and use your personal data.

Data transfer to third party states
The data is not transferred to third party states.

Access and correction right, right of revocation
You have the right to update the personal data that you have provided at any time by notifying the recipient or request its deletion. You can yourself determine which information you provide to us. Fields marked with a * are compulsory as we need this information for the ap-plication process. Fields not marked with a * may be completed voluntarily. You are yourself responsible for all content of our online application, e.g. photos, and must ensure compliance with statutory requirements, e.g. trademarks, copyrights, personality and other rights of third parties.

You are entitled at any time to revoke your consent to the use of personal data. To do so, please contact our HR department whose contact data is stored on the website.

Obligation to provide data
If you do not consent to the compulsory information described in the previous chapter, it is unfortunately not possible for you to apply to us electronically via this career page.

Talent pool
If no suitable job can be offered at the time of your application, there is the opportunity to collect, process and use the data provided/transferred during the application process in the talent pool even after completion. This is used to make contact for recruitment purposes and to be used when assigning jobs later. You consent to this use separately.

To top

II. Data processing as part of our online presence at XING

In addition to the website, we are also represented on the XING online platform. If the com-munication with you takes place within the framework of these platforms and networks, the business terms and data protection guidelines there apply. These are located on the website of the relevant supplier.

If you communicate with us via these websites, we process the data in your messages and posts depending on the content contained in them and for the purposes of the communication either on the basis of Article 6 Paragraph 1 Sentence 1 Letter b) or f) GDPR. We use your data to communicate with you.

If permitted by the website, your data is deleted as soon as it is no longer required for the relevant purpose.

To top

III. Glossary of data protection law terms

We use some terms in this data protection policy that are also used by the legislator, in par-ticular in the European General Data Protection Regulation (GDPR). As it is important to us that you can understand this data protection policy, we explain below some of the important terms in alphabetical order:

Affected person: This is each identified or identifiable natural person whose personal data will be processed by the party responsible for processing data.

Browser: This is a program that displays websites, for example Mozilla Firefox or Google Chrome.

Contract processor: This is a natural person or legal entity, authority, institution or other organisation that processes personal data on behalf of the responsible party.

Cookies: These are small text files that contain a characteristic series of characters (cookie ID) and are stored via an internet browser on your device (e.g. smartphone or computer) if you do not prevent this by technical means. Cookies enable visited websites and services to differentiate your individual browser from others. A particular internet browser can therefore be recognised and identified via the unique cookie ID. It is therefore possible to facilitate the use of our website as you only have to enter certain data once for example. If possible, we use cookies that are deleted again when you close your browser (so-called session cookies). We also use cookies that are stored on your computer for a longer period of time (so-called persistent cookies). In addition to the option to configure your browser such that it does not accept cookies, you can delete cookies already set at any time via an internet browser or other programs. Please note however that not using cookies may result in not all functions being fully usable on our website or services.

Declaration of consent: This is any declaration of intention in the form of a declaration or other clear confirmation of treatment voluntarily issued by the person concerned in an in-formed and unmistakable manner for the specific situation in which the person concerned makes clear that he/she consents to have his/her relevant personal data processed.

IP address: This is an address assigned to your device (e.g. smartphone or computer) on the internet, so that your device can be addressed and is reachable there.

Personal data: This is all information that relates to an identified natural person or one that can be identified (hereinafter referred to as the “affected person”). A person is considered to be identifiable if they can be identified directly or indirectly in particular by assignment of an identifier such as a name, code number, location data, online code or one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person.

Processing: This is any procedure executed with or without the assistance of automated processes or any series of procedures performed in conjunction with personal data, such as collecting, recording, organising, filing, saving, adapting or changing, exporting, querying, using, disclosing personal data by transmitting, distributing or any other form of provision, comparing or linking, restricting, deleting or destroying said data.

Recipient: This is a natural person or legal entity, authority, institution or other organisation to whom the personal data is disclosed, regardless of whether it is a third party or not.

Responsible entity or person responsible for processing: This is the natural person or legal entity, authority, institution or other organisation that, alone or together with others, makes decisions regarding the purposes and means of processing personal data.

Restricting the processing: This is marking stored personal data such that its future pro-cessing (for example with a view to particular processing purposes) is restricted.

Third parties: A third party is a natural person or legal entity, authority, institution or other organisation (not including the affected person), the responsible party, the processor and persons under the direct supervision of the person in charge or the processor, who is author-ized to process the personal data.

To top

IV. Security

We use technical and organisational security measures to protect your personal data from manipulation, loss, destruction or access by unauthorised people. Our security measures match the best available technology.

To top

V. Validity and changes the data protection policy

The data protection policy is currently valid and is dated 24/05/2018.

It may be necessary to modify this data protection policy if our website develops or as a result of implementing new technologies. We reserve the right to undertake appropriate changes.

To top

VI. Your questions on data protection

If you still have questions on this data protection policy or your rights, please first contact the stated data protection manager.

To top

Rechter Inhaltsbereich
Die deutsch-französische Regionalbank
La banque régionale franco-allemande