Protecting your data

• The protection of your privacy is very important to us.
• We treat your data responsibly and only for specified purposes.
• We are aware of the sensitivity of the data you have entrusted to us.
• We do not process any personal data without a legal basis.
• We will never pass on your data to third parties without your explicit consent.
• We use several well-established measures (such as encryption) to prevent any misuse of your data.
• We follow the principle of data minimization.

Raisin Bank provides information on deposits and investment products of selected partners via our website. In addition, our customers can access the Online Banking System of Raisin Bank.

Raisin Bank is aware that the personal data you have entrusted to us is sensitive. We ensure that the personal data that customers and prospective customers provide when using our services is always treated confidentially.

Personal data is any information that personally identifies you (or can be directly linked to you) such as your name, telephone number, address, and other information required for the provision of our services. This does not include information which cannot be directly linked to your person.

We protect the personal data of customers and prospective customers through the use of high security standards as well as standard operating procedures, which have been created specifically to prevent any misuse of this information.

The protection of personal data is important to us at Raisin Bank. Therefore, Raisin Bank aims to comply with the data protection regulations in order to achieve sufficient protection and security of the customer data. With this document we wish to inform you about the processing of your personal data by Raisin Bank and the rights regarding data protection, to which you are entitled.

Responsible for the data processing is:

Raisin Bank AG
Niedenau 61-6360325 Frankfurt am Main,
Germany Email address: privacy@raisin.ie
Telephone: +35315461020

Our corporate data protection officer can be reached at:

Raisin Bank AG
Data protection officer
Niedenau 61-6360325 Frankfurt am Main, Germany Email address: privacy@raisin.ie
Telephone: +35315461020

We process personal data that we receive from you in the context of the customer relationship. The customer relationship begins with the initiation of a contract and includes the completion of the contract. We also process data that we obtained permissibly from publicly available sources (e.g. commercial register).

Personal data from you that we process includes for example:

first and last name, address, date and place of birth, nationality, occupational information, phone numbers, email address, bank account information, information on personal income, information on personal wealth, marital status, tax number, data from identification documents, login data, customer number, etc.

a) To fulfil contractual obligations (Art. 6 (1) lit b) GDPR):

We process personal data (Art 4 No. 2 GDPR) in order to provide our services under the platform contract and other relevant required activities. Precontractual information that you provide as part of the registration process is also included.

b) To meet legal obligations (Art. 6 (1) lit c) GDPR):

We may process personal data for the purpose of fulfilling various legal obligations, e.g. due to taxation law etc.

c) Within the framework of your consent (Art. 6 (1) lit a) GDPR):

In case you give us consent for the processing of your personal data for specific purposes, we process data in accordance with the purposes and to the extent defined in the declaration of consent. You have the possibility to revoke your consent at any time with effect for the future.

d) To protect legitimate interests (Art. 6 (1) lit f) GDPR):

It is possible as result of a balancing of interests that in favor of Raisin.ie or third parties Raisin.ie or a third party process data beyond the actual fulfilment of the contract to protect legitimate interests of Raisin.ie or third parties. Such processing is:

• Testing and optimization of requirements analysis and direct customer approach;
• Measures to manage the business, to improve services and to recover customers;
• Advertising or market and opinion research, unless you have not objected to this kind of usage of your personal data according to Art. 21 GDPR.

a) Within Raisin Bank those departments and employees process your personal data, which need the data to fulfill the contractual obligations, legal obligations or legitimate interests.

b) In addition, data processors (e.g. external IT service providers) and distribution partners contracted by us process your personal data if they need the data to perform their respective services. All data processors and distribution partners have a contractual obligation to treat your data as confidential and to process the data only within the framework of the provision of their services to us.

c) Based on the fulfillment of legal obligations Raisin.ie may be obliged under certain circumstances to forward data to public bodies and institutions.

d) Other persons may receive your data if you have given your consent for the transmission of data to such persons.

• Raisin Bank stores your personal data no longer than absolutely necessary. In order to fulfill the contract, we store the data for the duration of the entire customer relationship.

• Based on legal retention and documentation requirements Raisin Bank can store data beyond the customer relationship. This can derive for example from the German Commercial Code (Handelsgesetzbuch, HGB) and the German Tax Code (Abgabenordnung, AO). We take in to account the statutes of limitation regarding storage. The Civil Code (Bürgerliches Gesetzbuch, BGB) provides for a general limitation period of 3 years and in certain cases even 30 years.

a) Right of information (Art. 15 GDPR):

Your right of information includes that you can request from Raisin.ie a confirmation whether we process personal data of you. Is this the case, you have the right to get information about this data and further information about how we process the data.

b) Right to rectification (Art. 16 GDPR):

If your information is not correct (anymore), you have the right to claim for rectification of incorrect personal data by us.

c) Right to erasure (Art. 17 GDPR):

You have the right to call for an immediate erasure of your data by us if any of the following applies:

• The keeping of the personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
• You have revoked your consent and there is no other legal basis for processing.
• Your personal data has been processed without good reason.
• Your personal data must be deleted to meet legal requirements.

d) Right to restrict processing (Art. 18 GDPR):

The right to restrict processing includes that you can require limited data processing if any of the following applies:

• The accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data.
• The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead.
• Raisin.ie no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims;
• You have objected to the processing and the verification whether the legitimate grounds of the controller override those of the data subject is still pending.

e) Right to object (Art. 21 GDPR):

If data processing takes place on the basis of a legitimate interest or of the public interest, you have the right to object to this data processing. Detailed information on your right of objection can be found at the end of this section.

f) Right to data portability (Art. 20 GDPR):

You have the right to receive your personal data provided to us in a portable format and ask us to transmit such data to another controller without hindrance from Raisin.ie.

g) Right to complain:

In case you believe that we process your data against national or European data protection law, we kindly ask you to contact us, to find a solution together. In addition, there is a right to complain at the respective data protection supervisory authority.

h) Revocation of consent for data processing:

A consent to the processing of personal data can be revoked at any time without any form requirements. This also applies with regard to the withdrawal of declarations of consent issued to us prior to the application of the GDRP, i.e. before 25 May 2018. We would like to point out that any revocation only applies for the future.

a) In the context of the customer relationship, you must provide the personal data necessary for the initiation and fulfillment of the costumer relationship. Also you must provide us with personal data necessary for the fulfillment of legal obligations.

b) Should you disagree with the provision of these required personal data, we are not in a position to conclude or execute a contract with you.

We politely request you to direct this via phone or email to our customer service:

Phone: +35315461020
Email address: service@raisin.ie

For international bank transfers, Keytrade Bank uses the Belgian-based ‘Society for Worldwide Interbank Financial Telecommunication’ (SWIFT), the only globally-active payment information service, to transfer the data included in the transaction to the partner banks. For reasons of system security, SWIFT temporarily stores the transaction data in its data centers in the Netherlands and in the USA.

The dispatch of our newsletters and event-related mails is carried out by means of “MailChimp”, a mail delivery platform of the US company Rocket Science Group, LLC, 675 Ponce de Leon Ave NE #5000, Atlanta, GA 30308, USA. The e-mail addresses of our mail recipients are stored on the servers of MailChimp in the USA. MailChimp uses this information for sending and evaluating mails on our behalf. Furthermore, MailChimp can use this data to optimize or improve its own services, e.g. for the technical optimization of the dispatch and the presentation of the mails or for economic purposes. However, MailChimp does not use the data of our mail recipients to write them or to pass them on to third parties. MailChimp is certified under the US-EU data protection Agreement “Privacy Shield” and undertakes to comply with EU data protection regulations. You can view the privacy policy of MailChimp here.

Below you will find an explanation of the statistics and tracking services used on this website. All these services use “cookies”, which are text files placed on your computer, to help the website analyze how users use the site, as well as comparable technologies (e.g. storage of data in the local memory of your device, so-called local storage technology or tracking pixels that are used to (temporarily) store information about specific users or usage processes.

You can prevent cookies from being saved on your device at any time using your browser settings. However, we would like to point out that it may not be possible to use all functions of this website if cookies are disabled.

Different types of cookies are used for the optimal performance of our website.

Session cookiescontain an identifier in the form of a so-called session ID and are automatically deleted when you close the browser. Using the session ID, various requests from your browser can be assigned to a common session and thus various functions such as the login function can be implemented. The session cookies are deleted when you log out or close the browser.

Permanent cookiesare automatically deleted after a specified period, which can differ depending on the cookie. You can also delete the cookies early in the security settings of your browser at any time. These cookies enable us to recognize your device when you return to the website.

Technically required cookies. The main purpose of the technically required cookies is to technically enable the use of our services. The legal basis is Art. 6

Para. 1 lit. b GDPR. A deactivation of the technically required cookies is not offered.

We use technically necessary cookies in the following cases:

• for login authentication (e.g. when logging into the Raisin Bank account);
• for load distribution;
• to save form data or your settings in connection with our cookie banner;
• in order to record which partner offer led you to our website and, if necessary, to be able to offer you the special partner conditions specified there; [ ]
• to note that information placed on our website has been displayed to you – so that it will not be displayed again the next time you visit the website.

Analysis cookies. Other cookies are used to analyze the use of our website for statistical purposes. They tell us, for example, which content on our website is particularly relevant and which type of device was used to visit the website. This enables us to make our offer more interesting and, if necessary, more user-friendly for our users. The information about the browsers and devices used enable us to adapt the page design to the most important browser types. We only use these analysis cookies if you agree to this use via our cookie banner. The legal basis for the data processing in connection with the analysis cookies is your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your consent by calling up the cookie settings and changing the relevant selection there.

Marketing cookies. We also use cookies for advertising purposes when we use techniques to be able to show you advertisements for our weltsparen products on other pages of our partner networks after you have already visited our website (so-called re-targeting). In other cases, we also use cookies to measure the effectiveness of our campaigns or to be able to track and bill the services of our advertising partners, e.g. if you first became aware of our products through a message on a third-party site. In these cases, our so-called affiliate partners receive remuneration for a successful referral or forwarding.

We only use these marketing cookies if you agree to this use via our cookie banner. The legal basis for the data processing in connection with the marketing cookies is your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your consent by calling up the cookie settings and changing the relevant selection there.

The services used and their analysis and marketing cookies are explained below:

The Web site uses Bing Universal event tracking (a service from Microsoft Inc., one Microsoft Way, Redmond, WA 98052-6399, USA). This service allows us to track the activities of the users of our website, if they have been forwarded to our website via a display of Bing ads. In this case, a cookie is stored on your computer. On our website is a so-called Bing Universal event tracking tag is set. This is a code that, in conjunction with the cookie stored on your computer, stores anonymized data (such as the event type and event category) about your use of the site. This data is transferred to a Microsoft Inc. server in the United States and is stored there for a maximum of 180 days. By using our website, you consent to the processing of the data collected about you by Microsoft in the manner and for the purpose described above. You may oppose participation in the tracking at any time with effect for the future under this link.

This website uses the web analytics service Crazy Egg of Crazy Egg Inc. (‘Crazy Egg’) to collect statistical data about the usage of our website. With the help of Crazy Egg’s technology, visitor information is collected and sent to Crazy Egg’s server. With the help of cookies, the technology enables us to determine, analyse and visualize the activities of users when visiting our website. However, in this process, no personal data, such as names, addresses or telephone numbers, is saved by Crazy Egg, and the information collected is not forwarded to third parties. By using this website you agree to the processing of data about you by Crazy Egg in the manner described above and for the above-stated purposes. You can opt out of the collection and storage of data by Crazy Egg at any time by adjusting your browser settings. For guidance on how to do this, click on this link.

This website uses the so-called Facebook pixel of the social network Facebook (Facebook Inc., 1601 South California Avenue, Palo Alto, CA 94304, USA). When you visit our website, the Facebook pixel is used to establish a direct connection between your browser and the Facebook server. This will give Facebook the information that you have visited this page with your IP address. This allows Facebook to associate the visit to our pages with your user account. The information obtained in this way can be used for the display of Facebook ads or for tracking functions. For more information, see the Facebook privacy statement. By using our website, you consent to the processing of the data collected about you by Facebook in the manner described above and for the aforementioned purpose. If you do not wish to collect data, you can disable it here.

This website uses Google Analytics. This is a web analytics service which is provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, text files placed on your computer, to help analyze how customers use this site. Information generated by the cookie about your use of the website (including IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information to evaluate your use of the website, compiling reports on website activity for website operators, and providing other services relating to website activity and internet usage. Google may transfer this information to third parties where required to do so by law, or where third parties process the information on Google’s behalf. Google will not associate your IP address with any other data that is held by Google. You may at any time refuse the use of cookies by selecting the appropriate settings in your browser. Please note that if you do this you may not be able to use the full functionality of the website. By using this website, you consent to the processing of your personal data by Google in the manner and for the purposes set out above. You can prevent Google’s collection and use of data (cookies and IP address) by downloading and installing the browser plug-in available here. You can also opt out from Google Analytics tracking on this website by clicking on this link.

In order to improve the user experience on our website, we use the software Hotjar (http://www.hotjar.com, 3 Lyons range, 20 Bisazza Street, Sliema SLM 1640, Malta, Europe). By using Hotjar we can measure and evaluate the user behaviour (mouse movements, clicks, scrolling etc.) on our internet pages. In order to collect data, Hotjar uses cookies on users’s devices and can store data from users such as browser information, operating system, time on the site, etc. More information about data processing by Hotjar can be found here.

For a direct interaction with the visitors of our internet site via chat we use a communication tool of the provider Intercom R&D, Stephens Court, 18-21 Saint Stephens Green, Dublin 2, Ireland. When using the chat function on our internet site, no automatic recording or transmission of personal data of the visitor to intercom is carried out. If the visitor leaves his e-mail address, it will be stored by intercom and may be used in accordance with the privacy policy of Intercom. The privacy policy of intercom can be viewed here.

LinkedIn website retargeting is a remarketing and behavioural targeting service from LinkedIn Corporation that connects the activity on our website to the LinkedIn network to display interest-based recommendations. To do this, this website uses the so-called LinkedIn insight tag. This tag deposits a cookie in the web browser of visitors to our website. We also receive aggregated and anonymous reports from LinkedIn about ad activity and information about how you interact with our site. The LinkedIn insight tag allows you to collect meta data such as IP address, timestamp, and events (such as visited page). All data is encrypted. The LinkedIn browser cookie is stored in your browser until the cookie is deleted or expires (the cookie has a six-month validity period from the time the user’s browser last loaded the Insight tag). By using our website, you agree to the processing of the data collected about you in the manner and for the purpose described above. You can opt out of the analysis of your usage behaviour through LinkedIn and the display of interest-based recommendations. To do this, click the “Decline on LinkedIn” checkbox (for LinkedIn members) or “Decline” (for other users) at this link.

The pages on which we collect personal data are encrypted with 128 bit and are certified by institutions that are approved for international accredited encryption certification.

For the Online Banking System of Raisin Bank, further security measures have been put in place (e.g., use of PIN/transaction password). Unauthorized access is prevented by a firewall system.

For more information, please refer to “Security”