BaFin - Navigation & Service

Go to:

Erscheinung:18.11.2020 | Topic Compliance Information on data processing when using BaFin’s guest WiFi network

The Federal Financial Supervisory Authority (Bundesanstalt für FinanzdienstleistungsaufsichtBaFin) processes personal data to meet its legal and (pre-)contractual obligations. This also includes data which BaFin collected from you. To promote your awareness regarding data processing and your rights as well as to comply with our duty to provide information in accordance with Article 13 of the EU General Data Protection Regulation (GDPR), BaFin informs you as follows:

1. Contact address for BaFin and BaFin’s Data Protection Officer

Bundesanstalt für Finanzdienstleistungsaufsicht
Graurheindorfer Str. 108
53117 Bonn
Postfach 1253
53002 Bonn
Phone: +49 (0) 228-4108-0
Fax: +49 (0) 228-4108-1550
E-mail: poststelle@bafin.de or De-Mail: poststelle@bafin.de-mail.de

BaFin’s Data Protection Officer can be reached at: datenschutz@bafin.de.

2. Purpose of processing

The personal data of those using BaFin’s guest WiFi network with their own devices is collected in order to make the WiFi service available to these users and to guarantee the security of the service. If individuals act in violation of the terms of service or commit a criminal offence while using BaFin’s guest WiFi network, the data will be used to determine the person responsible and to take legal action as required.

3. Legal basis for the processing of data

Article 6(1)(e) of the GDPR in conjunction with section 3 of the German Federal Data Protection Act (Bundesdatenschutzgesetz) and section 15 (1) of the German Telemedia Act (Telemediengesetz)

4. Intention to transfer the personal data to recipients in a third country or to an international organisation

BaFin does not intend to transfer personal data to a recipient in a third country (non-EU member states and countries outside the European Economic Area) or to an international organisation.

5. Recipient of data

Personal data is transmitted to Vodafone GmbH for the purpose of information security and in order to ensure that the service runs smoothly.

6. Time period for storing your data

The data that BaFin processes is only stored for the duration of one session (96 hours). As soon as a session ends, the personal data is erased. If a disruption or error occurs, the data is stored for the time required to resolve the error or disruption.

7. Your rights as a data subject

In principle, as a data subject, you have the right of access to personal data (Article 15 of the GDPR), the right to rectification (Article 16 of the GDPR), the right to erasure (Article 17 of the GDPR) and the right to restriction of processing (Article 18 of the GDPR), the right to data portability (Article 20 of the GDPR) and the right to object to the processing (Article 21 of the GDPR). Moreover, you have a right to lodge a complaint with the data protection authority competent for BaFin, i.e. the Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragte(r) für den Datenschutz und die Informationsfreiheit).

8. Automated individual decision-making, including profiling

There is no automated individual decision-making.

9. Basis for the provision of your data and consequences in the event of failure to provide your personal data

It is not possible to use BaFin’s guest WiFi network without providing personal data.

Did you find this article helpful?

We appreciate your feedback

Your feedback helps us to continuously improve the website and to keep it up to date. If you have any questions and would like us to contact you, please use our contact form. Please send any disclosures about actual or suspected violations of supervisory provisions to our contact point for whistleblowers.

We appreciate your feedback

* Mandatory field