Data Protection at MLP

General information

Controller and Contact Data

The controller for the processing of your data when visiting this website and using the services offered is MLP SE, Alte Heerstr. 40, 69168 Wiesloch, Germany.

Contact MLP SE

You can contact the MLP data protection officer at or by post at
Alte Heerstraße 40
69168 Wiesloch, Germany


Your Rights

You have the right to information regarding your data stored at MLP at any time and, in cases that the statutory prerequisites are met, a right to rectification, blocking or erasure of your data, as well as a right to transferability of data provided by you in digital form.

If data processing is based on consent in accordance with Art. 6 (1a) GDPR, you can withdraw this consent with regard to MLP at any time with legal effect for the future.

If data processing by MLP is based on a legitimate interest in accordance with Art. 6 (1f) GDPR, you can object to this processing for reasons resulting from your own specific situation. MLP shall then only continue to process the data if there are verifiable and compelling legitimate grounds overriding your interests, rights and freedoms or if such processing is required to assert, exercise or defend legal claims.

You can assert your rights to MLP by e-mail to or in writing by mail to MLP SE, Alte Heerstrasse 40, 69168 Wiesloch, Germany.

In addition, you can lodge a complaint with MLP at any time regarding the processing of your data using the contact data provided.

You also have a right to lodge a complaint with one of the data protection supervisory authorities. You can find a list of the supervisory authorities (for the non-public sector) including addresses at:

Data protection when visiting web pages

Calling up the website

Each time a web page is called up, server log files (IP address, name of the file called up, date and time of access, data volume transmitted, status of the access (successful/unsuccessful), browser type and operating system of the terminal as well as the URL of the page previously called up (so-called “referrer URL”) are processed. This processing is mandatory to ensure that the connection is established correctly and our web pages can be used smoothly. It is performed on the basis of Art. 6 (1b) GDPR. This information is stored for a maximum period of seven days and then erased. Collection of the data to make the website available and storage of the data in log files is mandatory for operation of the website. Users do not have any possibilities of objection (opt-out) in this respect.

The data is also processed for system security and stability analyses, as well as for clarification of any legal infringements when there is a specific reason for this (e.g. to clarify acts of abuse or fraud) based on an overriding legitimate interest in improving the stability and functionality, as well as clarification in accordance with Art. 6 (1f) GDPR. Data which must continue to be stored for evidentiary purposes remains stored until final clarification of the respective incident.

Website analysis and online marketing

We use various analytics services and marketing tools which process data to different extents and for various purposes. In addition, we also integrate third party services in our web pages. Insofar as your consent is required for individual processing operations, you can grant this the first time you visit the website using the displayed cookie bar. We use the Usercentrics Consent Management Platform to manage your consents and objections.

You can find detailed information on the Cookie Bar employed, as well as the tools used for analysis and marketing purposes in the Cookie Settings. You can also check your selections at any time and change them for the future.

Consent Management with Consent Management Tool

We use the consent management tool from Usercentrics (Usercentrics GmbH, Sendlinger Str. 7, 80331 Munich, Germany) to obtain effective user consent for services requiring consent. The tool used also allows you to exercise your right to withdraw consent you have already given.

By integrating a corresponding JavaScript code, a banner is displayed to users when they access the page, in which the user can give or revoke consent for certain processing by ticking a box. The tool blocks the setting of all cookies and applications requiring consent until you expressly give your consent as described.

When using the consent management tool, the following personal data is transferred to Usercentrics and processed on our behalf:

    • Opt-in and opt-out data
    • User Agent
    • Consent ID
    • Consent type
    • Banner language
    • Referer URL
    • User settings
    • Time of consent
    • Template version

In addition, Usercentrics stores a cookie in your browser in order to be able to assign the consents you have given or revoke them. The consent data is stored for three years and then deleted. The consent management tool is used to obtain the legally required consent for the use of certain technologies. The legal basis for this is Art. 6 para. 1 c) GDPR.

Data processing with use of various services

Various services and interactions are offered via the website. However, data is generally only processed when you are using the respective service. The scope and purposes for which data is processed in such cases is described separately for each service in the following.

Data processing with use of various services

If you use a service to enter data (e.g. contact form, seminar registration), you will be asked to enter certain displayed characters in order to recognize and prevent misuse of the services by machines. The captchas are generated and verified on MLP's application servers. No data is transmitted to third parties.

If you use a contact form to get in touch, MLP processes your title, first name, surname, your contact details (phone-number and e-mail address), zipcode and, on a voluntary basis, your profession provided as well as the content of your additional message. The processing of the data is necessary to provide the service requested. The contact details are processed for enquiries and communication regarding the service requested. Based on your zipcode the data will be passed on to a consultant (acting as an independent commercial agent) and his/her staff for processing. The processing is based on Art. 6 (1 b) GDPR. If you are already in contact with MLP (client, previous consultation), the enquiry will be deleted 12 years after termination of the client relationship, and in all other cases after 3 years.

Data Processing when Concluding a Contract

Conclusion of Insurance Contracts/Financial Products (online/offline)

If you commission MLP to broker or conclude an insurance contract (online or offline) or if you conclude a brokerage contract with MLP, your data will be processed by MLP Finanzberatung SE. If you purchase a financial product such as a current account or a credit card, your data will be processed by MLP Banking AG.

Depending on the product and contract, different personal data will be required and processed. The details on data processing for the various services and products offered by MLP are explained in the client information on data protection in German.

Information related to the protection of your data

Your visit to the websites of the MLP Group is protected from unauthorised access using the SSL (secure socket layer) transport protocol. This also applies to cases in which services prompting the user to enter personal data are called up while using MLP online content. This data is always encrypted prior to transmission. The SSL (secure socket layer) transport protocol is currently considered secure and complies with the recommendations of the German Federal Office for Information Security (BSI).

MLP has implemented technical and organisational measures to ensure compliance with both European and German data protection legislation. All persons that collect, process or use data at MLP are obligated to observe confidentiality. This obligation also continues to apply if the employment relationship with MLP of any such persons is terminated. In addition to this, banking secrecy and special secrecy obligations are applied in certain areas.

As a user, you are obligated to treat all personal access data that has been made available to you so that you can take up individual offers from MLP as confidential and not make any of this data available to third parties. MLP does not accept any liability for misuse of passwords, to the extent that we cannot be held responsible for such misuse.