The ‘DSGVO’ (German: Datenschutzgrundverordnung) is a regulation of the European Union. It applies with immediate effect in every Member State, including Austria. Any person whose data are being processed can invoke the DSGVO directly.
The DSGVO contains regulations applicable to the processing of your personal data.
Yes, information made known to us based on the business relationship is also protected by Austrian banking secrecy – as specified in § 38 of the Banking Act. The DSGVO applies in addition to this legislation.
Personal data are any information relating to an identifiable natural person (‘person affected’). A natural person counts as identifiable if he or she can be directly or indirectly identified by being allocated a name or password, such as an IBAN or account number, for example.
The term ‘processing’ refers to any process executed in association with personal data, with or without the help of automated procedures. This includes, for example, the gathering of such data, their recording, organisation, ordering, storing, adjustment or modification, reading out, querying, usage, disclosure (by transmission, distribution or making it available in another form), comparison or linkage, restriction, deletion or destruction.
The term ‘person responsible’ means the natural person or legal entity, authority, institution or other office which, either alone or together with others, decides on the purposes and means of processing personal data.
The term “person processing the order” means a natural person or legal entity, authority, institution or other office which processes personal data on behalf of persons responsible.
Meinl Bank AG
is responsible for processing your data.
At Meinl Bank AG, the function of Data Protection Officer is being taken on by Andrea Hauke. If you have any queries, suggestions or complaints, you can reach him by writing to:
Andrea Hauke – Data Protection Officer
Meinl Bank AG
Meinl Bank AG processes the following personal data:
You yourself will have made us aware of most of your personal data that we process, while opening an account, for example, or within the bounds of a consultation.
Above and beyond this, however, the data could come from the following sources:
In addition to this, we could receive data from state authorities or persons acting on behalf of an official body such as, for example, guardianship courts or criminal courts, state prosecutors’ offices or court commissioners. For a detailed listing, you have the right to information.
Meinl Bank AG is a credit institution according to § 1, Para. 1 of the Banking Act. Within these activities, we process your personal data.
Depending on the type of contracts we have with you, we provide certain services for you. This could involve a credit agreement, for example, or an account agreement.
To do this, we need to process your data. You will find the extent of the data processing in your account opening documents.
Legal regulations and purposes also require us to process your personal data. Examples of these may include:
A justified interest in data processing by us or third parties exists in the following cases:
If neither a contract nor a legal obligation nor a justified interest exists, however, data processing can still be legal if you have granted your consent or agreement to our doing so. The extent and content of this data processing is always a result of the respective consent. It is essential that you can revoke your consent at any time.
The legality of the processing that has taken place based on this consent up until the revocation is not affected as a result of the revocation, however. Loosely speaking, this means a revocation does not work retroactively.
Your personal data can be passed on to:
The DSGVO guarantees you the following rights for your personal data. You have the right to:
You have the right to demand confirmation of whether we are processing your personal data. If this is the case, you also have the right to information about these personal data, and to the following information:
It is important to Meinl Bank AG that your data should be correct and complete at all times. If you suspect the data are incorrect or incomplete, you can apply for your data to be corrected or completed.
We set great store by ensuring your data are only processed within the framework conditions of the Data Protection Act. If you are justifiably of the opinion that this is not the case, however, you can apply for your personal data to be deleted. We must explicitly draw your attention to the fact that your consent to the processing of your data is a precondition for our being able to provide you with legally compliant services.
We set great store by ensuring your data are only processed within the framework conditions of the Data Protection Act. If you are of the opinion that this is not the case, however, then you have the right to demand the processing of your personal data be restricted.
No matter what right you wish to assert, you can send your application to us personally at Meinl Bank AG in a letter, signed in your own hand and with a copy of your identification document enclosed, at the following address:
We will make the appropriate information about the measures available to you immediately, but within one month of your application being received at Meinl Bank AG.
The deadline could be extended by a further 2 months if this proves necessary due to the complexity and volume of applications. We will, however, inform you of the possibility of an extension to this deadline and the reasons for this within one month of our receiving your application.
Financial matters are a matter of trust – e-mails, however, are not always worthy of that trust. Viewed in terms of security, e-mails are more comparable with a postcard than a letter. Since we don’t want to send your banking data on a postcard, we will have the information sent to you by post.
Applications are completed free of charge. Exceptions: we are only entitled to demand reasonable payment if applications are clearly unfounded or are excessive. In this way, the administrative costs of the notification, rejection or execution of the measure applied for are taken into consideration.