Data Protection
Protecting your privacy and personal data is of utmost importance to us. We only collect personal data with your knowledge and/or consent. Below, we explain what data we may process and for what purposes it is used.
Controller:
SICORE Real Assets GmbH
Kapstadtring 8
22297 Hamburg, Germany
Visitor address:
Kapstadtring 7
22297 Hamburg, Germany
Main telephone: +49 40 18 21 03-0
Managing Directors:
- Martina Averbeck (Spokesperson of the Management Board)
- Christoph Lüken
- Dr. Christian Schumacher
We have appointed a Data Protection Officer. You can contact them at:
hi-datenschutz@hansainvest.de
Last updated: March 2026
Privacy Notice for Visitors to Our Website
Protecting the personal rights of our customers and business partners is of great importance to us. The collection, processing and use of personal data is carried out in accordance with applicable legal provisions. Employees of SICORE Real Assets GmbH (“SICORE” or “we”) treat all personal information you provide during your visit to our website confidentially.
Where technically feasible and reasonable, our services can be used anonymously.
This privacy notice explains how and for what purposes personal data is collected, processed and used, and outlines the measures taken to ensure the security of your data.
Purpose and Scope
This privacy notice applies to all personal data collected, processed and stored by SICORE when you visit our website or engage with us.
Additional contractual terms, disclaimers or applicable laws may supplement this notice.
What Data We Collect and Why
When you visit our website, our web server automatically records details such as:
IP address, Referring website, Browser type, Pages viewed, Date and duration of visit.
We also process personal data you provide via the website, for example:
Name, gender, address, Email address, Telephone/fax number, Newsletter subscriptions
We use your personal data for:
- Improving and developing our website
- Technical administration
- Customer and user management and marketing
- Responding to enquiries and pre-contractual obligations
- Providing information about our products and services
Data Sharing
We may disclose information to public authorities, regulators or other parties where required by law, court order or regulatory request.
Security Measures
We implement appropriate technical and organisational measures to protect personal data against:
- Unauthorised access
- Misuse
- Loss or destruction
Additional safeguards include:
- Logging of access attempts
- Confidentiality obligations for staff
- Regular audits by the Data Protection Officer and Internal Audit
Electronic Communications
Electronic messages sent to or from SICORE are protected by appropriate security measures. Access is restricted and only granted in justified cases (e.g. legal or compliance requirements).
Internet Security Notice
The internet is not a fully secure environment. Data transmitted online may be intercepted or accessed by third parties. We therefore recommend using alternative communication channels where appropriate.
Cookies
Essential Cookies
We use essential (functional) cookies necessary for the operation of the website. These do not contain personal data and are used solely to link users with their data.
Example:
“1frontend” cookie enables functions such as newsletter use
Matomo Analytics
We use Matomo (self-hosted) to analyse website usage:
- No personal data is stored
- IP addresses are anonymised
- No data is shared or used for advertising
- Processing is based on legitimate interests (Art. 6(1)(f) GDPR)
Third-Party Services
Google Maps
Used to provide directions and location services.
Google privacy policy: https://policies.google.com/privacy
Stop Forum Spam
Used to prevent spam via contact forms.
Email and IP address are temporarily processed but not stored.
Collection of Personal Data via Website
Newsletter
You may subscribe to our newsletter. We process your data to provide relevant information. Subscription requires confirmation via email. You may unsubscribe at any time.
Contact Form
Data submitted via contact forms is used solely to process your enquiry.
In some cases, processors acting on our behalf (under Art. 28 GDPR agreements) may process your data.
Data is deleted or anonymised once your enquiry is fully resolved.
Third-Party Content Integration
Our website uses external services (e.g. analytics tools). This requires transmission of your IP address to providers. We cannot fully control whether such data is stored.
snapADDY (Digital Lead Management)
We use snapADDY software for managing contacts and capturing trade fair and field sales interactions.
Provider: snapADDY GmbH, Würzburg
Data processed:
- Contact details
- Communication data
- Form inputs
Purpose:
- Communication
- Feedback collection
- Marketing
Legal basis:
- Contract (Art. 6(1)(b) GDPR)
- Consent (Art. 6(1)(a))
- Legitimate interest (Art. 6(1)(f))
- Data is stored on servers in Germany.
Data Protection for Applicants
We process the following applicant data:
- Personal and contact details
- Application documents
- Qualifications and employment history
- Special category data (e.g. health, religion) is processed only with consent or legal basis.
Purpose:
- Managing recruitment process
- Assessing suitability for employment
Legal basis:
Art. 6(1)(b) GDPR
§26 BDSG (employment law)
Data Recipients
Access is limited to relevant departments and entities, including our parent company (SIGNAL IDUNA Group).
Your Rights
You have the right to:
- Access your data
- Rectification
- Erasure
- Restriction of processing
- Data portability
- Lodge a complaint with a supervisory authority
Competent authority:
Hamburg Commissioner for Data Protection
Storage Period
Applicant data is stored for up to six months after completion of the recruitment process unless longer retention is required by law or consent.
Appointments via Microsoft Bookings
We use Microsoft Bookings for scheduling.
Legal basis: Art. 6(1)(b) GDPR
Microsoft Ireland Operations Ltd. acts as processor under Art. 28 GDPR agreements.
Data may be processed in the US under EU Standard Contractual Clauses.
Microsoft Teams
Used for online meetings and collaboration.
Data processed may include:
- Name, email, phone
- Meeting metadata
- Audio/video data
Legal basis:
- Contract (Art. 6(1)(b))
- Legitimate interest (Art. 6(1)(f))
- No automated decision-making takes place.
Social Media Presence
We maintain profiles on:
These platforms may process data outside the EU/EEA, which may pose risks due to lower data protection standards.
Processing is based on legitimate interest (Art. 6(1)(f) GDPR).
Tenant Data Protection Notice
Controller
SICORE Real Assets GmbH
Kapstadtring 8, Hamburg
Data Sources
Data is obtained from:
- Contracts (e.g. tenancy agreements)
- Public registers
- Third parties (e.g. credit agencies)
- Purpose and Legal Basis
- Processing is carried out:
- To fulfil contractual obligations
- To comply with legal requirements
- Based on legitimate interest or consent
Recipients
Data may be shared with:
- Authorities
- Financial institutions
- Service providers
- SIGNAL IDUNA Group companies
Retention
Data is retained:
- For the duration of the contractual relationship
- In accordance with statutory retention periods (up to 10 years or more)
Transfers Outside the EEA
Data is only transferred outside the EEA where:
- Necessary for contract fulfilment
- Adequate safeguards are in place
Your Rights
You have rights to:
- Access
- Rectification
- Deletion
- Restriction
- Portability
- Complaint
How to Exercise Your Rights
Contact:
SICORE Real Assets GmbH
Data Protection Officer
Kapstadtring 8
22297 Hamburg
Email: hi-datenschutz@hansainvest.de
Cookie Policy
Cookies are small text files stored on your device.
We use:
- Session cookies (deleted after browser session)
- Persistent cookies (remain stored)
Purpose:
- Improve user experience
- Enable functionality
- Generate anonymised statistics
- You may configure your browser to refuse cookies, though functionality may be limited.