EOS advocates strong, binding industry standards and responsibility guidelines. We apply strict criteria when we price portfolio purchases and make other investments.
Digital Responsibility & Cyber Security: How EOS protects sensitive data
(Digital Responsibility & Cyber Security)
Data are the business foundation of the EOS Group. This is why we employ around 90 people across the Group to constantly improve data protection and information security. With the help of monitoring tools, we were able to identify and stop around 600 attempted attacks in 2022/23 alone. As part of the new “Iron EOS” program, we are currently establishing a protection system that will enable us to respond not just quickly but also in a coordinated way across the entire Group.
Business Ethics & Safeguard Compliance: Helping to shape our sector
(Business Ethics & Safeguard Compliance)
The EOS Group is involved in 23 European debt collection associations and various initiatives to help create strict and binding standards and responsible guidelines in the debt collection sector.
To eliminate irregularities, the EOS Group also operates a platform that offers whistleblowers a protected space and is integrated in the mechanism of the Otto Group. There, employees, suppliers, service providers and customers can report compliance violations at EOS and in the Otto Group. None of the five cases reported in 2022/23 were substantial or necessitated a countermeasure.
Association work for high standards
Through its membership of numerous national and international associations, EOS is actively working to help design and implement ethical standards in the industry.
Sound values in collaboration
(Responsible Acquisition of Portfolios & Partnerships)
The business in non-performing loans calls for a high degree of responsibility. As part of a family company, the Otto Group, we are also mindful of pricing that meets the interests and ethical standards of all parties in the long term. For example: In partnership with the World Bank subsidiary International Finance Corporation (IFC), EOS will invest more than €100 million in non-performing loans and real estate in Eastern Europe within three years, in compliance with ESG (Environmental, Social and Governance) standards.
When choosing partners and customers, EOS also applies strict criteria. This includes not just the regular checks of partners and companies in respect of how they handle issues like human rights, money laundering and corruption, but also an industry blacklist.
Our Code of Conduct for service providers, which contains the UN SDGs and clauses from the Supply Chain Duty of Care Act, ensures fair handling by and with suppliers.
GDPR training
Protecting the data of staff and clients is essential. EOS France therefore makes it a point to raise awareness and offer training for its staff on the principles of personal data protection (security, privacy, minimisation, fair and lawful collection, etc.) and IT security through different channels:
In-person training for operational staff members as part of their onboarding.
An e-learning module within three months of arrival for new staff members.
Awareness campaigns are sent out by email and broadcast on on-site digital screens. Thus, regular refreshers on the GDPR rules to follow and rules pertaining to data security are given.
IT security
As cyberattacks are getting increasingly common and sophisticated, the IT department of EOS France regularly raises awareness among staff via internal training:
An e-learning module is included as part of the compulsory training programme. Refresher modules are sent out annually and updated based on the current affairs and new threats.
Awareness campaigns are sent out by email and broadcast on on-site digital screens.
Phishing test campaigns are sent out (at least twice a year), the results of which are shared with all staff.
AML/CFT awareness
Ensuring that client payments are trustworthy is essential for EOS France. For this reason, an e-learning module on anti-money laundering and combating the financing of terrorism has been developed in-house. This module, which includes a quiz, raises awareness for new employees upon their arrival, encouraging them in particular to be extremely vigilant when processing payments from debtors (considering the issuer, amount, source of the funds, etc.).
Notre Code of Conduct : des règles claires pour une interaction équitable
Avec notre Code of Conduct, nous nous imposons des obligations contraignantes pour nos activités courantes. Les principes de conduite qui y sont définis offrent un guide fiable à nos employés, clients et partenaires, et sont accessibles à tous sur les sites web des sociétés EOS. Nous affinons constamment le Code of Conduct. Sa spécificité est de refléter fidèlement la réalité du groupe cible pour lequel il a été créé. En complément de ce document, nous proposons à nos employés des modules d’apprentissage sur ce thème.
We use cookies on our website to enable you to have the best possible website visit. These include cookies that are necessary for the operation of the website, those that are only used for anonymous statistical purposes, cookies that are used for comfort settings and cookies that are used to provide you with personalized, interest-based content. You can decide yourself whether you want to allow the use of statistics, comfort, and marketing cookies. In addition, you can change/withdraw your consent at any time by clicking on the Change Cookies settings on the bottom of the website. Further information can be found in our Privacy Policy and Imprint.
Necessary
We use necessary cookies. These cookies are necessary for the operation and the basic functions of the website. In particular, they enable the security-relevant functioning of our website.
You can read about which cookies we use here.
Tool name
Cookieconsent_status
Tool provider
EOS Holding GmbH
Address of tool provider
Steindamm 71, 20099 Hamburg, Germany
Tool description
Essential cookie to save consent banner inputs.
Data processed
None
Purpose of data processing
To save consent
Retention period
60 days
Tool name
Java Session Cookie
Tool provider
EOS Holding GmbH
Address of tool provider
Steindamm 71, 20099 Hamburg
Tool description
Randomly generated session number essential for the proper functioning of the application software.
Data processed
None
Purpose of data processing
Proper functioning of website
Retention period
Session cookie – is deleted after you have closed your browser.
Comfort
If you allow comfort cookies, we can make use of our site easier for you. If you visit our website again to use our services, it will automatically be recognized that you already visited us and the entries and settings you made will automatically be recognized so that you do not have to enter them again.
You can read about which cookies we use here.
Tool name
Visitor
Tool provider
EOS Holding GmbH
Address of tool provider
Steindamm 71, 20099 Hamburg, Germany
Tool description
We use this cookie to make it easier for you to use this website.
Data processed
None
Purpose of data processing
Optimization, improvement of service
Retention period
Session cookie – is deleted after you have closed your browser.
Tool name
NEW_Visitor
Tool provider
EOS Holding GmbH
Address of tool provider
Steindamm 71, 20099 Hamburg, Germany
Tool description
We use this cookie to make it easier for you to use this website.
Data processed
None
Purpose of data processing
Optimization, improvement of service
Retention period
1 day
Statistics
We use statistical cookies to improve our offering and ensure a needs-based design and the continuous optimization of our website.
For this, we collect anonymized data for statistics and analytics, for example, to determine site traffic and user behavior and to adapt and improve our content and the website experience.
You can read about which cookies we use here.
Tool name
nmstat
Tool provider
Siteimprove GmbH
Address of tool provider
Rosenheimer Str. 143 C, 81671 Munich, Germany
Tool description
This cookie contains an ID character string for the current session. It contains non-personally identifiable information about which sub-pages the visitor enters – this information is used to optimize the user experience.
Data processed
None
Purpose of data processing
Analysis, statistics
Retention period
399 days
Tool name
AWSELB
Tool provider
Siteimprove GmbH
Address of tool provider
Rosenheimer Str. 143 C, 81671 Munich, Germany
Tool description
This cookie ensures that all statistics from the same session are captured contiguously.
Data processed
None
Purpose of data processing
Analysis, statistics
Retention period
Session end
Tool name
siteimproveses
Tool provider
Siteimprove GmbH
Address of tool provider
Rosenheimer Str. 143 C, 81671 Munich, Germany
Tool description
This cookie is used to track the sequence of pages viewed by the visitor during the website visit.
Data processed
None
Purpose of data processing
Analysis, website statistics
Retention period
Session cookie – is deleted after you have closed your browser.
Marketing
We use marketing cookies so that we can provide you with relevant and interest-based content when you visit our website.
You can read about which cookies we use here.
Tool name
Facebook Pixel
Tool provider
Meta Platforms Ireland Limited
Address of tool provider
4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland.
Tool description
Used by Meta to serve ads, measure and improve ad relevance, and offer advertising products on Meta.
Data processed
Ads Viewed | Pages Visited | Browser Information | Facebook Cookie Information | Facebook User ID | Geographic Location | Device Information | HTTP Header | Interactions with Ads, Services and Products | IP Address | Marketing Information | Usage Data & Behavior | Pixel ID | Referrer URL | User Agent
Purpose of data processing
Analysis | Conversion Tracking | Marketing | Social Media | Advertising
Retention period
__fbp (duration: 3 months)
Tool name
LinkedIn
Tool provider
LinkedIn Ireland Unlimited Company
Address of tool provider
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
Tool description
This cookie is used to obtain anonymized reports about the website target audience and the possibility of targeted advertising, e.g., in the context of retargeting.
Data processed
Device information, browser information, IP address, referrer URL and time stamp.
Purpose of data processing
Marketing, analysis, retargeting
Retention period
Cookie Name (duration: 90 days)
Tool name
Google Analytics
Tool provider
Google Ireland Limited
Address of tool provider
Google Building Gordon House, 4 Barrow St, Grand Canal Dock, Dublin 4, D04 V4X7, Irland
Tool description
Used to track website activity such as session duration, pages per session and the engagement rate of individuals using the site, along with the information on the source of the traffic
Data processed
Ads Viewed | Pages Visited | Browser Information | Facebook Cookie Information | Facebook User ID | Geographic Location | Device Information | HTTP Header | Interactions with Ads, Services and Products | IP Address | Marketing Information | Usage Data & Behavior | Pixel ID | Referrer URL | User Agent
Purpose of data processing
Ad personalization | Ad user data | Ad storage | Analytics storage