We care deeply about adhering to laws and internal rules (“compliance”). Compliance violations must be identified at an early stage in order to initiate countermeasures and avert possible damage to our customers, employees, business partners and our company.
What incidents should be reported using the whistleblower system?
Our employees and external contacts can report specific, substantiated indications of suspected legal violations or breaches of regulations, such as potential bribery offenses, fraud offenses, antitrust violations, data protection violations and discrimination or breaches of accounting regulations. (Please note that our whistleblowing system is not intended for handling complaints.)
What happens after you submit information to us?
All submissions will be carefully reviewed by our Legal & Compliance team and treated in the strictest confidence. You can support our work by voluntarily providing us with your contact details so we can reach out to you if we have any further questions.
How to contact our Compliance team
- Call +49 (0)89 3605-316164 (during office hours)
- Letter to: metafinanz Informationssysteme GmbH | Compliance | Leopoldstrasse 146 | 80804 München, Germany
- Or use the report form
Report Form
Declaration of Consent of the Whistleblower
Compliance – that is, the adherence to laws and internal rules – is a top priority at metafinanz. Compliance violations must be identified at an early stage in order to initiate suitable countermeasures and avert possible damage to client companies, employees, business partners and our own company.
Use our whistleblower system if there are solid indications of serious violations. Our whistleblower system is available to both metafinanz employees and external parties. In order to support investigations of serious breaches of compliance regulations and legal obligations and to maintain communication, whistleblowers who work at metafinanz as well as external informants are asked and encouraged to disclose their identity. All submissions will be carefully reviewed by the metafinanz Legal & Compliance team and treated in the strictest confidence.
Voluntary consent of the whistleblower is required to disclose their identity. For whistleblowers employed by metafinanz, we process the data on the legal basis of Art. 6(1) lit. a GDPR in conjunction with Article 26(2) of the German Data Protection Act (BDSG), and for informants external to metafinanz on the basis of Article 6(1) lit. a GDPR. This consent is obtained in writing or through electronic channels.
The consent can be revoked at any time without suffering any repercussions. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
The right to withdraw consent has a limited time window due to legal obligations to inform the relevant person(s) subject of the report and subsequent investigation. The period for revoking consent is limited to one month from the date of the declaration of consent. The legal obligation of information and the limited time result from Article 14(3) lit. a GDPR.
Data Privacy Notice for Whistleblowers
Information on the processing of personal data pursuant to Article 13 GDPR
Identity of the data controller
metafinanz-Informationssysteme GmbH
Leopoldstrasse 146
80804 München, GermanyPhone +49(0)89 360531-0
Leopoldstrasse 146
80804 München, GermanyPhone +49(0)89 360531-0
Legal representatives:
Rainer Göttmann
Axel Kummer
Dr. Jürgen Kalkbrenner
Contact details of the data protection officer
datenschutz@metafinanz.de
Purposes for processing personal data
In order to support investigations of serious breaches of compliance regulations and legal obligations and to maintain communication, whistleblowers who work at metafinanz as well as external informants are asked and encouraged to disclose their identity. All submissions will be carefully reviewed by the metafinanz Legal & Compliance team and treated in the strictest confidence.
Legal basis of data processing
Internal informants: Art. 6(1) lit. a GDPR in conjunction with Art. 26(2) BDSG
External informants: Art. 6(1) lit. a GDPR
Recipients/categories of recipients
metafinanz Whistleblowing Committee (limited group of persons known by name)
Relevant person(s) who is/are the subject of the notification and investigation.
Transfer to a third country
Does not take place
Data retention period
Until the date of withdrawal of consent
Rights of data subjects
Information (Art. 15 GDPR)
Correction of data (Art. 16 GDPR)
Deletion (“right to be forgotten”) (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Notification obligation in connection with the rectification or erasure of personal data or the restriction of processing (Art. 19 GDPR)
Data portability (Art. 20 GDPR)
Objection to processing (Art. 21 GDPR)
Revocation of consent (Art. 7(3) GDPR)
Correction of data (Art. 16 GDPR)
Deletion (“right to be forgotten”) (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Notification obligation in connection with the rectification or erasure of personal data or the restriction of processing (Art. 19 GDPR)
Data portability (Art. 20 GDPR)
Objection to processing (Art. 21 GDPR)
Revocation of consent (Art. 7(3) GDPR)
Right of objection to processing
No processing on the basis of the legitimate interest of the data controller pursuant to Art. 6() lit. f GDPR. Therefore, only the right to withdraw consent applies.
Right of appeal to a data protection authority
If there is cause for complaint, this competent data protection authority can be contacted: Bayerisches Landesamt für Datenschutzaufsicht
Postal address
Postfach 1349
91504 Ansbach
Germany
Tel.: +49 (0) 981 180093-0
Fax: +49 (0) 981 180093-800
Provision of personal data mandatory or required
Mandatory or required: No
Automated decision making including profiling
Not applicable
