Data protection on our website.

Version: 16.07.2021


Each time a user accesses the website and each time a file is accessed, the Federal and State Pension Fund (VBL) collects and processes data about this process and temporarily saves it in a log file. These data are only saved for security reasons and are then erased. They will not be used for any other purpose or passed on to third parties.

VBL only collects and uses personal data (e.g. name, email address) outside of the registration and use of the My VBL customer portal if you enter these data in an input field or send them by email in order to make a request to VBL (e.g. when using the call-back-service) or when using a service or an offer (e.g. when using an online computer) and sending data to VBL. These data are entered voluntarily by you. Your personal data will only be used for a specific purpose (e.g. to process the requested callback).

Data protection framework.

VBL collects, processes and uses personal data in compliance with data protection regulations, in particular the Telemedia Act (TMG), the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). In doing so, VBL takes into account the principle of data minimisation; i.e. personal data are only collected and processed to the extent necessary to provide the services and to perform the tasks.

The employees of VBL are bound to secrecy. In accordance with the legal requirements, VBL has taken the necessary technical and organisational measures to protect personal data.

Collection and use of personal data.

Each time a VBL page is accessed on the internet, data about this process are saved in a log file. VBL cannot use these data to identify you. The VBL cannot detect which user has accessed which data. Essentially, the following data are stored:

  • operating system used
  • browser used
  • Access time
  • IP address
  • Access failure

The stored data are used exclusively for data security purposes. The IP address is stored for seven days for security purposes (in order to identify DOS attacks). It will not be passed on to third parties for commercial or non-commercial purposes.

Some forms in the download centre can be recommended. Within the scope of this functionality, VBL also saves the IP address of the person making the recommendation in order to be able to provide evidence in cases of abuse. In this case, the IP address is also erased after seven days.

Data collected via the website are either processed by VBL itself or by the provider of the website software at a data centre in the Federal Republic of Germany (FRG) in accordance with its specifications and instructions on the basis of a contract for commissioned data processing and are only used for the purposes described here. No data are processed outside of the territory of the European Union (EU) and the European Economic Area (EEA).

Online services of VBL.

On the Contact page, VBL only collects and processes data which you enter for this purpose and that are required for clear verification and preparation for the meeting. The data will only be used for the purpose of establishing contact.

VBL processes the data provided in the call-back form within the scope of the use of the call-back-service. The call-back-service is aimed exclusively at existing customers, which is why these data are required for clear verification and preparation for a meeting. See Data protection Terminland above for more information.

Information about data processing within the framework of the VBL newsletter is provided in our newsletter.

If you are asked to provide personal data when using the aforementioned functions, there is no legal or contractual obligation to do so. The provision of the data is also not required to conclude a contract. If you do not want to provide the data, the only consequence is that you will not be able to use the functions.

When you use our My VBL customer portal, you can also make (online) consultation appointments, book events and use the offer calculator. The (data protection) information on our portal can be found under My VBL.

The information about data processing in our appointment booking tool can be found above under Data protection Terminland.

Please read Data protection eveeno for information about data protection law relating to event booking.

When you use the online calculator, which provides offers through the offer calculator, VBL collects data such as your surname, first name and insurance number. As VBL is only permitted to submit offers to existing customers in accordance with its Articles of Association, these data are required for clear verification and the preparation of offers.

Website analysis.

No web analysis currently takes place using tracking software, so no cookies are set.

Use of cookies.

You can find more information about all of the cookies used by VBL and how these cookies are handled in our Cookie-Policy.

Information regarding links on the VBL website.

Some pages of the website contain links to external services and websites. These are optically marked as a link and are highlighted with a corresponding mouse-over function.

VBL is not responsible for the content of external sites and has no influence whatsoever over their design and content. VBL therefore distances itself from all content on these pages.

Information regarding the use of e-mail.

Please note that when using e-mail, the confidentiality of information on the internet is currently not guaranteed without further measures (e.g. encryption). Any content sent in an unencrypted e-mail is no more confidential than information sent by postcard. In order to prevent unauthorised third parties from gaining knowledge of this information, we recommend that you use De-Mail for messages with sensitive content, or send them by post.

If VBL has been provided with e-mail addresses (e.g. to participate in the “VBLnewsletter” newsletter service), these will only be used for this purpose and will not be passed on to third parties.

Rights of data subjects.

Upon request, you will be provided with information about the data stored about you (Art. 15 GDPR and Section 34 BDSG) and can request the rectification of incorrect data (Art. 16 GDPR). If the legal requirements are met, you can also request the restriction of processing (Art. 18 GDPR) or the erasure (Art. 17 GDPR and Section 35 BDSG) of these data and can object to the processing of your personal data (Art. 21 GDPR and Section 36 BDSG). In addition, you have the right to data portability (Art. 20 GDPR).

Data Protection Officer of VBL.

Mr Thilo Mangler
Hans-Thoma-Strasse 19
76133 Karlsruhe

Get in touch if you have any questions about data protection at VBL and with possible complaints.

Data protection supervisory authority.

As an institution under public law, VBL is subject to control by the Federal Commissioner for Data Protection and Freedom of Information (BfDI). The BfDI monitors VBL’s compliance with the provisions of the General Data Protection Regulation and the Federal Data Protection Act, as well as other provisions on data protection. You can contact the BfDI if you believe that your rights have been infringed through the collection, processing or use of personal data by VBL (right of appeal).

The address is:
Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit
The Federal Commissioner for Data Protection and Freedom of Information
Graurheindorfer Strasse 153
53117 Bonn