1. Who are we?

Flossbach von Storch is one of the leading independent asset managers in Germany – and is still owner-operated by its founders and senior executives. You can find out more by reading our company profile.

Pursuant to the applicable data protection laws, we are responsible for the protection of your personal data. We, that is:

Flossbach von Storch Invest S.A.
2, rue Jean Monnet
L-2180 Luxembourg
Phone: +352 275 607-0
Email: info@fvsinvest.lu

Represented by its executive board of directors
Christoph Adamy, Markus Müller, Christian Schlosser

Should you have any questions about this privacy statement, please contact our data protection officer:

2B Advice GmbH
Joseph-Schumpeter-Allee 25, 53227 Bonn, Germany
Phone:+49 228 9261 65 - 120,
Fax: +49 228 9261 65 - 109
fvs@2B-Advice.com

2. Scope of application of the privacy declaration

The processing of personal data as defined by the legislator refers to processes such as the collecting, recording, organizing, arranging, storing, changing or modifying, selecting, querying, using, disclosing by transmission, dissemination or other form of provision, comparing or linking, restricting, deleting or destroying of personal data.

Personal data means all information linked to an identified or identifiable natural person.

This privacy notice applies to all personal data of clients, prospective clients, job applicants or visitors. It covers our website www.fvsinvest.lu as well as the following sub-domains:

https://lu.fvsinvest.lu/en/
https://de.fvsinvest.lu/en/
https://at.fvsinvest.lu/en/
https://li.fvsinvest.lu/en/
https://es.fvsinvest.lu/es/
https://it.fvsinvest.lu/it/
https://pt.fvsinvest.lu/en/
https://fr.fvsinvest.lu/fr/.

Furthermore, this notice applies to our marketing websites, including:

https://www.flossbachvonstorch.lu/
https://www.flossbachvonstorch.it/
https://www.flossbachvonstorch.es/
https://www.flossbachvonstorch.be/
https://www.flossbachvonstorch.ch/

3. Collecting and processing of personal data

The following paragraphs explain how we collect and process your personal data, as well as the purposes for which they are collected. We will only store your personal data in line with applicable data retention obligations and periods, or as long as the purposes for which they were gathered are valid.

3.1. Accessing the website

When visiting our website, each access or viewing of a file saved on our website is recorded. This recording is done to pursue our legitimate interests (art. 6(1) lit. f GDPR), to ensuring that you can seamlessly connect to our webpage, optimizing their display as well as securing system stability.

The following information is logged:
Name of the accessed file;
Date and time of the access;
Amount of data transferred;
Confirmation that the file has been accessed successfully;
Web browser and requesting domain; and
Anonymized IP addresses of the device sending the request.

3.2. Requests for contact

If you would like to contact us, please provide us with the necessary information, so that we can reach out to you. We will only process your information according to your request and initiate appropriate steps according to your request, i.e., steps required prior to entering in a contractual relationship (art. 6(1) lit. b GDPR). Examples of purposes why your personal data may be processed are replies to questions regarding our products, pre-contractual contact with clients, conclusion of contracts, administering job applications and nurturing business relations.

The following data may be gathered:
Prefix, name and surname;
Contact details;
Information about your request or interest, if provided.

3.3. Registration to telephone or web conferences and live streaming events

We offer you the opportunity to signing up for telephone or web conferences as well as live streaming events. Participation to those events is voluntary and for purposes of allowing direct communication and hosting of those events.

The processing of your personal data takes place in line with our legitimate interests for optimizing the performance of those conferences, as well as the performance of a contract or steps prior to the entry into a contract (art. 6(1) lit. b and f GDPR). Note also the terms and conditions of telephone or web conferences.

3.3.1. Use of software

Online meetings, video streams or web conferences are provided by utilizing the following software solutions:

GoToMeeting/LogMeIn;
ON24;
CSN.

3.3.2. Processing, storing and purpose

When entering into a business relationship with us, we gather the following information:
Static data;
Information related to client relationship management;
Information related to the product, service or contract;
Login and participation information.

The processing is based on our legitimate interests pursuant to art. 6(1) lit. f GDPR, and is neither disproportionate nor can it be expected that fundamental rights or freedoms of data subjects are paramount. When organizing telephone, web casts, or live steams, the legitimate interest may be based on the administration of the registration process and possible feedback to questions during the event.

Transmission of personal data only takes place for the abovementioned purposes and in line with the legitimate interests. Your personal data will only be shared with third parties for those purposes.

Your personal data may be shared with the following third parties, when hosting telephone or web conferences or live streaming events. However, it can be guaranteed that the storing and processing of personal data only occurs within the European Union, according to the principles under GDPR:

GoToMeeting / LogMeIn: GoTo Technologies Ireland Unlimited Company, 77 Sir John Rogerson's Quay, Block C, Suite 207, Grand Canal Docklands Dublin 2, D02 VK60, Ireland
ON24: Inc., 50 Beale Street, San Francisco, CA 94105, United States
CSN: Kasernenstr. 23, 40213 Düsseldorf, Germany.

3.4. Cookies and analytics tools

Please refer to our Cookies Policy to find out about how we process personal information by utilizing cookies and similar analytics on our website.

3.5. Electronic signature services

When digitally signing contract or documents, we use Adobe Sign as a software solution provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, City West Business Campus, Saggart D24, Dublin, Ireland ("AdobeSign").

For this purpose, AdobeSign will process the data you enter when using the software, including user information of your end device and data related to the operation.

AdobeSign will process personal data in line with GDPR, notably art. 6(1) lit. b and f. Further information related to data processing may be found on Adobe’s data protection center.

3.6. Use of Myra

We use the "Myra" tool by Myra Security GmbH to ensure a high level of security for our website and to protect our systems from unauthorized access. Myra helps us safeguarding our webpages against cyber attacks and assists with the stability and security of our IT infrastructure. During the deployment of the tool, personal data may be processed that is necessary for the running of the security system, which may include information on the IP address or data collected by security protocols. The processing of personal data is based on our legitimate interests of securing the operation of our IT infrastructure and integrity of our website (art. 6(1) lit. f GDPR). Further information regarding data protection and the functioning of Myra may be found under: https://www.myrasecurity.com/en/privacy-policy/.

4. Where do we transfer data and why?

4.1. Use of data within FvS

Personal data is only shared internally with those departments and teams, that must have access to them to performing the rights or responsibilities under the contract or under applicable laws and regulations, or to pursue our legitimate interests.

4.2. Use of data within FvS group

Personal data is occasionally shared with our parent company, Flossbach von Storch SE in Germany, to provide you with high quality services (art. 6(1) lit b GDPR). FvS SE only processes data on behalf of FvS Invest S.A. and in accordance with the conditions set by FvS Invest S.A. for personal data collected through its country-specific websites. Such data may be provided to the local branches or representative offices.

Yet, we continue to ensure that your personal data is managed in line with the applicable legal and regulatory requirements at all times.

For this purpose, we have taken additional measures to ensuring data privacy with FvS SE:

We have concluded contractual arrangements (data processor), making sure that personal information shared within the FvS group will always remain protected. Following those contracts and the applicable data protection obligations, data is only shared for the purposes laid down in this data protection notice with other group entities.

All entities of FvS group support each other through technical and organizational measures as well as operational support, to ensure that your personal data is safe. If possible, we protect your data by anonymizing or pseudonymizing it. The European Commission determined that the data protections standards are equivalent to those within the EU, and it can be made sure that your personal data is as protected as it is in the EEA.

4.3. Use of data outside FvS group

We make sure that your personal data is always protected and only share it with third parties if that is warranted by applicable legal requirements, you consented to the exchange or if this is necessary for the performance of a contact.

4.3.1. Disclosure due to legal obligations

The following recipients may become privy to your personal data due to a legal obligation:
Public offices or supervisory authorities, e.g., CNPD, CSSF, BaFin, tax or customs authorities;
Judicial and prosecuting offices, e.g., police authorities, courts, public prosecutors, CRF/FIU;
Attorneys-at-law or public notaries, e.g., in case of legal proceedings;
Certified public accountants or auditors.

4.3.2. Disclosure for the performance of a contract

We sometimes work together with service providers to execute our contractual obligations:
Shipping companies and couriers;
Event organizers or training providers, if you registered for trade fairs or events;
Banks or financial service providers for handling financial matters.

4.3.3. Disclosure to FvS service providers

In order for us to ensure efficient business operations and enhancing our IT security, we engage with external service providers, who may receive your personal data for the aforementioned purposes. Those service providers may include
IT service providers, notably for firewalls/IT security, hosting of websites;
Cloud providers;
Printing or telecommunication service providers, notably for mailing of FvS publications or newsletters;
Debt collection, consulting or marketing firms;
Service providers for our customer relationship management.

 We have concluded contracts for data processing with those service providers, to ensure that they adhere to the same level of data protection standards than we do, adding to the contracts that:
Third parties may only be privy to personal data, in so far as it is required for the to perform their contractual duties;
Employees of our service providers with access to personal data are explicitly obliged to comply with data protection obligations;
Our service providers’ technical and organizational measures are adequate to ensure data protection and data security;
Servers on which personal data is processed are located within the EU;
Rules are in place regarding the management of data, if the business relationship between the service provider and FvS is terminated.

In case of service providers whose statutory seat is located outside of the European Economic Area (EEA), we have taken additional precautionary measures (i.a., standard contractual clauses or specialized clauses), to guarantee that personal data is managed with the same standard of care as within the EEA. We regularly rate our service providers for compliance with data protection requirements.

4.4. Sale of personal data

We never sell your personal data to third parties.

5. Your rights

When we process your personal data, you have certain individual rights, which may also be found in the General Data Protection Regulation (notably art. 15 to 21, and art. 7 and 22).

If you have any questions, please contact us under datenschutzluxemburg@fvsag.com or using any other way (see contact details in first paragraph or under contact).

5.1. Right to information and rectification

You have the right to request which personal data of yours is processed by us.

In case this information is (no longer) correct, you may ask that those are corrected or that incomplete information is completed.

5.2. Right to erasure (“right to be forgotten”)

Under the following circumstances, you can demand that your personal data is immediately deleted:
If your personal data is no longer required for the purpose for which they were collected;
If you revoked your consent and there is no other justification for processing;
If you object to the processing and there are no predominant justifications for processing;
If your data was processed unlawfully;
If your personal data has to be erased for compliance with a legal obligation to which we are subjected.

Please note that before we can respond to your request to be forgotten, we need to verify that your request is justified and that there is no legitimate purpose for the processing of your personal data.

5.3. Right to restriction of processing

You can demand that the processing of your personal data is restricted for any of the following reasons:
You contested the accuracy of your personal data, until we had the chance to ensure the accuracy of your personal data;
The processing was unlawful and, instead of the erasure, you demand that the processing of your personal data is restricted;
Your personal data is no longer needed for the purpose of processing, but they are required by FvS for the establishment, exercise or defense of legal claims;
You objected to the processing of personal data and the verification of whether there are other predominate interests is still pending.

5.4. Right to object

5.4.1. Individual right to object

You have the right to object to the processing of personal data, based on your particular circumstances, if the processing was originally justified by overwhelming legitimate interests or in the public interest. We will cease to processing your data, unless we can demonstrate that there are compelling legitimate interests, which override your interests, rights and freedoms or if the processing is required for the establishment, exercise, or defense of legal claims.

Any processing that occurred prior to your objection remains legitimate.

5.4.2. Objection to direct marketing

You can at any time object to receiving direct marketing. We will no longer use your personal data for marketing purposes.

5.5. Withdrawal of consent

You can withdraw your consent for the processing of your personal data at any time. The withdrawal can be done in the same form as you have given your consent.

5.6. Right to data portability

 You have the right to receive your data in a structured, commonly used and machine readable format and have the right to demand that those data are transmitted to another data controller without hindrance, if

You previously consented to the processing or processing was done to perform a contract or steps necessary to enter into a contract; and

The processing is carried out by automated means.

5.7. Automated individual decision making

An automated decision making in individual cases, e.g., determination regarding the termination or continuance of a contract, does not exist.

5.8. Right to complain to supervisory authority

We stay committed to responding to any of your requests or claims, to protect your rights. As the case may be, esp. the amount and frequency of requests, it may be that we need more than 30 days to inform you about your query further. If we can anticipate that the handling of your query will exceed this timeline, we will inform you of the underlying reasons for the delay and discuss the next steps.

In some cases, we are precluded from disclosing information, in which case we will tell you the reasons for our refusal, to the extent that this is permitted by law.

If, however, you are not satisfied with our response or reaction, or if you believe that we violated applicable data protection laws, you may complain to our Data Protection Officer as well as any supervisory authority within the European Union.

Our competent data protection authority is:

Commission nationale pour la protection des données (CNPD)
Grand-Duché de Luxembourg
15, Boulevard du Jazz
L-4370 Luxembourg
E-Mail: plaintes@cnpd.lu
Website :  www.cnpd.public.lu

6. Change of terms

Flossbach von Storch Invest S.A. reserves the right to change this data protection notice, pursuant to the applicable legal and regulatory framework. It is thus advised that you visit this website from time to time, to stay aware of our current practices relating to data protection.

1. Cookies

Websites sometimes use so-called cookies. Cookies contain small text files which are usually saved on your computer or in your internet browser but cause no harm and do not contain viruses.

Cookies help us make our online presence look more user-friendly, effective and safer. Most of those cookies are what you call session cookies, which are erased at the end of each visit of the website. Other cookies remain active on your device until you delete them. They allow us to recognize you the next time you visit our websites.

1.1. Strictly necessary cookies

Strictly necessary cookies are required to make sure that websites can be displayed correctly and that basic functions, i.e., side navigation, access to secure areas, are possible. Without those essential cookies, the running of the website would not be possible.

The justification for those cookies is art. 6(1) lit. f GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

1.2. Analytical cookies

Those cookies help website hosts understand how website visitors interact with the contents of the page, i.e., by anonymously gathering information on the number of visitors or average time spent on the website.
The legal basis for utilizing those cookies is art. 6(1) lit. a GDPR. The full list of all cookies may be found at the bottom of this page under “change consent”.

1.3. Marketing cookies

Those cookies are used to track users on the website and whose purpose is to show appealing and appropriate content to users, and are therefore more valuable to publishers and marketing companies.

The justification for those cookies is art. 6(1) lit. a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

2. Analytical tools

The following sections give you information about the tools, providers and their data protection policies, as well as information related to deactivating or blocking those tools.

2.1. Google Analytics

The web analysis service Google Analytics (Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA) also uses cookies.

Those cookies are stored on your computer and allow insights on how the website is utilized. The information generated by the cookie about your use of this website will be sent in an anonymous format to a Google server in the US, where it will be stored. More information about how Google Analytics handles user data can be found in the Google privacy policy: https://support.google.com/analytics/answer/6004245?hl=en

You can stop cookies from being stored by adjusting your browser software accordingly. However, we like to point out  that in this case, you might not be able to use all functions of the website to its full extent.
You can also stop Google from collecting data generated by the cookie and related to how you use the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en

We have concluded a contract data processing agreement with Google and fully implement the most stringent requirements issued by the national data protection authorities when using Google Analytics.
We also want to point out the following points about Google Analytics:

Google Analytics creates demographic profiles based on age, sex and interests. The provider may receive that information based on his own interest-based advertisement and website visitors – linking the information to individual persons, however, is impossible.

Google Remarketing allows for the targeted advertisements to users, who have shown interest in our online offering. This too uses cookies which may be disabled under www.google.com/settings/ads .

Google AdWords Conversion Tracking sets cookies when you access our websites through clicking on a Google ad. Those cookies are valid for 30 days and do not serve to identifying you but for statistical reasons and to improving our advertising activities. Each user is given an individual cookie, so that users cannot be traced through by websites of other AdWords customers. You can prevent this tracking by blocking the use of AdWords in your browser.

Google Tag Manager uses simply tags instead of cookies. This avoids the collection of personal data, but it may prompt different tags which collect personal data, though they are not accessed by Google Tag Manager. Further information is available under  https://policies.google.com/privacy?hl=en .

In order to put in place additional safeguards for an adequate level of protection, we have used the standard contractual clauses published by the European Commission (art. 46(2) lit. c GDPR).
Google Analytics is used based on your consent, to be able to analyze and improve the usage of our website. This statistical information enables us to strengthen out offer and make it more interesting for users (art. 6(1) lit a GDPR).

2.2. Facebook Remarketing

Facebook Remarketing can be used to track the reach of our Facebook ads.

With your consent, we do this by using the "tracking pixel" of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). This pixel is set when you click on one of our ads on Facebook. The data collected remains anonymous, meaning that we cannot link information to individuals.

However, we would like to point out that this data may be stored by Facebook, processed and linked to your Facebook account, which may use it for their own marketing purposes. Please consult the Facebook privacy statement under www.facebook.com/about/privacy/.

You may ban Facebook and their partners from displaying ads and edit your settings under www.facebook.com/ads/website_custom_audiences/ .
The justification for those cookies is art. 6(1) lit. a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

2.3. Microsoft Ads

Microsoft Ads also uses the above mentioned tracking pixels, which allow us to gather remarketing lists, that are created based on the users’ activities on our website. More information about data protection and about the cookies used with Microsoft Bing can be found on the Microsoft website: https://privacy.microsoft.com/en-gb/privacystatement.

The justification for those cookies is art. 6(1) lit. a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

2.4. Adform Tool

We use the Adform Tool by Adform A/S Wildersgade 10B, sal. 1 DK-1408 Copenhagen, Denmark, that gathers data to improve analytics, marketing and optimization, so that we can review our websites or app. The data collected is used by Adform to connect marketing contacts and clicks on marketing banners with the use of our website initiated by those clicks. Thus, we are able to determine if internet users who noted our marketing banners, clicked to access our websites, if they got interested in our products or how they used our app.

Your data may further be used by us to roll out advertisement based on the products based on your interests (e.g., viewed products). We utilize pseudonymized online identification numbers like cookie IDs, IP address, device IDs, advertising ID/IDFA (Android or Apple smartphones) to collect this data. No unique user information like name or address is processed. We use those IDs only to remember your device, browser or app the next time you visit. Without your consent, this information will not be used to identify you personally as a user of the website or application.

The justification for those cookies is art. 6(1) lit. a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
Under the following links, you will find a guide on how to deactivate the data collection of your device or browser: https://site.adform.com/privacy-center/platform-privacy/opt-out/ 

2.5. Microsoft Clarity

We use Microsoft Clarity, a web-analytics service provided by Microsoft Corporation, to improve the user experience on our website. Microsoft Clarity enables us to analyze the behavior of our visitors. This enables us to gain insights into the use of our website and make targeted improvements. Microsoft Clarity uses various tracking technologies, including cookies, to collect data on user behavior.

This data may include information such as pages visited, time spent on the site, clicks and scrolling behavior. The use of Microsoft Clarity is in accordance with your consent pursuant to art. 6(1) lit. a GDPR. Before we activate cookies or similar tracking technologies on your device, we ask for your expressed consent via the cookie banner. You can find an explanation of the cookies used below or in the detailed overview of the cookie banner.
For more information regarding Microsoft's data protection, please visit Microsoft's privacy policy.
The justification for those cookies is art. 6(1) lit. a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

2.6. Microsoft Dynamics 365 Marketing

We use Microsoft Dynamics 365 Marketing to manage and optimize our marketing activities. Dynamics 365 Marketing enables us to create targeted marketing campaigns, track customer interactions and perform analyses to improve our marketing efforts. The data collected may include information about marketing campaigns, customer interactions and user behavior.
The use of Microsoft Dynamics 365 Marketing is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
For more information regarding Microsoft’s data protection measures, please visit  Microsoft's privacy policy.

2.7. Hotjar

We use Hotjar, a web analysis and feedback tool, to improve the user experience on our website. Hotjar enables us to analyze the behavior of our visitors; this gives us insights into the use of our website.
Hotjar uses various technologies, including cookies and tracking code, to collect data on user behavior. This may include mouse movements, clicks, scrolling behavior and pages visited.
The use of Hotjar is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
Further information about Hotjar's data protection measures can be found in the Hotjar Privacy Policy.

2.8. Online service cituro

We use the online service cituro to offer you an online appointment booking service. When you open the online booking app, your IP address and the time of access are recorded by the operator as part of technical logging and stored for two days. This information is not used for any other purpose.
When completing a booking, further personal data required for the provision of our services will be collected and processed. Further information can be found in the provider's privacy policy.
The use of cituro is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

2.9. Google Tag Manager

We use Google Tag Manager, a product by Google LLC, 1600 Amphitheater Parkway, Mountainview, California 94043, USA ("Google"). Google Tag Manager allows us to manage website tags via an interface. However, the Tag Manager itself, which uses the tags, works without cookies, and does not collect any personal data. The Tag Manager merely triggers other tags, which in turn may collect data. Corresponding explanations for these respective third-party providers can be found in this privacy policy. However, Google Tag Manager does not use this data. If you have set or otherwise deactivated cookies, this will be observed for all tracking tags used with Google Tag Manager, i.e. the tool will not change your cookie settings. Google may ask you for permission to share some product data (e.g. your account information) with other Google products to enable certain features, such as making it easier to add new conversion tracking tags for AdWords. In addition, Google's developers review product usage information from time-to-time to further optimize the product. However, Google will not pass on any data of this kind to other Google products without your consent.

The use of Google Tag Manager is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
Further information can be found in Google's terms of use for this product and in Google's privacy policy.

2.10. LinkedIn Ads Remarketing

We use LinkedIn Ads Remarketing on our website, if you consented to its deployment. Service provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland and, if applicable, LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085. We, i.a., process your IP address, browser type, time and date of your visit, device information, information on the operating system, referrer URL, and visited websites for targeted and interest-based marketing.

Your interests are recorded and we may display targeted advertisement on other websites. Cookies or similar technologies may be applied, which you may find in the consent banner at the bottom of this page.

The use of LinkedIn Ads Remarketing is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
For this purpose, personal data may be processed in the US. The company offers adequate safeguards through the EU-US data privacy shield, and adequate levels of protection through the mentioned guarantees.
Further information may be found here:
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
Cookie Policy: https://www.linkedin.com/legal/cookie-policy
Contact the DPO: https://www.linkedin.com/help/linkedin/ask/TSO-DPO

2.11. Outbrain

We use the advertising service and advertising network Outbrain Inc, 111 West 19th Street, New York, NY 10011, USA. We process the following data for targeted and interest-based marketing: IP address, browser type, date and time of visit, device information, device operating system, referrer URL, websites visited.

The interests of our website visitors are stored, and we can place targeted adverts on other websites. Cookies or similar technologies may be used for those purposes.
The use of Outbrain is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.
For this purpose, personal data may be processed in the US. The company offers adequate safeguards through the EU-US data privacy shield, and adequate levels of protection through the mentioned guarantees.
Further information may be found here:
Privacy Policy: https://www.outbrain.com/privacy/
Cookies: https://www.outbrain.com/privacy/cookies/
Contact the DPO: dpo@outbrain.com

2.12. Taboola

We use the content recommendation network and advertising service Taboola Europe Limited, Aldgate House, 2nd Floor, 33 Aldgate High Street, London EC3N 1DL, UK. Data may also be processed by Taboola, Inc, 16 Madison Square West, 7th Floor, NY, New York. We process the following data for targeted or interest-based marketing: IP address, browser type, date and time of visit, device information, device operating system, referrer URL, websites visited.

The interests of our website visitors are stored and we can place targeted adverts on other websites. Tracking, cookies or similar technologies may also be used.

The use of Taboola is based on your consent pursuant to art. 6(1) lit a GDPR. A comprehensive list of all cookies may be found at the bottom of this page under “change consent”.

For this purpose, personal data may be processed in the US. The company offers adequate safeguards through the EU-US data privacy shield, and adequate levels of protection through the mentioned guarantees.

Further information may be found here:
Media Privacy Addendum:  www.taboola.com/policies/media-privacy-addendum or https://www.taboola.com/policies/media-privacy-addendum/privacy-terms-for-advertisers
Privacy Policy: https://www.taboola.com/privacy-policy
Cookies: www.taboola.com/de/cookie-policy or https://www.taboola.com/policies/privacy-policy
Contact the DPO: dpo@taboola.com

3. Social Media Plugins – Social Media

We further utilize social media buttons by the following companies:
Facebook Inc. (1601 S. California Ave - Palo Alto - CA 94304 – USA)
X Corp. (795 Folsom St. - Suite 600 - San Francisco - CA 94107 - USA)
XING AG (Gänsemarkt 43 - 20354 Hamburg - Deutschland)
LinkedIn Corporation (2029 Stierlin Court - Mountain View - CA 94043 - USA)

The plug-in buttons are implemented by using the so called Shariff technology, which means that buttons are only integrated through a graphic, whereas the redirection to the abovementioned companies only takes place if the user clicks on the button. No processing or transferring of any data occurs before this.
You may and also should consult the privacy statements and terms of use of the mentioned social media companies on their websites.

4. Push notifications

You may opt-in to the using of push notifications. We use push notifications by “CleverPush”, a service that is provided by CleverPush GmbH, Heidenkampsweg 100, 20097 Hamburg (Germany) („CleverPush“).
Push notifications regularly notify you of news with regards to our views on the markets, monetary and financial politics, as well as individual investment classes.
Please confirm that you consent to receiving push notifications. This is documented by CleverPush and stored, which includes the timing of registration, your browser ID or your device ID. The collection of those data is necessary, so that in case of fraud or misuse, we can determine what happened and protect ourselves legally.
In order to display notifications, CleverPush collects your browser ID and device ID, in case of mobile use, on our behalf.
You consent to receiving those notifications by clicking on the enable button. The legal basis for processing is art. 6(1) lit. a GDPR.
In addition, CleverPush statistically analyzes push notifications to recognize, if and when our notifications are displayed and clicked.
CleverPush uses CloudFlare, a product by Cloudflare Inc., to expedite and facilitate the display of contents (e.g., images) and to ward off attacks. CloudFlare acts as a data processor and CleverPush relied on EU standard contractual clauses.
CleverPush does not store personal data on CloudFlare’s servers, only general contents such as text elements or images. When connecting to those contents, your device creates a link to CloudFare, which requires the processing of the IP address.

You can withdraw your consent with regards to the processing and storing of your personal data to receive push notifications and the aforementioned statistical analysis at all times for the future. To do this, change the push notification settings of your browser. In case you receive push notifications on a desktop computer, that operates on Windows, you can also right-click on the push notification and access the settings through there.
Your personal data is deleted if they are no longer required for their purpose; your personal data is only saved as long as your subscription to push notifications is active.
Please follow the link below to an in-depth description of how to disable push notifications: cleverpush.com/en/faq/

5. Further information on data processing

Information with regards to your rights as well as further information on the processing of personal data may be found in our Data Protection Notice.

6. Change of terms

Flossbach von Storch Invest S.A. reserves the right to change this Cookie Policy from time to time, in line with legal and regulatory requirements. This may, i.a., be required due to legal or regulatory changes or due to the implementation of new cookies on our website. Thus, we invite you to regularly consult our website to read up on our current data protection practices.