Data privacy notice

Privacy notice for website users

Privacy Policy of İŞBANK AG, Zeil 123, 60313 Frankfurt am Main

İŞBANK AG appreciates your visit to our website and your interest in our company. We take your privacy seriously and want you to feel secure when visiting our website. We process personal data collected from visits to our website in accordance with the requirements of the EU General Data Protection Regulation (GDPR) and data protection law in the Federal Republic of Germany.

Any personal data which you provide to us are treated with the level of care customary in banking and in accordance with data protection law. They are not used for any other purpose or shared with third parties. For your security, please send us any confidential information by post.

When designing this website, we have undertaken to comply with the aforementioned applicable legal regulations in the interests of privacy and data security. We wish to make you aware below of the circumstances in which we require information from you, how we use this and to whom we may make this available in order to fulfil a particular purpose (intended use). 

This Privacy Policy only applies to the publicly accessible part of the website:


Which data concerning you do we collect and process?

Personal data: Personal data are information which can be used to identify a person, i.e. information which can be traced back to a particular individual. This website collects and processes personal data as follows:

Logging, access data/server log files (provider):
Your visit to our website is logged. We collect your computer’s current IP address, the web pages visited, your browser type, the date and time and your computer’s operating system. These data are only collected for the purpose of data security and are not used for any other purpose. 
When you visit our website, our web servers store the IP address of your Internet service provider, the website from which you visited us, the pages of our website which you visited and the date and duration of your visit by default.  This information is absolutely necessary for technical transmission of the website and secure server operation. There is no personalised analysis of these data. 

If you send us data via email, these are stored/archived on our servers during data backup. We only use your data to deal with your request. We store and collect your data in a database and treat them as strictly confidential in compliance with data protection law and other legal requirements.

A cookie is a data element which a website may send to the browser for storage on the user’s system, e.g. for the purpose of connection control during the visit to the website or for statistical analysis.  When users access the website, one or more cookies are stored on their computer. A cookie is a small file that contains a particular character string and uniquely identifies your browser. Cookies help the provider improve the convenience and quality of its service, such as by storing user settings. Cookies do not damage a user’s computer or contain viruses.  We store a permanent cookie on your computer in order to facilitate access to our website and for statistical analysis. However, no data are stored on the cookie. You can change your browser settings to either prevent cookies being placed or so that you are notified when cookies are received.  You can then decide whether to accept or reject the cookie. If you reject the cookie, then you will not be able to make full use of certain features of our website, such as the search and request functions. You should allow the cookie to be set on your system if you wish to use all of the features of our website. After you have left our website again, you may delete the cookie from your system at any time. 

Matomo analytics service:
Our website uses Matomo, a web analytics service. Matomo uses “cookies”, which are text files stored on your computer that allow us to analyse usage of the website. For this purpose, the usage information generated by the cookie (including your truncated IP address) is transmitted to our server and stored for usage analysis purposes so that we can optimise our website. Your IP address is immediately anonymised during this process, so that you remain anonymous to us as a user. You can prevent cookies being used by adjusting your browser software appropriately; however, you may not have full use of all of the features of this website in this case. If you do not agree to these data from your visit being stored and analysed, then you may object to their storage and use at any time at the click of a mouse as follows. In this case, an “opt-out cookie” is stored in your browser which prevents Matomo from collecting any session data. Please note: If you delete your cookies, this also deletes the opt-out cookie. You may then have to re-activate it.

How do we collect your data and on what basis?
We collect data directly from you. We do not collect data from third parties. This website only collects data from cookies and other data for web tracking with your consent, which you can provide via the pop-up that appears the first time you visit the website.

For how long do we store your data?
We only store the personal data you provide to us for as long as we need these to fulfil the purposes for which these data were provided or as long as is required by law (HGB, AO, TKG, TMG, StGB, KWG).

With whom do we share your data?
We neither sell nor market your personal data to third parties nor share them with third parties for any other reason. We do not share the information generated through the cookie regarding your use of this website with third parties.

How are your data protected?
İŞBANK AG has put technical and organisational security measures in place to protect your personal data against accidental or unlawful erasure, alteration, loss and unauthorised disclosure and access.  Our employees sign a written agreement to comply with legal provisions, rules of confidentiality and data protection law. 

What are your rights?
As a data subject in respect of our data processing, you have certain rights which we wish to make you aware of below:

Right of access: You have the right to obtain a copy of the personal data concerning you that has been collected.

Right to rectification: You have the right to request that incorrect personal data concerning you be completed or rectified if these are inaccurate or incomplete.

Right to erasure: You have the right to obtain the erasure of data concerning you if certain grounds apply. However, this only applies if we do not require your data any more to perform contracts concluded with you.

Withdrawal of consent: In general, we only process your data in order to perform a contract and do not ask you for consent for any processing beyond this. However, if you have consented to us carrying out further processing on your personal data in a specific instance, you may withdraw this consent and prevent any further data processing provided that no other relevant permission is required to be issued for this. This right to withdraw consent does not cover data we store in order to perform a contract.

Right to restriction of processing: You may obtain the restriction of processing of certain personal data while a complaints procedure is under way or for other specific reasons.

Right to data portability: You may request that we electronically transfer your personal data which you have provided to us and which we still have stored to another controller.

Right to lodge a complaint: You may complain to our data protection officer and the relevant supervisory authority about our data processing. You will find the contact details for these in the next section.

Please note that there are also exceptions with regard to the above rights and you may therefore not be able to fully exercise these rights in every situation.


Whom should I contact if I have a complaint or question?

(a) Data protection officer
Contact via email If you have questions or suggestions regarding this Privacy Policy, please contact the appointed data protection officer for İŞBANK AG at This email address can also be used if you have concerns regarding compliance with our rules of conduct. 

Contact via mail:

attn.: Data Protection Officer
Zeil 123
60313 Frankfurt am Main

Contact via email 

attn.: Data Protection Officer


(b) Relevant supervisory authority
Der Hessische Datenschutzbeauftragte
Postfach 3163
65021 Wiesbaden



Updating the Privacy Policy
Ongoing technical advances in the area of IT technology/security and the Internet may also require this Privacy Policy to be amended. Therefore, we reserve the right to make additions or changes to this Privacy Policy without prior notice. 

Frankfurt, 25 May 2018