Privacy statement

figo GmbH (hereinafter referred to as “figo”) is always mindful of the importance of the data entrusted to us. The responsible handling, confidentiality and protection of your data is therefore of particular importance to us. The collection and use of your personal data takes place exclusively within the framework of the legal provisions of applicable data protection law as well as this privacy statement. With this privacy statement, we inform you about what personal data we collect as part of your use of figo services – such as our website or figo WebApp – and figo partner services, and for what purpose the data is used.

In the following, we will show you the type, scope and purpose of the collection and use of your personal data. You can access this information at any time on our website in the current version at as well as in the WebApp at under “About”. Please note the following:

Responsible authority/Contact

The responsible authority with regard to the Data Protection Act is the:

figo GmbH
Gaußstraße 190c
22765‎ Hamburg

Authorised representatives and general manager: André M. Bajorat, Heiko Rahlfs

External Privacy Officer (Syndikusrechtsanwältin), Melanie Dörholt, IBS Schreiber GmbH, Zirkusweg 1, 20359 Hamburg

If you have any questions or suggestions regarding data protection, you can also contact us by email at

The subject of data protection

The subject of data protection is personal data. The law takes this to refer to individual details of personal or factual circumstances of a particular or determinable natural person. Personal data are thus information that can be used to draw conclusions about a specific or identifiable natural person. As a basic principle, all information about which a personal reference can be made may also fall under the category of personal data, for example, a person’s name, address, email address, telephone number, staff number, vehicle registration number, appearance or gait of a person. Furthermore, account and credit card data as well as usage data also have a personal reference. Usage data is understood as the data required to use our offers. This includes, for example, information on the start, end and scope of your use of figo services, as well as certain related registration data.

Data collection and use

With regard to the collection and use of your data, it is necessary to distinguish between data automatically passed on to figo as a result of technical processes in your internet usage and data that you pass on to figo independently in order to use the functions of our figo services.

Automated data collection

When accessing our website or the figo WebApp, your browser or mobile phone automatically transmits data for technical reasons. The following data is stored separately from other data that you may transfer to figo:Date and time of access

  • Date and time of access
  • Browser type / version
  • Operating system used
  • Retrieved resource
  • Quantity of data transmitted

This data is stored exclusively for technical reasons and is not made to refer to you at any time.

Data that you transfer to figo

By using figo services and partner services of your choice and by entering the relevant data, you determine which information you transfer to figo or to the partners you have selected. The input of any data is of course voluntary.


In order to enjoy complete use of figo services, you must first register with us and create a personal figo account. You must enter your name, email address and a password. This data is required to set up, manage and finally, to be able to make use of figo’s services.

figo Services

In order for figo to be able to perform services for you, you must include your chosen financial accounts with your banks, credit card and other payment providers in your figo account. You must enter the access data for the respective services (e.g. user name and password, account number and bank code or PIN). This data will be stored by us at your request and assigned to your figo account. By entering this data, the providers you have selected submit to us your deposited financial data, including account data, balance, and activity. figo uses an up-to-date and up-to-date encrypted connection for this data transmission. You can, of course, freely decide to which bank account or to which accounts or services you give us access. Saving your password or PIN to the respective account is also voluntary. However, figo and partner services selected by you can, depending on the application, can make available the full range of functions if the access data is stored in your figo account and we can keep your services in view (e.g. sharing current balance information with you).

Entering and storing this data is required if you want individual figo partner services to provide you with an individual analysis of your financial behavior. All address and bank data entered by you will be stored exclusively for processing the desired functions of the figo services and separated from other data collected by us.

Saving of PIN or password

You decide for yourself whether we store your PIN or password within the access data and thus receive automated access without having to ask for prior confirmation from you. If you choose this option, we can make things easier for you and our service partners. We will point out the option for saving the PIN or password at the appropriate moment during the account setup. Of course, you can also delete the saved PIN and/or password at any time.

If you decide not to save your access data, the account information will only be updated if you enter your PIN or password again and match it with the previously reported data of the relevant service.

Partner services for your figo account or figo financial ID

You also have the option to use your financial ID in third-party applications (such as financial reporting, accounting, document management, tax consulting, contract management tools). You can integrate your figo account into various partner services. This means that in order to use the partner services with figo, you have to create an account with the respective partner and connect it to your figo account.

If you use the financial ID, the data stored in your figo account will also be transferred to the third-party services you have authorized. When authorizing the financial ID, you can choose which accounts and services on your figo account can be accessed by the third party.
Only on your express approval will third parties have access to the information and data you have stored in the figo account. Further use of the data in third-party applications is exclusively based on the applicable privacy regulations of the third-party providers.

No further transfer of your data to third parties

Except for the above-mentioned purposes, no transfer of your personal data is possible without your prior express consent.

Exceptions are permitted only in the following cases, i.e. if sharing of data:

  • is used to clarify the unlawful use of the figo services or is necessary for legal prosecution. In this case, your personal data will be passed on to law enforcement authorities as well as to third parties if necessary. However, this only takes place if there are concrete indications of illegal or abusive behavior. A transfer may also take place if this serves the enforcement of conditions of use or other agreements. figo is also required by law to provide information at the request of certain public authorities. These are law enforcement agencies, government authorities pursuing fines and penalties, and public financial authorities.
  • is necessary to perform services or parts of services for which partners contracted by figo and external service providers (e.g. MailChimp for the mailing of the newsletter for the further development of our product) are used. In such cases, information is passed on to these companies or individuals so it can be further processed in order to provide services. These external service providers are carefully selected by us and are regularly reviewed to ensure that the protection and confidentiality of your data is guaranteed. The service providers may only use the data for the purposes specified by us.
  • it is associated with the further development of our business and a change in the structure of figo GmbH by a change in legal structure, or if subsidiaries, business units or components are founded, purchased or sold. In such transactions, customer information is passed on together with the part of the company to be transferred. When submitting any personal data to third parties as described above, figo shall ensure that this is done in accordance with this privacy policy and relevant data protection laws.


Cookies are small text files that allow storage of specific information on the user’s device. They serve the user on the one hand by enabling user-friendly presentation of web pages (e.g. saving of login data). On the other hand, they are used to collect statistical data on website use and analyze it for the purpose of improving services. Users can influence the use of cookies. Most browsers have an option to limit or entirely prevent storage of cookies.

Facebook Plugins (Like-Button)

Plugins for the social network, operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (Facebook), are used on these webpages.

If you access a webpage on our website that has one of these plugins, a link is established to the Facebook servers, and a message to your browser displays the plugin on the webpage. This allows the Facebook server to identify which of our webpages you visited.
If you are logged in as a member of Facebook, then Facebook assigns this information to your personal Facebook user account. If you use the plugin functions (e.g. click the “Like” button or make a “Comment”), this information is also assigned to your Facebook account, and the only way to stop this is to log out before you use the plugin.

For more information on how Facebook collects and uses the data, on your rights in this respect and on possible ways to protect your individual privacy, see Facebook’s data privacy policy:


Our websites use social plugins (“plugins”) of the social network Twitter, which is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“Twitter”). The plugins are identified with a Twitter logo or the suffix “tweet”.

If you visit a page on our website that contains such plugins, they are initially disabled. The plugins are not enabled until you click the button that is provided. By enabling the plugins, you establish the connection to Twitter and give your consent to the transmission of data to Twitter. If you are logged into Twitter, Twitter can associate the visit with your Twitter account. If you press the respective button, the corresponding information is transmitted directly to Twitter by your browser and stored there.

For information about the scope and purpose of data collection, the further processing and use of the data by Twitter, and your rights and the settings you can configure to protect your privacy, please refer to the Twitter Data Protection Notice:

Here You can change your Twitter account settings by visiting:


Our websites use so-called retargeting technologies from Google, Facebook, Twitter and LinkedIn. This technology lets internet users interested in our website advertise on the websites of our partners. The insertion of these advertisements on the pages of our partners is based on cookie technology and is completely anonymous. No personal data is stored, nor are any user profiles combined with your personal data.

Google Analytics

Our website uses the functions of the web analytics service Google Analytics from Google Inc. (hereinafter referred to as “Google”), 1600 Amphitheater Parkway Mountain View, CA 94043, USA.

Google Analytics uses the above-mentioned “cookies”, which are stored on your computer, to allow an analysis of your website usage. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

By using this website, you agree to the processing of the data about you by Google in the manner described above and for the aforementioned purpose.

IP anonymization

We use the function “Activation of IP anonymization” on this website to ensure an anonymous capture of IP addresses (so-called IP masking). However, Google will abbreviate your IP address within Member States of the European Union or in other States party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the US and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide other services related to use of the website and internet usage against the website operator. The IP address provided by your browser as part of Google Analytics will not be merged with other Google data. In addition, Google may transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google.

Browser Plugin

You can prevent the storage of cookies in the settings of your browser software or by installing an appropriate browser add-on. In addition, you can prevent Google from collecting cookie-generated data related to your use of the website (including your IP address) as well as the processing of such data by Google by downloading and using the browser plug-in available under the following link:

Objection to data collection

You can prevent data acquisition from Google Analytics by clicking on the following link. An opt-out cookie is set which prevents future collection of your data when you visit this website:

Optout-Button (Deactivate Google Analytics)

We also use Google Analytics to evaluate data from AdWords and the DoubleClick cookie for statistical purposes. If you do not want this, you can disable it using Ad Manager.

Google Tag Manager

Google Tag Manager is a solution that offers an interface with which marketers can manage web page tags. While the “Tag Manager” tool itself, which implements the tags, is a cookieless domain and does not collect any personal data, the tool does enable the triggering of other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation is performed at the domain or cookie level, it will persist for all tracking tags implemented with the Google Tag Manager. Find more information at:


We use the MailChimp platform to send our newsletter. MailChimp is part of Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA (Rocket).

The data stored during the registration process is transmitted to Rocket and stored by Rocket. The data entered during the registration process is not transmitted to other third parties. After registration, MailChimp will send you an email to confirm your registration.

MailChimp uses the stored data to send and evaluate the newsletters on our behalf. In addition, MailChimp uses this data to optimize and improve its own services, such as to optimize the dispatch and presentation of the newsletters or to determine for economic reasons from which countries recipients come. However, MailChimp does not use the data of our newsletter recipients for recording or sharing with third parties.
We trust the reliability and IT/data security of MailChimp. MailChimp is certified under the US-EU Data Protection Agreement “Privacy Shield” and is required to comply with EU data protection requirements. In addition, MailChimp uses Google Analytics Analytics from Google, Inc and may utilize it in newsletters. For more details on Google Analytics, please refer to this Privacy Policy under “Google Analytics”.

For more information on privacy in MailChimp, please visit:

You can revoke your consent to the storage of the data as well as its use for sending newsletters at any time. You can always remove your email at or by clicking on the link provided in each newsletter.

Deletion of personal data

If your data is no longer required for the aforementioned purposes, it will be deleted by us. If data is to be kept for legal reasons, it is made inaccessible. The data is then no longer available for use. Your personal data and bank data can be updated at any time in your figo account, replacing the previous data. With the “Delete user” function, you can delete your free figo account at any time. The deletion affects all figo services. All personal data are made inaccessible over any legal retention periods, and then deleted. The storage of your data in the framework of third partie services remains unaffected.

Rights of information, authorization, blocking and deletion

You have the right to receive information about your personal data stored at figo. You also have the right to correct incorrect data and to block or delete your personal data, to the extent that there is no statutory retention requirement. Please contact specifying your email address used during the registration process, or write by post to:

figo GmbH
Gaußstraße 190c
22765 Hamburg, Germany.


Last update: August 2017