DEGIRO's Privacy & Cookie Statement

DEGIRO respects and protects your privacy. You can visit this website anonymously. DEGIRO is not interested in names or other information revealing the identity of the visitors to this site. Information about you or your computer will only be registered with DEGIRO for technical reasons, or in connection with a customer. This is done with a cookie or other means.

Privacy Statement

DEGIRO takes the privacy and security of your personal data very seriously, our privacy statement explains the information we collect from you, why we collect this data, how we ensure that it is kept safe and it explains your rights in relation to your personal data. You should read this statement carefully to ensure that you understand how we handle your personal data.

Who are we?

We are DEGIRO, a branch of flatexDEGIRO Bank AG, Germany.

We are registered within the Netherlands, and we are data controller as defined in the General Data Protection Regulation or GDPR. Should you wish to contact us with general questions these can be sent to clients@degiro.ie. It is also possible to contact our data protection officer via privacy@degiro.ie.

The registered office for DEGIRO is:
flatexDEGIRO Bank Dutch Branch,
Rembrandt Tower - 9th floor,
1096 HA Amsterdam, The Netherlands.

Headquarter:
flatexDEGIRO Bank AG
Omnitower, Grosse Gallusstrasse 16-18
60312 Frankfurt am Main, Germany
Tel: +49 (0) 69 506041910
E-Mail: kundeninfo@flatexdegiro.com
Internet: www.flatexdegiro.com

Data Protection Officer (DPO) Contact information:
Omnitower, Grosse Gallusstrasse 16-18
60312 Frankfurt am Main, Germany
Tel: +49 (0) 69 506041910
E-Mail: datenschutz@flatexdegiro.com

What do we mean by personal data?

Personal data, is any information relating to you or can be used to identify you.

As a client of DEGIRO you provide us with some of your personal data, this includes your name, telephone number, e-mail address. It can also include Internet Protocol or IP addresses which in some circumstances can be used to identify you.

In the event that a corporate or professional party intend on becoming a client, we will also collect personal data which relates to the interested individuals of the company for example, directors, UBO, authorised representatives etc.

What do we mean by processing?

Processing is a concept from the law. It is a very broad concept which covers actions taken in respect to your personal data such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

Whenever DEGIRO carries out any processing of personal data, we do so in line with the relevant privacy regulation.

How do we collect your data?

Below you will find ways in which we collect your personal data:

  • When you provide information by e-mail, via the website or trading platform, phone, in writing, or other means. This includes, for example, the information you provide during the registration, signing up for further information, entering a promotion or survey.;
  • When you visit our websites, we will automatically collect information including the IP address. We also collect information about your visit, this includes the full click path and mouse movement, pages you visited, searches which were made and other page interaction information.;
  • It is possible that we will receive information about you from credit rating agencies, this collection is carried out in line with the Client Agreement.;
  • For Corporate clients we will also collect information which is publicly available in relation to the UBOs of the company.;
  • If you visit us in person, for security we collect images of visitors using CCTV.;

Why do we process your personal data?

DEGIRO collect personal data for the following reasons:

  • To comply with the legal and regulatory obligations;
  • Marketing activities; and
  • Execution of contractual obligations, for example sharing data with Custodians.

DEGIRO as branch of a German Bank has a number of regulatory obligations which require the processing of client data; customer identification is one of the main reasons we collect and process personal data. DEGIRO is therefore required to collect personal data in line with the Wet ter voorkoming van witwassen en financieren van terrorisme (Wwft). In addition to the financial regulations, DEGIRO must comply with Dutch Tax regulations and therefore are required to collect Tax Identification Numbers and other personal data (e.g. name, address details, tax residency etc.).These collected data are reported to the Dutch tax authorities, who may transfer the personal data to the local tax authorities in the country where the client is a tax resident. The legal basis for this exchange of personal information is the Dutch Law on International Assistance in Taxation (Wet op de internationale bijstandsverlening bij de heffing van belastingen (WIBB)) in which the CRS Directive is codified.

As a US Qualified Intermediary (QI), DEGIRO has an agreement in place with the Internal Revenue Service (IRS) which allows for US withholding tax to be withheld at a reduced tax rate in accordance with a treaty for the avoidance of double taxation between the country of tax residence and the US (if applicable). DEGIRO may exchange personal data with the IRS insofar required under the QI Agreement.

Furthermore, DEGIRO reports personal data of clients with a Swedish tax residence to the Swedish tax authorities.

Further to this there are additional legal and regulatory obligations we must comply with, co-operation with courts and authorised law enforcement agencies and to prevent and detect crime. Next to this, when people contact DEGIRO to ask for additional information or to become a client of DEGIRO, DEGIRO needs to be able to contact that client or potential client or you request us to send you our periodical newsletters. DEGIRO also has contractual obligations which mean that they need to process the data of their clients to fulfil these obligations.

When DEGIRO process the personal data of its clients, it does so by using the minimal amount of data possible to ensure that aim is met (following the principle of data minimisation).

What do we use personal data for?

DEGIRO may for example do the following with your personal data:

Client acceptance

It is required by law for us to verify the identity of our clients, and without this information DEGIRO could not provide its services to you. For DEGIRO to identify and verify clients, there have been internal policies and procedures written based upon both regulations and guidelines from relevant bodies. DEGIRO reviews these policies and procedures periodically to ensure they are appropriate.

DEGIRO makes use of Fourthline, to support the Know Your Customer (KYC) process.

  • Contact you.
  • Perform the relevant checks to ensure that you are eligible to become a client of DEGIRO.
  • Review and check your request to become our client or to change your profile.
  • Keep your details in our administration and update them when there are changes.
  • Manage your profile(s) including you individual risk profile; which are based on internal client acceptance policies.

Reduce risks

We share the responsibility for the safety and stability of the financial sector. We also have a responsibility to you and all our clients. We will therefore use your personal data to reduce risks.

You might notice for example:

  • If the risk on your account breaches the allowed limits, we will contact you to allow you to bring this back into the allowed limits.

You might not notice much of the below but it is also done to protect you:

  • We keep your IP address when you visit our site. This can be used in the event that there is a dispute as to who accessed your account or for the security of the company for example preventative measures against DDoS attacks.
  • Ensure good levels of security and invest in resources that protect both you and ourselves against all kind of crimes.
  • Internal quality checks, to determine possible issues, risks and testing to ensure that legislation has been properly implemented.
  • Carry out the relevant regulatory reporting.
  • Ensure that we remain a healthy company (risk management).

Legal obligations

There are a variety of legal obligations which DEGIRO as an investment firm must follow.

  • Identification of clients: we check who you are and ensure that we have enough knowledge to allow us to offer our services.
  • Provide your personal data to specific organisations which are authorised to request this information, for example the tax authorities, financial supervisors, or when we are legally obliged to share this information for example during a criminal investigation.
  • We also have a number of obligations under anti money laundering legislation.
  • Under the ‘Shareholder Rights’ directive, DEGIRO is obliged to share information surrounding the owner of shares to the issuer when requested.

Marketing activities

At DEGIRO we like to keep you informed. For example, with e-mails, newsletters, offers or updates to our trading platform or mobile app.

Your data is processed based on your consent (Art. 6 Par. 1 lit. a GDPR). Or based on legitimate interests (Art. 6 Par. 1 lit. f GDPR). You can, of course, revoke your consent to the storage of the data, the e-mail address, and their use for sending the newsletter at any time via the "unsubscribe" link in the newsletter. The legality of the data processing procedures already carried out remains unaffected by the revocation.

The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. e-mail addresses for subscribing to our services) remain unaffected by this.

Improve and innovate

We may also use personal data for analytical research, this allows us to find better solutions and ensure that we continue to be innovative.

When we are carrying out these research activities, we use the minimal data required and do this in a way where your information is either pseudonymised or anonymised.

Google analytics

In order to ensure that the website of DEGIRO is easy to use for clients, and to assess the success of campaigns DEGIRO make use of Google Analytics. DEGIRO have signed an agreement for the use of this service and ensures that the data is anonymised as much as possible, this includes masking part of the IP address.

Who do we have personal data from?

We can have (some) personal data of anyone who has contact with DEGIRO. If you request additional information, we will store the information which is provided during that request.

We are required by law to have personal information surrounding all of our clients. This information is gathered during the registration and requested when necessary. In some cases, it may be necessary for us to make use of third parties to either verify or collect information.

What personal data is collected?

Data about you

This includes your name, address, telephone number and e-mail address. In the event you are a corporate client we will also collect information surrounding your company or foundation. If you open a minor account or a joint account, the information surrounding the secondary account holders will also be collected. We will also ask for copies of your ID and personal numbers such as your tax identification number or relevant identifiers.

Transaction history

In addition to personal data which DEGIRO have in relation to clients, we also keep a historic log concerning transaction and order history.

Contact history

We keep record of the times when you have contacted DEGIRO, this includes telephone recordings, e-mails or other ways you have communicated with us.

Website visits and app use

In the event that you visit the website of DEGIRO, we will also collect the IP address which is used. Should your IP address be used, for example via Google Analytics this will be done in an anonymised way.

External data sources

There are times where DEGIRO will use external data provides, such as checking with the relevant chamber of commerce or in the event a credit check is required.

In the event that DEGIRO carry out credit checks (BKR) they apply the strictest confidentiality on this information. Any individual who has access to this information does so only in the performance of their duty and the relevant data protection regulation is fully complied with. In the event you have questions of when BKR checks are carried out please contact the Service Desk of DEGIRO.

Sensitive personal data

Sensitive personal data include things such as tax identification number, criminal history, biometric data, political beliefs, sexuality or ethnic origin, etc. If processing sensitive personal data is necessary, there are stricter rules applied to this.

At DEGIRO we never use sensitive data related to health, religious beliefs, political or philosophical beliefs, sexual orientation or ethnic origin.

We have a legal obligation to identify our clients, therefore we require the tax identification number to do this.

With using Touch ID or Face ID to log in using the DEGIRO mobile App, the scans of your fingerprints of face are stored on a secure chip on your phone. DEGIRO has no access to that chip and therefore this biometic data is unknown to DEGIRO.

Who do we share your personal information with?

In principle we do not share your information with others. It is possible that we may share personal data within the Group which DEGIRO is a part of. All members of the Group which DEGIRO is a part of have the same strict Privacy Policy. The police, judiciary, regulators and the tax authority can also request information from us on the grounds of law. However, we follow procedures which ensure that any sharing of information is both legitimate and proportionate.

Service providers

In the event we use a service provider to assist DEGIRO, we will aim to inform you about the use of a third party and limit the sharing of personal information strictly to what is required for that specific assignment.

In the event that you make use of the Morgan Stanley Liquidity Funds, it is possible that we will need to provide them with information about who you are. In the event that this information will be provided to Morgan Stanley with the relevant safeguards in place.

We use the services of Braze, Inc, 318 West 39th Street, 5th Floor New York, NY 10018 for service, functional and marketing messages. The data processing is based on our legitimate interests (Art.6 para.1 lit. f GDPR) in optimising our newsletter content and app push messages. Braze processes user data such as email, push tokens, interaction data and IP address to control the sending of service-, functional- and marketing messages and to analyse user interactions.

You can find more information on data processing by Braze in the Braze privacy policy. We have concluded a so-called "Data Processing Agreement" with Braze, in which we oblige Braze to protect the data of our customers, not to pass it on to third parties and, in the event of a transfer of personal data to the USA, to comply with the provisions of the standard contractual clauses in accordance with Article 46 of the GDPR.

With other companies on your own request

There are times when we will only share your personal data with other companies when you specifically ask. When this is done, we will specify this in the agreement to share the information.

Government and regulatory bodies

As a branch of a German bank, there are times when we receive requests for information surrounding our clients. We are obliged under law to provide the regulators with this information. Additionally, we have legal obligations which require us to share information with governmental bodies and competent legal authorities. The data protection regulations which cover DEGIRO are also applicable to these bodies.

DEGIRO, in its capacity of Qualified Intermediary, may exchange information directly with the Internal Revenue Service for purpose of establishing your status as a non-US Person and, if applicable, obtaining a reduced rate of withholding.

DEGIRO will in specific circumstances also share information with relevant tax authorities.

How long do we store your personal data?

When you become a client of DEGIRO we will keep your personal data for the duration of our relationship. After termination of the business relationship, we are legally obliged to store personal data until the end of all legally required storage and retention periods.

How do we protect your personal data?

Security

We spend a lot of time and resources to ensure our systems and your personal data have the relevant security measures in place. In the case that there is a breach of our systems we will report this to the relevant authorities and ensure that our clients are aware.

We have appropriate technical and organisational measures in place to protect your personal data against unauthorised access including accidental loss, destruction or disclosure of your data. We place restrictions on the access of personal data, so only those employees who need to access your data can. To ensure that any new processing is justified and compliant with the law we complete data protection impact assessments and carry out monitoring of any external data processors.

Confidentiality

Our employees have all signed a confidentiality agreement and agreed to an internal code of conduct and follow the Oath of promise in the financial sector. Further to this, only authorised personnel may view and process your personal data.

Supervision

  • We are supervised by Der Hessische Beauftragte für Datenschutz und Informationsfreiheit to ensure we comply with the GDPR.
  • DEGIRO, the Dutch branch of flatexDEGIRO Bank AG, is primarily supervised by the German Bundesanstalt für Finanzdienstleistungsaufsicht (BaFin). In the Netherlands, DEGIRO is subject to integrity supervision by the Dutch Central Bank (DNB) and conduct supervision by the Dutch Authority for the Financial Markets (AFM).

Is your personal data used in automated decision making?

There are times for example when you change profile from a Basic to an Active or Trader or Day Trader that we will automatically screen your account against the information from the Bureau Krediet Registratie. Should there be an issue in providing the services of Debit Money, the Service Desk will contact you to inform you that you are unable to make use of the services Debit Money and how to proceed in this case.

Your rights

  1. Right of access:

    you have the right to access any personal data which DEGIRO hold about you. We can provide a copy of this information, to request this you can contact the relevant Service Desk of DEGIRO who can provide this information after completing security.

  2. Right to rectification:

    if you find your data to be incorrect or outdated, you should contact the relevant service desk of DEGIRO to request for this data to be updated.

  3. Complaints:

    If you have complaints about the processing of your personal data, please get in touch either with the relevant service desk of DEGIRO or by contacting the Data Protection Officer via privacy@degiro.ie

  4. Der Hessische Beauftragte für Datenschutz und Informationsfreiheit:

    Under GDPR you have the right to complain about our processing of your personal data to the Der Hessische Beauftragte für Datenschutz und Informationsfreiheit.

Under GDPR you have some other rights which may be possible in specific circumstances:

  1. Right to Erasure:

    in certain circumstances it is possible for us to delete some of or all the personal data we hold for you.

  2. Right to restriction of processing:

    You can ask for DEGIRO to restrict the way your personal data is processed.

  3. Right to data portability:

    It is possible to request for your data to be provided to you for to be sent to a third party.

  4. Right to object:

    You have the right to object to the processing of your personal data when this processing is done on the basis of legitimate interest.

  5. Right to stop marketing:

    it is possible to stop using your personal data for direct marketing purposes. This can be done via the unsubscribe button in the marketing e-mails or by contacting the relevant Service Desk. Please be aware that for some communication we are required to inform you and for these, it will not be possible to unsubscribe while you are a client, this includes changes to the client agreement for example.

Furthermore, in the event that consent was required for the processing of your personal data, you have the right to withdraw your consent as given regarding your data at any time.

The above requests will be considered by DEGIRO and responded to within a reasonable period. Please be aware that some of these requests might not be granted, for instance in cases where these would result in DEGIRO failing to meet a legal requirement or the ability to exercise or defend a legal claim.

Our view on privacy

At DEGIRO, our client's trust is fundamental to our relationship. We, therefore, strive to ensure that our clients have faith in the way we deal with their personal data. We take great care in ensuring that your data is safe and only processed when authorised to do so.

When we process your personal data, we always make sure that it is essential for us to do this. When possible, we will anonymise your personal data or when this is not possible, we will only use the data which is strictly necessary. For processing your personal data, we will also ensure that the concept of ‘privacy by design’ is at the heart of our development.

Our privacy policy is updated regularly, as law and regulations are continuously subjected to change, we will review the policy to ensure that it is kept up to date.

Questions about privacy

In the event, you have some additional questions in relation to privacy or your personal data you can contact the service desk of DEGIRO where they will answer all questions.

In the event that you wish to complain about the way we have handled your personal data please contact the data protection officer via privacy@degiro.ie. Please note when contacting the data protection officer this communication will be answered in Dutch or English. The DPO will then look into your complaint and work towards a resolution.

If you still feel that your personal data has not been handled appropriately according to the law, you can contact der Hessische Beauftragte für Datenschutz und Informationsfreiheit and file a complaint with them.

What DEGIRO uses your personal information for?

DEGIRO only records personal information that you have provided upon request when you become a client of DEGIRO and only after your explicit permission. Without these statements, DEGIRO cannot and must not exercise its business activities. DEGIRO and DEGIROs group companies will use your information to provide you services that keep you informed about (new) products and services from DEGIRO and group companies for anonymous statistical analysis, and comply with legal obligations.

All telephone conversations between the customer and DEGIRO are recorded. These recordings are stored and can be used for:

  • delivery of documents, such as by difference of interpretation or regarding the content of the telephone conversation;
  • (fraud) detection and investigation;
  • evaluation of service quality;
  • training, coaching, and evaluation purposes.

Information about your right to object in accordance with Article 21 of the EU General Data Protection Regulation (GDPR)

Individual right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) GDPR (data processing in the public interest) and Article 6(1)(f) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right to object to processing of data for direct marketing purposes

We may also process your personal data to carry out direct marketing. You have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising; this also includes profiling insofar as it relates to such direct advertising. If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes.

The objection can be made form-free and should preferably be addressed to:

flatexDEGIRO Bank AG
Omnitower, Grosse Gallusstrasse 16-18
60312 Frankfurt am Main
Fax: +49 (0) 69 5060419 19
E-mail: kundeninfo@flatexdegiro.com

Liability

DEGIRO considers it important that the processing of your (personal) information is conducted in a manner that is consistent with the existing safeguards to protect your personal information. DEGIRO complies with the rules of the Data Protection Act and the Act on Financial Supervision in all its activities. Your (personal) information will not be disclosed to third parties outside DEGIRO and DEGIRO's group companies without your express consent unless legal obligations require of DEGIRO.

Third-party websites

DEGIRO and group companies are not responsible for the measures of other websites using terms, even when they are associated with DEGIRO's and the Group's websites with hyperlinks or otherwise.

Exercise of rights

You have the right to see your information and when necessary the ability improve or correct this information. For this, contact DEGIRO through this website.

We'll keep you updated about (new) products and services from DEGIRO and group companies via e-mail. If you do not want this, it can be specified via clients@degiro.ie

Changes

DEGIRO reserves the right to make changes to this statement. It is therefore advisable to consult this privacy statement regularly when you visit this website.

Do you think that there is something wrong with this statement or are you unhappy with another aspect of our service? Please make sure to contact us. Your complaint will be handled by DEGIRO's compliance officer. If you are unhappy with DEGIROs assessment, please contact Klachteninstituut Financiële Dienstverlening, PO Box 93257, 2509 AG in The Hague (www.kifid.nl).

Cookies

Note:
Investing involves risks. You can lose (a part of) your invested funds. We advise you to only invest in financial products which match your knowledge and experience. This is not investment advice.

Investing involves risks.

icon_close

We want to empower people to become the best investors they can be. By offering a universe of possibilities and choices on our user-friendly platform, we are removing barriers to make investing accessible to everyone: beginners or experts. You get access to a wide variety of products on more than 50 global exchanges to have the freedom to invest the way you like. In our world, you also get great value for money. So, without compromising an inch on the quality, security and range of our investment services, we offer incredibly low fees. Prioritising your needs has helped us become the leading European online broker. Our 2.5+ million clients and 100+ international awards are proof of our success.

flatexDEGIRO Bank Dutch Branch, a foreign branch of flatexDEGIRO Bank AG | Amstelplein 1, 1096HA Amsterdam | phone: +31 20 2613072 | e-mail: clients@degiro.ie | flatexDEGIRO Bank Dutch Branch is registered with the Dutch Chamber of Commerce under number 82510245. | flatexDEGIRO Bank Dutch Branch, trading under the name DEGIRO, is the Dutch branch of flatexDEGIRO Bank AG. flatexDEGIRO Bank AG is primarily supervised by the German financial regulator (BaFin). In the Netherlands, flatexDEGIRO Bank Dutch Branch is registered with DNB and supervised by AFM and DNB. | flatexDEGIRO Bank AG is a licensed German bank supervised by the German financial regulator and registered with the German Chamber of Commerce under number HRB 105687.

Logo

Terms and conditions for the €100 transaction fees offer

If you activate your DEGIRO investment account before the 1st of April 2024, DEGIRO will reimburse your transaction fees up to €100. The following conditions apply to this offer:

  • The offer is valid until (including) the 31st of March 2024.
  • During the offer period, new clients who have activated an account will receive up to €100 in transaction fees reimbursed.
  • The first transaction costs and external handling fees up to €100 within the timeframe until the 30th of April 2024 will be reimbursed.
  • Currency handling fees (Auto FX trader and Manual trade) are not eligible to be refunded with this promotion.
  • We will reimburse the transaction costs and external handling fees you have spent (up to a maximum of €100) to your DEGIRO account in early May 2024.
  • This offer is only valid for new clients with an Irish DEGIRO account.
  • Once you sign the Client Agreement, your account is activated and the offer period starts.
  • To start trading and therefore use the €100 voucher, the new client needs to make a first deposit (minimum amount is €0.01).
  • New clients who started their registration before the offer period, but activate their DEGIRO account during the offer period, are also eligible for this offer.
  • If an existing account is already linked to the address of the new client, participation is excluded.
  • Each new client can only claim the €100 transaction credit once.
  • Dutch law is applicable to this promotion.

Acceptance of offer conditions

By participating in the offer, the client automatically accepts the offer conditions and terms. DEGIRO may terminate the campaign at any moment prior to expiry or change the campaign conditions. DEGIRO will communicate any changes via the website.

Participation

Participation in the offer is open to all clients who have activated an account at DEGIRO on or before the 31st of March 2024.

icon_close