NACORA Privacy Policy

The protection of your personal data is an important concern to us. Your trust is our top priority. Therefore, we always treat your personal data as confidential and in accordance with the applicable  data protection regulations as well as this Privacy Policy.

This Privacy Policy discloses the way and manner how NACORA Agencies AG, as controller (hereinafter “NACORA”, “controller”, “us”, “our”, or “we”) handles personal data on the internet, what information about the users of NACORA websites is recorded and analysed, and how this information is used, shared or otherwise processed. It is furthermore described how cookies and other technologies can be used in our applications. For further information regarding the operator of this website, please refer to our imprint. Please see or refer to our imprint.

Persons younger than 18 years of age should not transmit any personal data without the agreement of their parents or legal guardians. Children aged 16 years or younger can declare such consents only with the agreement of their parents or legal guardians. Personal data of minors is not knowingly gathered and processed.

NACORA may change and update this Privacy Policy on a regular basis at its sole discretion. In that case, we will notify you by publishing an updated version of this Privacy Policy on this and other relevant web pages.

This Privacy Policy will continue to apply to NACORA websites that refer to this Privacy Policy. It does not apply to NACORA websites that are subject to separate privacy policies.

  1. What personal data do we collect about you?
  2. For what purposes do we use your personal data and why is it justified?
  3. With whom do we share your personal data?
  4. How long do we store your personal data?
  5. Use of cookies and tracking technologies
  6. What are your rights and how can you exercise them?
  7. How can you contact us?

1. What personal data do we collect about you?

Most of our services do not require any form of registration, allowing you to visit our website without telling us who you are. However, some services and communications may require you to voluntarily provide us with personal data, which may include identification data and contact details, and professional data in the context of a job application. Some website usage data will automatically be collected when you visit our website. If you do not provide such data, we may not be able to provide services or information to you or enter into commercial engagements with you.

Provision of the website and creation of logfiles

On each retrieval of our website, our system automatically gathers data and information from the computer system of the accessing computer:

  • Information on the browser type and the version used
  • The user’s operating system
  • The user’s IP address
  • Data and time of the access
  • Websites from which the user’s system reaches our website
  • Websites that are called up by the user’s system via our website

The data will likewise be stored in the logfiles of our system. This data will not be stored together with other personal data of the user.

Registration

We offer users the possibility on our website to register by entering personal data. The data is entered in an input mask in the process and it is transmitted to us and stored by us. You are asked to provide the following data in the course of the registration process:

  • First name
  • Last name
  • Email
  • Phone
  • Company details

At the time of registration , furthermore, the following data is automatically stored:

  • The user’s operating system
  • The user’s IP address
  • Data and time of the access
  • Websites from which the user’s system reaches our website
  • Websites that are called up by the user’s system via our website

 

Contact form and e-mail contact

A contact form is available on our website, which can be used to contact us electronically. If a user uses this option, the data entered in the input mask will be transmitted to us and stored by us:  

  • First name
  • Last name
  • Company name
  • Country
  • Email

With regard to the processing of the data, reference to this Privacy Policy will be made in the transmission process. Your data will be processed for advertising purposes meanwhile only with your consent.

If contact is offered via a provided email address, the user’s personal data transmitted along with the email will be stored in that case.

The data will not be transferred to third parties. The data will be used exclusively for the processing of the conversation and, in the case you have expressly consented to it, for advertising purposes.

Online job application

Our online job applications are fully implemented and managed by the talent community program of  Kuehne + Nagel. For more information about how your personal data will be processed,  please review Kuehne + Nagel Job Portal privacy policy.

2. For what purposes do we use your personal data and why is it justified?

We use your personal data in the way as described in this Privacy Policy, in order to make our website and services available, to respond to your enquiries, and to the extent it is legally permissible or required to assist in legal or criminal investigations. We can further anonymise, and aggregate data gathered via this website for statistical purposes to expand our product portfolio and improve our services.

NACORA may process your personal data only as far as necessary to fulfil a contractual relationship with you, and to protect a justified interest of our company or of a third party, in particular to ensure the proper usage  and functioning of our website and communication with you, conducting analysis on the usage of our website, preserving our economic interests, and ensuring compliance with internal policies and applicable laws while safeguarding your rights and fundamental freedoms, or based on your consent.  

Your personal data may be processed:

for the provision of the website and creation of logfiles:

  • The temporary storing of the IP address by the system is necessary to enable a delivery of the website to the computer of the user. For this purpose, the user’s IP address must remain stored for the duration of the session.
  • The logfiles are stored in order to ensure the functionality of the website. In addition, the data helps us optimise the website and ensure the security of our IT systems. The data is not analysed for marketing purposes in this context.
  • The processing purpose is justified on the basis of our legitimate interest.

for registration:

  • A registration of the user is required for the fulfilment of a contract to which the user is a party or for the execution of pre-contractual measures.
  • Subject to your consent, which we ask for specifically for said registration purposes and your option to deregister at any time again, we also use your data to offer you such of our products and services that can be of interest to you. You can deactivate these services by clicking on “Deregister”. If you request further correspondence from NACORA after this time, we will recreate your subscription and you can then again click on “Deregister” if you would like to unsubscribe again.

for contact form and email contact:

  • The processing of the personal data from the input mask serves solely for our processing of the communication. This processing purpose is justified on the basis of our legitimate interest in data processing.
  • In the event of contact by email, this is also the required justified interest in the processing of the data. Your data will be processed for other than the specified purposes (e.g. for advertising purposes) only with your explicit consent.
  •  The other personal data processed in the course of the transmission process serves to prevent misuse of the contact form and to ensure the security of our IT systems.

Insofar as we obtain a declaration of consent from you for the processing of your personal data you may at any time withdraw your consent by contacting us as described in this Privacy Policy.

3. With whom do we share your personal data?

We can store your personal data or otherwise pass it on to our affiliates or further trustworthy business partners, who perform services in our name, for example, for technical support to evaluate the usefulness of this website for marketing purposes or other types of service provision or other third parties such as professional advisors, regulators or governmental authorities.

  • Within NACORA Group: We may share your personal data with NACORA Group affiliates as necessary for the processing purposes as described in this Privacy Policy. Details of NACORA affiliates can be found in the corporate filings published in the Investors pages of www.nacora.com.
  • With data processors: Certain service providers such as IT support, logistics and marketing providers  (hereinafter “processors”) may receive your personal data. We have conducted contracts with these processors to ensure that personal data is processed on the basis of our instructions and in compliance with this Privacy Policy, and other suitable measures regarding confidentiality and security. We pass on your personal data to these processors exclusively to the required extent in order to perform services that you have requested or authorised and to protect your and our rights, property or security
  • Certain other third parties: Your personal data may need to be shared with professional advisors, regulators, governmental authorities and other similar bodies,if we are obligated to do so based on applicable laws, orders by courts or other authorities, or if this disclosure is required in order to assist in legal or criminal investigations or court proceedings.

Please note that the companies of the NACORA Group as well as authorities, customers and suppliers to whom we may pass on your personal data, might possibly be domiciled outside of your home country, and potentially also in countries with data protection laws that can differ from those applicable in the country where you are domiciled. In such cases, we will ensure that suitable measures for the protection of your personal data are taken by introducing suitable legal mechanisms, e.g. EU standard contract clauses. You can find a copy of the EU standard contract clauses at: europa.eu/justice/data-protection/international-transfers/transfer.

4. How long do we store your personal data?

We will only retain personal data that we may have about you for as long as necessary to fulfil the purpose for which it was collected or to comply with legal or regulatory requirements. The personal data of the data subjects will be deleted or blocked as soon as the purpose for storing it ceases to apply. Storing can also take place beyond this point in time if this has been provided by laws and other regulations which apply to the data controller. The data will also be blocked or deleted when a storage period expires that is prescribed by said standards, unless there is a necessity for the continued storage of the data for a contract conclusion or contract fulfilment or legal obligations. If we anonymize data, we may use such data without further notice.

Special retention periods:

Provision of the website and creation of logfiles:

  • The data will be deleted, as soon as it is no longer needed to achieve the purpose for gathering it. This will be the case when the respective session is ended in the case that data is gathered for the purpose of providing this website.
  • In the event that the data is stored in logfiles, deletion will take place at the latest after 30 days. Storing beyond this point is possible. In that case, the users’ IP addresses will be deleted or anonymised, so that it will not be possible anymore to attribute them to the retrieving client.

Registration:

  • The personal data from your account will be stored for as long as required for the purposes for which the data has been gathered or otherwise processed. This does not apply insofar as we are subject to statutory retention periods.
  • Otherwise, the following applies: If you have not used your account for more than 365 days, we will use your email address to inform you that your account will be deleted.

5. Use of cookies and tracking technologies

In addition to the aforementioned data, cookies or similar technologies such as pixels (hereinafter generally referred to as “Cookies”) are used on your computer when you use and visit our website. Cookies are small text files or image files such as pixels, which are filed by your browser on your end device to store certain information. The next time you call up our website from the same end device, the data stored in the Cookies will subsequently be sent back either to our website (“First Party Cookie”) or to another website to which the Cookie is linked.

By the stored and returned information, the respective website recognises that you have previously retrieved and visited this web page using the browser of your end device. We use this information to allow us to design and display the website in the optimal way according to your preferences. In the process, merely the Cookie on your computer will be identified. Any storage of personal data beyond this will take place only upon your explicit consent or, where this is absolutely required, to enable the corresponding use of the offered service that you are accessing.

We differentiate between the following Cookies for the use of our website:

Necessary Cookies

These Cookies are necessary to operate the website and temporarily store session data so that the page is displayed correctly. They contain functions without which the user cannot use our pages as intended.

The purpose of using technically Necessary Cookies is to enable the users to use the websites. Some features of our websites cannot be offered without the use of Cookies. For these, it is required that the browser is recognised even after changing to other webpages.

The user data gathered by the technically Necessary Cookies is not used to create user profiles.

Cookies for reach measurement

Cookies that are used to measure the website reach gather information about the way our website is used. These Cookies do not store any information that permit the identification of the user. The gathered information is exclusively aggregated and thereby analysed in anonymous form.

Performance Cookies

By accepting Performance Cookies, Cookies for reach measurement are not deleted again, but they will remain stored for the purpose of recognising returning users. In addition, we conduct improvement measures for individual pages such as AB testing or offering certain information about our website features, in the course of which Cookies are also set to be able to identify returning users anonymously. In isolated cases, we carry out further measurements, which gather the clicking behaviour or mouse movements of individual users in random samples and in anonymous form.

The use of performance cookies requires your explicit consent. You can at any time withdraw your consent by the according adjustments to your cookie settings.

Marketing Cookies

Subject to your explicit consent, we use Marketing Cookies to check the success of our marketing activities. Marketing Cookies originate from external advertising companies (Third Party Cookies) and are used to gather information about the websites visited by the user in order to generate target group specific advertising for the user. We use the following Marketing Cookies:

  • LinkedIn Advertising
  • Facebook Advertising
  • Google Adwords
  • Doubleclick
  • LINE
  • Seznam
  • Capture Media

Social Media

We maintain NACORA pages in the social networks LinkedIn and Twitter to inform about our services and news and to communicate with active customers. The respective social network collects your personal data, especially by means of cookies, which are usually used for market research and advertising purposes. The processing may take place outside the European Union.

If you visit one of our social media sites, we are jointly responsible with the operator of the social media platform for the data processing. You can assert your rights as defined in section 6 both against us and/or against the operator of the respective social media portal. Please note that despite the joint responsibility, we do not have any influence on the data processing procedures of the social media portals. For further information, please refer to the terms of use and privacy policies of the respective social media portals:

LinkedIn: We use the employment-oriented service LinkedIn. The provider is LinkedIn Inc, 1000 W. Maude Avenue Sunnyvale, CA 94085, USA. LinkedIn is certified according to the EU-US Privacy Shield. You can adjust your LinkedIn privacy settings independently in your user account by the following link: https://www.linkedin.com/help/linkedin/answer/1569/verwalten-ihrer-konto-und-datenschutzeinstellungen-ubersicht?lang=de. Details can be found in the privacy policy of LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=d_org_guest_company_overview_footer-privacy-policy.

Twitter: We use the short message service Twitter. The provider is Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Twitter is certified according to the EU-US Privacy Shield.You can adjust your Twitter privacy settings independently in your user account by the following link: https://twitter.com/personalization.Details can be found in the privacy policy of Twitter: https://twitter.com/de/privacy.

    Matomo

    Diese Website benutzt den Open Source Webanalysedienst Matomo.

    Mit Hilfe von Matomo sind wir in der Lage Daten über die Nutzung unserer Website durch die Websitebesucher zu erfassen und zu analysieren. Hierdurch können wir u. a. herausfinden, wann welche Seitenaufrufe getätigt wurden und aus welcher Region sie kommen. Außerdem erfassen wir verschiedene Logdateien (z. B. IP-Adresse, Referrer, verwendete Browser und Betriebssysteme) und können messen, ob unsere Websitebesucher bestimmte Aktionen durchführen (z. B. Klicks, Käufe u. Ä.).

    Die Nutzung dieses Analyse-Tools erfolgt auf Grundlage von Art. 6 Abs. 1 lit. f DSGVO. Der Websitebetreiber hat ein berechtigtes Interesse an der Analyse des Nutzerverhaltens, um sowohl sein Webangebot als auch seine Werbung zu optimieren. Sofern eine entsprechende Einwilligung abgefragt wurde, erfolgt die Verarbeitung ausschließlich auf Grundlage von Art. 6 Abs. 1 lit. a DSGVO und § 25 Abs. 1 TTDSG, soweit die Einwilligung die Speicherung von Cookies oder den Zugriff auf Informationen im Endgerät des Nutzers (z. B. Device-Fingerprinting) im Sinne des TTDSG umfasst. Die Einwilligung ist jederzeit widerrufbar.

    IP-Anonymisierung

    Bei der Analyse mit Matomo setzen wir IP-Anonymisierung ein. Hierbei wird Ihre IP-Adresse vor der Analyse gekürzt, sodass Sie Ihnen nicht mehr eindeutig zuordenbar ist.

    Cookielose Analyse

    Wir haben Matomo so konfiguriert, dass Matomo keine Cookies in Ihrem Browser speichert.

    Hosting

    Wir hosten Matomo bei folgendem Drittanbieter:

    Mittwald CM Service GmbH & Co. KG
    Königsberger Straße 4-6
    32339 Espelkamp

    Auftragsverarbeitung

    Wir haben einen Vertrag über Auftragsverarbeitung (AVV) zur Nutzung des oben genannten Dienstes geschlossen. Hierbei handelt es sich um einen datenschutzrechtlich vorgeschriebenen Vertrag, der gewährleistet, dass dieser die personenbezogenen Daten unserer Websitebesucher nur nach unseren Weisungen und unter Einhaltung der DSGVO verarbeitet.

    6. What are your rights and how can you exercise them?

    According to the applicable data protection law and under the conditions and within limits outlined in the law, you have the right to (i) request access to your personal data; (ii) request correction of your personal data; (iii) request deletion of your personal data; (iv) request limitation of processing of your personal data; (v) request data portability; and/or (vi) object to the processing of your personal data. Further, you have the right to withdraw consent at any time for future processing. Please note that these rights might be limited under the applicable local data protection law.

    You can claim your rights at any time by sending us a message to gdpr.notification@nacora.com or use the following form.

    Nacora -  Webform link and integration code: https://privacyportal-de.onetrust.com/webform/301e12a5-c435-4be7-b611-f4b0fe03169e/77b5cbdb-17d6-41d9-9e08-f25cebf904ac

    You may exercise the following rights under the conditions and within the limits set forth in law:

    • the right to withdraw your consent: if, in accordance with applicable law, you have declared your consent regarding certain types of processing activities (in particular regarding the receipt of direct marketing communication via email, SMS/MMS, fax, and telephone), you can withdraw this consent at any time with respect to future processing by using the methods mentioned in the original or any related communication (e.g. for newsletters by clicking on the link “Unsubscribe” at the bottom of a marketing email or otherwise by contacting us via email, mail or phone as described in section 7 of this Privacy Policy). Such a withdrawal will not affect the lawfulness of the processing prior to the consent withdrawal.
    • the right to request access to your personal data, respectively to obtain from us confirmation as to whether or not personal data concerning you is processed, and, where that is the case, to request access to the personal data;
    • the right to request rectification of inaccurate personal data concerning you;
    • the right request erasure of your personal data, under certain conditions;
    • the right to request restriction of processing, under certain conditions.In this case, the respective data will be marked and may only be processed for specific purposes as defined by law;
    • the right to object: On grounds relating to your particular situation, you have the right to object, at any time to processing of personal data concerning you which is based on our legitimate interest.
    • the right to request data portability: As provided by applicable data protection law, you may – in cases where processing is based on consent or the performance of a contract, and the processing is carried out through automated means – have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit those data to another entity without hindrance from us.

    You also have the right to lodge a complaint with the competent supervisory authority in the relevant Member State (for example, the place where you live or work - contact details can be found here.

    7. How can you contact us?

    If you have questions, you can contact us at

    NACORA INTERNATIONAL INSURANCE BROKERS
    NACORA Holding AG / NACORA Agencies AG

    Dorfstrasse 50
    P.O. Box 67
    CH-8834 Schindellegi, Switzerland

    gdpr.notification@nacora.com