Privacy Notice under the EU General Data Protection Regulation and the Data Protection Act

Applicable to all persons visiting the website of the Liechtensteinisches Pfandbriefinstitut AG.

Introduction

With the following privacy notice, we would like to provide you with an overview of how personal data collected during your visit to the website of Liechtensteinisches Pfandbriefinstitut AG is processed and what rights you have under the provisions of the new General Data Protection Regulation (GDPR) and the Liechtenstein Data Protection Act.

As part of maintaining our website, we rely on processing personal data. Without this data, we will generally not be able to provide the website.

Contact Details of the Controller
Responsible entity:
Liechtensteinisches Pfandbriefinstitut AG
Lettstrasse 37
FL-9490 Vaduz
T +423 375 88 80
E info@pfandbriefinstitut.li

1. Which data is processed (data categories) and from which sources does it originate?

We collect and process personal data that we receive in the course of using the website content.

  • Electronic data (e.g., full IP address of the requesting computer, date and time of access, websites from which the user’s system reaches our website, access status, browser used, and operating system used)
  • Personal identification data (e.g., name, addresses, telephone numbers if contact forms are used)

In addition, other similar data and information that serve to prevent threats in the event of attacks on our IT systems are processed.

Contact
When sending an email, or any other electronic message, the information provided will be stored for processing the inquiry and any related follow-up questions and will only be used within the scope of the inquiry.

2. For what purposes and on what legal basis are your data processed?

We process personal data in accordance with the provisions of the GDPR for the following purposes:

  • Drawing conclusions about usage behavior
  • Drawing conclusions about the data subject
  • Advertising purposes
  • Providing a functional website as well as user-friendly content and services
  • Providing services
  • Fulfilling contractual obligations

Consent is the legal basis for processing your data. Furthermore, there is a legitimate interest, e.g., in ensuring system stability and operational security (Art. 6 para. 1 letters a, b, f GDPR).

3. Who has access to personal data?

Access to your data may be granted to entities both within and outside Liechtensteinisches Pfandbriefinstitut AG. Within the institute, only departments or employees who need your data to protect legitimate interests may process it. Subject to data confidentiality, other service providers or agents may also receive personal data for these purposes. Processors may include companies in the categories of IT services, logistics, printing services, consulting, and marketing.

4. How long will the data be stored?

We process and store personal data until the purpose for which it was collected is no longer required. Statutory retention periods also apply.

5. Is there automated decision-making, including profiling?

No automated decision-making, including profiling, takes place as part of this data processing.

6. What data protection rights do you have?

Every data subject has the right to:

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (“right to be forgotten”) (Art. 17 GDPR)
  • Restriction of processing (blocking) (Art. 18 GDPR)
  • Objection (Art. 21 GDPR)

Additionally, there is a right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR).

Right to object: You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you that is based on Art. 6 para. 1 letter f GDPR (data processing on the basis of legitimate interest). The objection always applies only to a specific case. It can be made informally to the contact details provided above. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

7. Updates

Due to technical developments, changes in legal or regulatory requirements, or organizational changes, we will adapt or update this privacy notice and publish it on our website. Upon request, we will also provide the current privacy notice as a file (PDF) or in written form, but we recommend always checking our website for the latest version. When changes occur, we will assess whether there is an obligation to actively notify you and comply accordingly. Otherwise, previously distributed files or printouts will only be replaced upon renewed request with the latest version.

8. Use of Matomo (web analytics)

We use the web analytics service Matomo on this website. Matomo is an open-source software solution for the statistical analysis of website visitor activity.

Web analytics using Matomo are carried out based on our legitimate interest in the statistical evaluation of the use of our website and its ongoing optimization.

Where consent is obtained via the consent/cookie banner, data processing is carried out exclusively based on that consent. Consent may be withdrawn at any time with effect for the future.

Processed data
While using Matomo, the following data may be processed:

  • Truncated IP address (IP anonymization is enabled, so that direct identification of individuals is excluded).
  • Pages and files accessed, click paths, length of stay.
  • Referring website (referrer), browser used, operating system, screen resolution.
  • Date and time of access.

The data are stored exclusively on our web server or on the server of our hosting provider and are not disclosed to third parties. The data are not used by third parties for advertising purposes.

Cookies / cookie-less tracking
Depending on the configuration, Matomo may use cookies to recognize returning visitors. In such cases, the relevant cookies are only set after you have given your consent via the consent/cookie banner.

IP anonymization
We have configured Matomo in such a way that IP addresses are processed exclusively in truncated form and that direct identification of individuals is not possible.

Right to object and withdraw consent (opt-out)
You may object to the processing of your data by Matomo at any time or withdraw any consent previously given with effect for the future:

  • via the settings in the consent/cookie banner, or
  • via the opt-out function below

Data Retention Period
The anonymized data collected by Matomo are stored for a period that allows us to conduct usage analyses and trend evaluations. Thereafter, the data are deleted or further anonymized, unless a longer statutory retention period applies.

Consent to the use of cookies.

For our website to function properly we use cookies. To obtain your valid consent for the use and storage of cookies in the browser you use to access our website and to properly document this we use a consent management platform: CookieFirst. This technology is provided by Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH, Amsterdam, The Netherlands. Website: https://cookiefirst.com referred to as CookieFirst.

When you access our website, a connection is established with CookieFirst’s server to give us the possibility to obtain valid consent from you to the use of certain cookies. CookieFirst then stores a cookie in your browser in order to be able to activate only those cookies to which you have consented and to properly document this. The data processed is stored until the predefined storage period expires or you request to delete the data. Certain mandatory legal storage periods may apply notwithstanding the aforementioned.

CookieFirst is used to obtain the legally required consent for the use of cookies. The legal basis for this is article 6(1)(c) of the General Data Protection Regulation (GDPR).

Data processing agreement

We have concluded a data processing agreement with CookieFirst. This is a contract required by data protection law, which ensures that data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Server log files

Our website and CookieFirst automatically collect and store information in so-called server log files, which your browser automatically transmits to us. The following data is collected:

  • Your consent status or the withdrawal of consent
  • Your anonymised IP address
  • Information about your Browser
  • Information about your Device
  • The date and time you have visited our website
  • The webpage url where you saved or updated your consent preferences
  • The approximate location of the user that saved their consent preference
  • A universally unique identifier (UUID) of the website visitor that clicked the cookie banner
This cookie policy has been created and updated by Consent Management - CookieFirst.