– Objective and responsability

This data protection declaration informs you about the type, scope and purpose of the processing of personal data in relation to our online offer and the associated websites, functions and content (hereinafter jointly referred to as “online offer” or “website”). Details of these processing activities can be found in section 2.

  1. The application process is described in section 3.
  2. FI Group Deutschland GmbH (Alt-Heerdt 104, 40549 Düsseldorf, Germany) – hereinafter referred to as FI Group, “Provider”, “we” or “us” – is responsible for data protection within the meaning of the EU General Data Protection Regulation (Art. 24 DSGVO), other data protection laws applicable in the Member States of the European Union and other provisions with data protection character. 4.
  3. Our data protection officer is: Julia Oviedo.
  4. The term “user” includes all customers and visitors to the online service.

– Legal Basis
We collect and process personal data based on the following legal bases:

  1. Consent pursuant to Article 6(1)(a) of the General Data Protection Regulation (GDPR). Consent is any voluntary, specific, informed and unambiguous expression of will in the form of a statement or other unambiguous affirmative act by which the data subject indicates his or her agreement to the processing of personal data relating to him or her.
  2. Necessity for the performance of the contract or the implementation of preparatory measures in accordance with Article 6(1)(b) DSGVO, i.e. the data is necessary for us to be able to fulfil our contractual obligations towards you or we need the data to prepare for the conclusion of a contract with you.
  3. Processing for the fulfilment of a legal obligation pursuant to Article 6(1)(c) DSGVO, i.e. that processing of the data is required, e.g. due to a law or other regulations.
  4. Processing for the protection of legitimate interests pursuant to Article 6(1)(f) DSGVO, i.e. that the processing is necessary to protect legitimate interests on our part or on the part of third parties, unless such interests are overridden by the interests or fundamental rights and freedoms of you which require the protection of personal data.

– Collection and storage of personal data and the nature and purpose of their use

When visiting the website: When you visit our website, information is automatically sent to our website server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion: 

  • IP 
  • Date and time of access, 
  • Name and URL of the file accessed, 
  • Website from which the access is made (referrer URL), 
  • Browser used and, if applicable, the operating system of your computer as well as the name of your access provider. 

The aforementioned data is processed by us for the following purposes: 

Ensuring a smooth prevention construction of the website, Ensuring a comfortable use of our website, evaluating system security and stability, and for further administrative purposes. 

The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate interest follows from the purposes for data collection listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person. 

– Rights of data subjects

To request the exercise of any of the rights held by the interested parties established by the regulations, you can fill in the following form and your request will be processed by the FI GROUP team.

– Data deletion and storage period
The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage no longer applies. In addition, storage may take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.

– Processing safety

  1. We have implemented appropriate and state-of-the-art technical and organisational security measures (TOMs). This means that the data we process is protected against accidental or intentional manipulation, loss, destruction and unauthorised access. 2.
  2. The security measures include, in particular, the encrypted transmission of data between your browser and our server using the SSL method in accordance with the state of the art.

– Data transfer to third parties, subcontractors and third-party providers

  1. Personal data is only transferred to third parties within the framework of legal requirements. We only pass on user data to third parties if
    1. you have given your express consent in accordance with Art. 6 Para. 1 Sentence 1 lit. a DSGVO,
    2. the disclosure is necessary to protect legitimate interests in accordance with Art. 6 Para. 1 Sentence 1 lit. f DSGVO and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure,
    3. in the event that there is a legal obligation for disclosure pursuant to Art. 6 (1) sentence 1 lit. c DSGVO,- this is legally permissible and necessary according to Art. 6 para. 1 p. 1 lit. b DSGVO for the processing of contractual relationships with you.
    4. this is necessary for billing purposes or for other purposes, if the transfer is necessary to fulfil contractual obligations towards users
  2. If we use content, tools or other means from other companies (hereinafter collectively referred to as “third party providers”) and their registered office is located in a third country, it is to be assumed that a transfer of data to the third party providers’ countries of domicile will take place. The transfer of personal data to third countries by us will only take place if there is an adequate level of data protection, user consent or other legal permission.


– Google Tag Manager

  1. This website uses the Google Tag Manager of the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags, does not set cookies and does not collect any personal data. The Google Tag Manager triggers other tags that may collect personal data. However, the Google Tag Manager does not access this data.
  2. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags, provided they are implemented with the Google Tag Manager.
  3. Your consent constitutes the legal basis for the processing of personal data, as may occur during the collection by web analytics tools, pursuant to Art. 6 (1) lit. a DSGVO. In addition to consent, we have a legitimate interest pursuant to Art. 6 (1) (f) DSGVO in analysing the behaviour of visitors to our website in order to improve our offering technically and economically.

– Content Management System (CMS) WordPress

  1. For our website we also use the services of WordPress. WordPress is a website building system. The service provider is the American company Automattic Inc., 60 29 th Street #343, san Francisco, CA 94110, USA. WordPress also processes data from you in the USA, among other places. WordPress uses so-called standard contractual clauses in accordance with Art. 46 (2) and (3) DSGVO as the basis for data processing for recipients in third countries or data transfer there. Standard contractual clauses are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries and stored there. Through these clauses, WordPress undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eurlex.europa.eu/eli/dec_impl/2021/914/oj?locale=de.
    The Data Processing Agreements, which correspond to the standard contractual clauses, can be found at https://wordpress.com/support/data-processing-agreements. You can find out more about the data processed through the use of WordPress in the privacy policy at https://automattic.com/de/privacy/.
  2. The legal basis for the use of the CMS is our legitimate interest (Art. 6 para. 1 lit f DSGVO).

– Content Delivery Network (CDN)

We use a content delivery network (CDN). A CDN is a service with the help of which the content of an online offer, in particular large media files such as graphics or programme scripts, can be delivered more quickly and securely with the help of regionally distributed servers connected via the Internet. The types of data processed are content data (e.g. entries in online forms), usage data (e.g. websites visited, interest in content, access times) and meta/communication data (e.g. device information, IP addresses). Users are, for example, website visitors and users of online services. The purpose of the processing of personal data is the provision of our online services and user-friendliness.

The legal basis for the use of the CDN is our legitimate interest (Art. 6 para. 1 p. 1 lit. f. DSGVO)

– Google Analytics

  1. We use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House Barrow Dublin Ireland – hereinafter “Google”), for the analysis, optimisation and economic operation of our online services in accordance with Art. 6 Para. 1 lit. DSGVO, we use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) – hereinafter “Google”. Google uses cookies and other technologies. The information generated by the service about the use of the online offer, such as browser type/version, operating system used, referrer URL, host name of the accessing computer (IP address), time of the server request by the users, is transmitted to a Google server in the USA and processed there.
  2. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services associated with the use of the website and the internet for the purposes of market research and the needs-based design of this website.
  3. Google acts on our behalf as part of a commissioned processing pursuant to Article 28 DSGVO. We have concluded a data protection agreement with Google that includes the EU standard data protection clauses.
  4. The information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. We use Google Analytics with IP anonymisation activated. This means that under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymised so that an allocation is not possible (IP masking).
  5. Google Analytics stores cookies in your web browser for a period of two years since your last visit. These cookies contain a randomly generated user ID with which you can be recognised on future website visits. Users can prevent the storage of cookies by setting their browser software accordingly. However, we would like to point out that in this case not all functions of this website can be used to their full extent. Furthermore, you can prevent the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) as well as the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de).
  6. The recorded data is stored together with the randomly generated user ID, which enables the evaluation of pseudonymous user profiles. This user-related data is automatically deleted after 26 months. Other data remain stored in aggregated form indefinitely.
  7. You can find out more information about Google’s use of data, settings and revocation options on Google’s website:

– Youtube

  1. We use the provider YouTube to embed videos. Plug-ins, links and buttons to YouTube are used on the basis of Art. 6 para. 1 p. 1 lit. f DSGVO. The videos are embedded in the extended data protection mode.
  2. The data controller has integrated YouTube components on this website. YouTube is an Internet video portal that allows video publishers to post video clips free of charge and other users to view, rate and comment on them, also free of charge. YouTube allows the publication of all kinds of videos, which is why complete film and television programmes, but also music videos, trailers or videos made by users themselves can be accessed via the internet portal. The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre PArkway, Mountain View, CA 94043, USA. 2. Die Website von YouTube verwendet Cookies, um Informationen über die Nutzer der Website zu sammeln. YouTube verwendet sie unter anderem, um Videostatistiken zu erstellen, Betrug zu verhindern und die Benutzerfreundlichkeit zu verbessern.
    • Each time you call up one of the individual pages of this website, which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the Internet browser on your information technology system is automatically prompted by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information on YouTube can be found at https://ww.youtube.com/yt/about/de/. As part of this technical process, YouTube and Google receive information about which specific sub-page of our website is visited by you. This information is collected by YouTube and Google and assigned to your YouTube account.
  3. YouTube and Google always receive information via the YouTube component that you have visited our website if you are logged into YouTube at the same time as calling up our website. This takes place regardless of whether you click on a YouTube video or not. If you do not want this information to be transmitted to YouTube and Google, you can prevent the transmission by logging out of your YouTube account before accessing our website.
  4. You can find further information about data protection at YouTube in their data protection declaration at: http://www.youtube.com/t/privacy_at_youtube. This provides information about the collection, processing and use of personal data by YouTube and Google. 5.
  5. The processing of this information is based on your consent in accordance with Article 6 (1) (a) DSGVO.

– Xing

We have integrated Xing components on this website. Xing is an internet-based social network that allows users to connect with existing business contacts and make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing. The operating company of Xing is Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany.

Each time you call up one of the individual pages of this website which is operated by us and on which a Xing component (Xing plug-in) has been integrated, the internet browser on your information technology system is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on Xing plug-ins can be found at https://dev.xing.com/plugins. Within the scope of this technical procedure, Xing receives information about which specific sub-page of our website is visited by you. If you are logged in to Xing at the same time, Xing recognises which specific sub-page of our website you are visiting each time you call up our website and for the entire duration of your respective stay on our website. This information is collected by the Xing component and assigned by Xing to your respective Xing account. If you click one of the Xing buttons integrated on our website, for example the “share” button, Xing assigns this information to your personal Xing user account and stores this personal data. Xing always receives information via the Xing component that you have visited our website if you are logged into Xing at the same time as calling up our website; this takes place regardless of whether you click on the Xing component or not. If you do not want this information to be transmitted to Xing, you can prevent the transmission by logging out of your Xing account before accessing our website. The data protection provisions published by Xing, which can be accessed at https://www.xing.com/privacy, provide information on the collection, processing and use of personal data by Xing. Furthermore, Xing has published data protection information for the Xing Share button at https://www,xing.com/share?op=data_protection.

– Hosting

Our website uses JooPBox

– General information

  1. Cookies are pieces of information that are transmitted from our web server or third-party web servers to users’ web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage. They are used to store data about your visit and for recognition purposes, as well as for statistical purposes, to improve and guarantee the operation of our website. The legal basis for this is Art. 6 para. 1 lit. f DSGVO.
  2. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

For more information you can access our cookie policy here.


  1. We reserve the right to change this data protection declaration with regard to data processing in order to adapt it to changed legal situations, to changes in the online offer or to data processing.
  2. Insofar as user consent is required or components of the data protection declaration contain provisions of the contractual relationship with the users, the changes will only be made with the consent of the users.
  3. Users are requested to inform themselves regularly about the content of this data protection declaration.

If you, as a visitor to our website, have any questions about data protection, please write to the person responsible for data protection Julia Oviedo by email to privacy@fi-group.com or contact FI Group Deutschland GmbH (Alt-Heerdt 104, 40549 Düsseldorf, Germany) directly using the contact details provided in section 1.1 of this privacy policy.
Status: 18.11.22



Since the EU General Data Protection Regulation (EU) 2016/679 (GDPR), has granted you certain rights about your personal data held by FI Group. To help you in being assured of the protection and privacy of your personal data, GDPR and the right to information empower you with the ability to ask FI Group for information about which personal data is being processed and what happens to your personal data.

Right to access (Art. 15 GDPR): provides you with the ability to access your personal data that is being processed by FI. This request provides you the right to see your own personal data, as well as request copies of your personal data.

Right to rectification (Art. 16 GDPR): in case you are believing that your personal data is not up to date or is inaccurate and you are requesting that modifications to your personal data be made as soon as possible.

Right to erasure (Art. 17 GDPR): provides you with the ability to ask FI Group to delete your data. The request would then require FI Group to stop the processing of the personal data that was based on the consent provided earlier.

Right to restriction of processing (Art. 18 GDPR): the right to restriction allows your data to continue being stored without being processed. The right to restrict processing provides you with an alternative to requesting the erasure of your personal data.

Right for data portability (Art. 20 GDPR): provides you with the ability to ask for the transfer of your personal data to another company.

Right to object (Art. 21 GDPR): provides you with the ability to object to the processing of your personal data. In this case, consent wasn’t appropriately requested and no processing other than that for legitimate purposes is being conducted.

Right to object to automated processing (Art. 22 GPDR): provides you with the ability to object to a decision based on automated processing.

× How can I help you?