Privacy statement

figo GmbH (hereinafter referred to as “figo”) is always mindful of the importance of the data entrusted to us. The responsible handling, confidentiality and protection of your data is therefore of particular importance to us. The collection and use of your personal data takes place exclusively within the framework of the legal provisions of applicable data protection law as well as this privacy statement. With this privacy statement, we inform you about what personal data we collect as part of your use of our website and for what purpose the data is used.

In the following, we will show you the type, scope and purpose of the collection and use of your personal data. You can access this information at any time on our website in the current version at Please note the following:

Responsible authority/Contact

The responsible authority with regard to the Data Protection Act is the:

figo GmbH

Gaußstraße 190c

22765‎ Hamburg

Authorised representatives and general manager: André M. Bajorat, Heiko Rahlfs

External Privacy Officer (Syndikusrechtsanwältin), Melanie Dörholt, IBS Schreiber GmbH, Zirkusweg 1, 20359 Hamburg

If you have any questions or suggestions regarding data protection, you can also contact us by email at

The subject of data protection

The subject of data protection is personal data. The law takes this to refer to individual details of personal or factual circumstances of a particular or determinable natural person. Personal data are thus information that can be used to draw conclusions about a specific or identifiable natural person. As a basic principle, all information about which a personal reference can be made may also fall under the category of personal data, for example, a person’s name, address, email address, telephone number, staff number, vehicle registration number, appearance or gait of a person. Furthermore, account and credit card data as well as usage data also have a personal reference. Usage data is understood as the data required to use Bankathon services.

Data collection and use

With regard to the collection and use of your data, it is necessary to distinguish between data automatically passed on to figo as a result of technical processes in your internet usage and data that you pass on to figo independently.

Automated data collection

When accessing our website, your browser or mobile phone automatically transmits data for technical reasons. The following data is stored separately from other data that you may transfer to figo:

  • Date and time of access
  • Browser type / version
  • Operating system used
  • Retrieved resource
  • Quantity of data transmitted

This data is stored exclusively for technical reasons and is not made to refer to you at any time.

Data that you transfer to figo

By using the Bankathon website and by entering the relevant data, you determine which information you transfer to figo. The input of any data is of course voluntary.

No further transfer of your data to third parties

Except for the above-mentioned purposes, no transfer of your personal data is possible without your prior express consent.

Exceptions are permitted only in the following cases, i.e. if sharing of data:

  • is used to clarify the unlawful behavior or is necessary for legal prosecution. In this case, your personal data will be passed on to law enforcement authorities as well as to third parties if necessary. However, this only takes place if there are concrete indications of illegal or abusive behavior. A transfer may also take place if this serves the enforcement of conditions of use or other agreements. figo is also required by law to provide information at the request of certain public authorities. These are law enforcement agencies, government authorities pursuing fines and penalties, and public financial authorities.
  • is necessary for providing Bankathon services contracted by figo and external service providers (e.g. MailChimp for the mailing of the newsletter to inform recipients about new events) are used. In such cases, information is passed on to these companies or individuals so it can be further processed in order to provide services. These external service providers are carefully selected by us and are regularly reviewed to ensure that the protection and confidentiality of your data is guaranteed. The service providers may only use the data for the purposes specified by us.
  • it is associated with the further development of our business and a change in the structure of figo GmbH by a change in legal structure, or if subsidiaries, business units or components are founded, purchased or sold. In such transactions, customer information is passed on together with the part of the company to be transferred. When submitting any personal data to third parties as described above, figo shall ensure that this is done in accordance with this privacy policy and relevant data protection laws.


Cookies are small text files that allow storage of specific information on the user’s device. They serve the user on the one hand by enabling user-friendly presentation of web pages (e.g. saving of login data). On the other hand, they are used to collect statistical data on website use and analyze it for the purpose of improving services. Users can influence the use of cookies. Most browsers have an option to limit or entirely prevent storage of cookies.


Our websites use so-called retargeting technologies from Google, Facebook, Twitter and LinkedIn. This technology lets internet users interested in our website advertise on the websites of our partners. The insertion of these advertisements on the pages of our partners is based on cookie technology and is completely anonymous. No personal data is stored, nor are any user profiles combined with your personal data.

Google Analytics

Our website uses the functions of the web analytics service Google Analytics from Google Inc. (hereinafter referred to as “Google”), 1600 Amphitheater Parkway Mountain View, CA 94043, USA.

Google Analytics uses the above-mentioned “cookies”, which are stored on your computer, to allow an analysis of your website usage. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

By using this website, you agree to the processing of the data about you by Google in the manner described above and for the aforementioned purpose.

IP anonymization

We use the function “Activation of IP anonymization” on this website to ensure an anonymous capture of IP addresses (so-called IP masking). However, Google will abbreviate your IP address within Member States of the European Union or in other States party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the US and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide other services related to use of the website and internet usage against the website operator. The IP address provided by your browser as part of Google Analytics will not be merged with other Google data. In addition, Google may transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google.

Browser Plugin

You can prevent the storage of cookies in the settings of your browser software or by installing an appropriate browser add-on. In addition, you can prevent Google from collecting cookie-generated data related to your use of the website (including your IP address) as well as the processing of such data by Google by downloading and using the browser plug-in available under the following link:

Objection to data collection

You can prevent data acquisition from Google Analytics by clicking on the following link. An opt-out cookie is set which prevents future collection of your data when you visit this website:

We also use Google Analytics to evaluate data from AdWords and the DoubleClick cookie for statistical purposes. If you do not want this, you can disable it using Ad Manager.

Google Tag Manager

Google Tag Manager is a solution that offers an interface with which marketers can manage web page tags. While the “Tag Manager” tool itself, which implements the tags, is a cookieless domain and does not collect any personal data, the tool does enable the triggering of other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation is performed at the domain or cookie level, it will persist for all tracking tags implemented with the Google Tag Manager. Find more information at:


We use the MailChimp platform to send our newsletter. MailChimp is part of Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA (Rocket).

The data stored during the registration process is transmitted to Rocket and stored by Rocket. The data entered during the registration process is not transmitted to other third parties. After registration, MailChimp will send you an email to confirm your registration.

MailChimp uses the stored data to send and evaluate the newsletters on our behalf. In addition, MailChimp uses this data to optimize and improve its own services, such as to optimize the dispatch and presentation of the newsletters or to determine for economic reasons from which countries recipients come. However, MailChimp does not use the data of our newsletter recipients for recording or sharing with third parties.

We trust the reliability and IT/data security of MailChimp. MailChimp is certified under the US-EU Data Protection Agreement “Privacy Shield” and is required to comply with EU data protection requirements. In addition, MailChimp uses Google Analytics Analytics from Google, Inc and may utilize it in newsletters. For more details on Google Analytics, please refer to this Privacy Policy under “Google Analytics”.

For more information on privacy in MailChimp, please visit:

You can revoke your consent to the storage of the data as well as its use for sending newsletters at any time. You can always remove your email at or by clicking on the link provided in each newsletter.

Deletion of personal data

If your data is no longer required for the aforementioned purposes, it will be deleted by us. If data is to be kept for legal reasons, it is made inaccessible. The data is then no longer available for use. Your personal data and bank data can be updated at any time in your figo account, replacing the previous data. With the “Delete user” function, you can delete your free figo account at any time. The deletion affects all figo services. All personal data are made inaccessible over any legal retention periods, and then deleted. The storage of your data in the framework of third partie services remains unaffected.

Rights of information, authorization, blocking and deletion

You have the right to receive information about your personal data stored at figo. You also have the right to correct incorrect data and to block or delete your personal data, to the extent that there is no statutory retention requirement. Please contact specifying your email address used during the registration process, or write by post to:

figo GmbH

Gaußstraße 190c

22765 Hamburg, Germany.

Last update: April 2018