DR-WALTER is pleased about your interest in our company and our websites. The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data includes all data that can be used to personally identify you.
Controller Responsible for Data Processing
The controller within the meaning of Art. 4 No. 7 GDPR is the party who alone or jointly with others determines the purposes and means of the processing of personal data.
The controller responsible for data processing on this website is:
DR-WALTER Versicherungsmakler GmbH
Eisenerzstraße 34
53819 Neunkirchen-Seelscheid
Phone: +49 2247 9194-40
You can reach our Data Protection Officer in accordance with Art. 37 GDPR at: datenschutz@dr-walter.com
Our website is hosted by the service provider Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4–6, 32339 Espelkamp, Germany (hereinafter “Mittwald”).
Mittwald provides the technical infrastructure necessary to operate this website. In this context, when the website is accessed, information is automatically processed in so-called server log files. This may include, in particular, the following data:
Referrer URL (previously visited page)
The processing of this data is carried out to ensure the technical functionality, stability, and security of the website, especially for defending against attack attempts and for error analysis.
The use of this hosting provider is based on our legitimate interest in the secure and efficient provision of our online offering pursuant to Art. 6(1)(f) GDPR.
A data processing agreement pursuant to Art. 28 GDPR has been concluded with Mittwald.
Cookies and comparable technologies are used on our website. Where these are technically necessary, processing is carried out based on Section 25(2) TDDDG and Art. 6(1)(f) GDPR.
All non‑essential cookies and services (e.g., analytics or marketing tools) are used only after you provide explicit consent under Section 25(1) TDDDG in conjunction with Art. 6(1)(a) GDPR.
Detailed information on the cookies and services used—including purpose, legal basis, storage duration, and any third‑country transfers—can be found in the sections below and in the cookie settings.
For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognize an encrypted connection by the change in the browser’s address line from “http://” to “https://” and by the lock icon in your browser bar.
Encryption protects the confidentiality and integrity of the transmitted data (Art. 32 GDPR).
General Information About Cookies
Our website uses cookies and similar technologies. Cookies are small text files that are stored on your device and do not cause any damage. They may be implemented as session cookies (deleted automatically after your visit) or persistent cookies (stored until you manually delete them or they are automatically removed by your browser).
Cookies may be set by us (first‑party cookies) or by third‑party providers (third‑party cookies).
Cookies serve various functions. Technically necessary cookies are required to provide the website and enable essential functions (e.g., page navigation, security, consent storage). Non‑essential cookies (e.g., analytics or marketing cookies) support statistical analysis, improvement of our offerings, or personalized content.
Storing or accessing information on your device via technically necessary cookies is based on Section 25(2) TDDDG. Non‑essential cookies require your consent under Section 25(1) TDDDG.
Where personal data is processed in connection with cookie usage, processing is based on Art. 6(1)(f) GDPR for necessary cookies (legitimate interests in secure and functional website delivery). For cookies requiring consent, processing is based on Art. 6(1)(a) GDPR.
You may configure your browser to inform you about cookie placement, allow cookies only in specific cases, or prevent them entirely. Disabling cookies may impair website functionality.
Information on which cookies and services are used—including purpose, storage duration, third‑country transfers, and legal basis—is available in the cookie settings. You may withdraw or adjust your consent at any time using the cookie settings.
Provider: Consentmanager AB, Håltegelvägen 1b, 72348 Västerås, Sweden.
Website: https://www.consentmanager.net
Additional Information & Privacy: https://www.consentmanager.net/datenschutz/
Purpose and legal basis:
We use the consent management tool from consentmanager.net to obtain, manage, and document legally required consent for cookies and comparable technologies. The specific cookies and services used are described in detail in the cookie settings. The tool is used to comply with legal obligations under Art. 6(1)(c) GDPR in conjunction with Section 25 TDDDG and Art. 7(1) GDPR (proof of consent).
The following data may be processed when collecting and documenting your consent:
Consent data is stored as long as required to fulfill legal proof obligations. Processing generally occurs within the European Union. If third‑country transfers occur, they are carried out in compliance with Art. 44 et seq. GDPR.
You may change or withdraw your consent at any time with future effect via the cookie settings.
Facebook Pixel with Custom Audiences
Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc., USA.
Website: https://www.facebook.com/business/help/744354708981227?id=2469097953376494
Additional Information & Privacy: https://www.facebook.com/privacy/policy/, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Purpose and legal basis of processing: Use of the Meta Pixel to measure the effectiveness of advertising campaigns and to optimize our marketing efforts. We also enable redirection to our Facebook page via a link. The Meta Pixel is activated only after your explicit consent pursuant to Art. 6(1)(a) GDPR in conjunction with Section 25(1) TDDDG. Simple linking to our Facebook page is based on our legitimate interest under Art. 6(1)(f) GDPR. Where personal data is collected and transmitted to Meta via the Meta Pixel, joint controllership pursuant to Art. 26 GDPR exists between us and Meta Platforms Ireland Limited. The applicable “Controller Addendum” can be accessed here: https://www.facebook.com/legal/controller_addendum. If the Meta Pixel is activated, personal data may be transferred to servers of Meta Platforms Inc. in the USA. Such transfers are carried out in accordance with Art. 44 et seq. GDPR. Meta Platforms Inc. is certified under the EU‑US Data Privacy Framework (https://www.dataprivacyframework.gov). You may withdraw your consent at any time with future effect via our consent management tool.
Google Ads Conversion Tracking
Provider: Within the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, USA.
Website: https://support.google.com/google-ads/answer/1722022?hl=de
Additional Information & Privacy: https://policies.google.com/privacy?hl=de
Purpose and legal basis of processing: Measurement of conversions and analysis of the effectiveness of Google advertising campaigns. Google Ads Conversion Tracking is activated only after explicit consent according to Art. 6(1)(a) GDPR in conjunction with Section 25(1) TDDDG. If Conversion Tracking is enabled, a transfer of personal data to servers of Google LLC in the USA cannot be excluded. Such transfers are carried out in accordance with Art. 44 et seq. GDPR. Google LLC is certified under the EU‑US Data Privacy Framework (https://www.dataprivacyframework.gov). You may withdraw your consent at any time with future effect via our consent management tool.
Google Analytics
Provider: Within the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://marketingplatform.google.com/intl/de/about/analytics/
Additional Information & Privacy: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/privacy?hl=de
Purpose and legal basis of processing: Analysis of user behavior for statistical evaluation, reach measurement, and continuous improvement of our online offerings. Processing occurs only with your explicit consent pursuant to Art. 6(1)(a) GDPR in conjunction with Section 25(1) TDDDG. Transfers of personal data to Google LLC servers in the USA cannot be excluded. Such transfers comply with Art. 44 et seq. GDPR. You can withdraw your consent at any time with future effect via our consent management tool.
Google Tag Manager
Provider: Within the EEA and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, USA.
Website: https://support.google.com/tagmanager/answer/6102821?hl=de
Additional Information & Privacy: https://policies.google.com/privacy?hl=de
Purpose and legal basis of processing: Management and control of tracking and marketing tags on our website. The Tag Manager itself is used based on our legitimate interest pursuant to Art. 6(1)(f) GDPR. Where consent‑based services are controlled through the Tag Manager, activation occurs only after your explicit consent under Art. 6(1)(a) GDPR and Section 25(1) TDDDG. You may withdraw your consent at any time with future effect via our consent management tool.
Microsoft Conversion Tracking
Provider: Within the EEA and Switzerland, Microsoft services are provided by Microsoft Ireland Operations Limited, Ireland. Microsoft Ireland Operations Limited is a subsidiary of Microsoft Corporation, USA.
Website: https://about.ads.microsoft.com/
Additional Information & Privacy: https://privacy.microsoft.com/de-de/privacystatement
Purpose and legal basis of processing: Measurement of conversions and analysis of advertising effectiveness within the Microsoft advertising network. Activation occurs only after explicit consent under Art. 6(1)(a) GDPR and Section 25(1) TDDDG. Transfers of personal data to Microsoft Corporation servers in the USA may occur, in compliance with Art. 44 et seq. GDPR. You may withdraw your consent at any time with future effect using our consent management tool.
Our website uses JavaScript to improve visual presentation, enable navigation between pages, and technically support operation of our online forms.
JavaScript is provided exclusively on our local servers and executed on your device. No data is transferred to third parties in this context.
Where technically necessary personal data (e.g., IP address, browser details, date and time of access) is processed, this is based on Art. 6(1)(f) GDPR. Our legitimate interest lies in the secure, stable, and functional operation of our website.
Processing of personal data transmitted through our contact forms is conducted solely for the specified purpose and is described separately under “Contact Form”.
If you contact us by e‑mail, telephone, fax, or contact form, your inquiry including all resulting personal data (name, inquiry) will be stored and processed to handle your request. We do not share this data without your consent.
Processing is based on Art. 6(1)(b) GDPR where your inquiry relates to contractual matters or required pre‑contractual steps. In all other cases, processing is based on our legitimate interest in effective response management (Art. 6(1)(f) GDPR) or your consent (Art. 6(1)(a) GDPR), where obtained.
Where health data is processed, this occurs solely based on explicit consent under Art. 9(2)(a) GDPR in conjunction with Art. 6(1)(a) GDPR. Consent may be withdrawn at any time.
Data from contact inquiries is retained until you request deletion, withdraw consent, or the purpose for storage no longer applies (e.g., once your inquiry is completed). Mandatory statutory retention requirements remain unaffected.
Under the GDPR, data subjects have the following rights regarding the processing of their personal data:
Right of Access, Art. 15 GDPR
You have the right to obtain information about processed data, purposes, and recipients. Access may be denied in exceptional cases if overriding interests of third parties or statutory confidentiality obligations apply.
Right to Rectification, Art. 16 GDPR
You may request the correction of inaccurate or completion of incomplete personal data without delay.
Right to Erasure, Art. 17 GDPR
You may request the deletion of your personal data where the statutory requirements are met—for example, when processing is no longer necessary or consent has been withdrawn.
If deletion is not possible due to statutory, organizational, or contractual retention requirements, or if deletion would disproportionately impair legitimate interests, processing will instead be restricted (“blocked”).
Data is also blocked if its accuracy is contested and cannot be verified.
Right to Restriction of Processing, Art. 18 GDPR
Restriction may be requested where prerequisites apply, e.g., when the accuracy of data is disputed or processing is unlawful.
Right to Object, Art. 21 GDPR
You may object at any time to processing of your personal data, particularly where processing is based on legitimate interests or used for direct marketing.
Your consent and declaration of medical confidentiality may be withdrawn at any time with future effect. Processing prior to withdrawal remains lawful.
If certain processing activities are contractually required, withdrawing consent may result in limitations in service delivery.
Objections must be submitted to the controller listed above via mail, fax, or e‑mail, including your full name, contact information, and—if available—your insurance number.
You have the right to file a complaint with a data protection supervisory authority, particularly in the EU member state of your habitual residence, workplace, or place of alleged infringement.
The competent authority for us in Germany is:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Germany
E-Mail: poststelle@ldi.nrw.de
Some service providers/recipients may process data in third countries.
In such cases, we ensure an adequate level of data protection—for example through an EU Commission adequacy decision (including the EU–US Data Privacy Framework) or EU Standard Contractual Clauses (SCCs), and, where necessary, additional technical and organizational safeguards.
No automated decision‑making, including profiling, takes place within the meaning of Art. 22 GDPR.
We protect your personal data through a wide range of technical and organizational measures that comply with current standards and are regularly reviewed and improved.
All employees are trained in data protection and the secure, responsible handling of customer data.
All employees are bound by confidentiality and have signed relevant confidentiality and data protection commitments.
February 2026
Nadeshda Brossart
DR-WALTER
Eisenerzstr. 34
53819 Neunkirchen-Seelscheid
Germany
Email: datenschutz@dr-walter.com
T +49 2247 9194-115
F +49 2247 9194-40