Data protection notice

DKE-Data takes the protection of your personal information very seriously, and strongly complies with all applicable laws and regulations related to data protection, in particular the General Data Protection Regulation (GDPR) the German Federal Data Protection Act (BDSG) and the German Telemedia Law (TMG).

In the following, we will provide you with information about how we collect your data when you use our website or contact us via email. Personal data are any data that can be attributed to you personally (e.g., name, address, email address).

 

Data Controller and Data Protection Officer

The Data Controller as defined by the GDPR is

DKE-Data GmbH & Co. KG,

Albert-Einstein-Str. 1,

49076 Osnabrück

info@dke-data.com

Our Data Protection Officer can be contacted via  privacy@dke-data.com or our postal address with "The Data Protection Officer" in the address line.

 

Data Security

We implement technical and organisational measures to protect any of the personal data that we process against accidental or intentional manipulation, loss, or destruction, as well as against access by unauthorised persons.

In order to protect your data, even during transmission as part of your use of the website, we use encryption methods that correspond with the current state-of-the-art technology.

 

Collection and processing of personal data for informational purposes

When using our website solely for informational purposes, i.e. if you do not initiate contact or provide any other information beyond informational use of the website, we only collect – in addition to data from cookies (more information on this in the next section) – usage data that are automatically transmitted by your browser in order to allow you to visit the website.

In doing so, we collect and process the following data, which is a technical requirement for us to be able to display the website and ensure its stability and security:

  • IP address;
  • Date and time of the request;
  • Time zone difference compared with Greenwich Mean Time (GMT);
  • Content accessed (specific webpages);
  • Access status/HTTP status code;
  • Amount of data transferred;
  • Website where the request originated;
  • Browser;
  • Operating system and its UI;
  • Language and version of browser software.

The purposes outlined above also include our legitimate interest in processing data. The legal basis for this is the first sentence of Article 6(1)(f) GDPR. Any data collected in this context are deleted once the storage of such data is no longer required, or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

 

Use of cookies

In addition to the data outlined above, cookies will be stored on your computer, smartphone, or any other device used when visiting our website. You can find an overview of the cookies used on our websites in our Cookie Banner. This will be displayed when you visit our websites for the first time or after you have deleted the cookies stored by our websites.

 

Integration of Google Maps

We use Google Maps on our website. This allows us to display interactive maps directly within our website, giving you convenient access to the map function.

When you visit our website, Google (Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA) is informed that you have accessed the relevant subpage of our website. Additionally, the data outlined in the "Collection and processing of personal data for informational purposes" section of this document will also be transferred to Google. This occurs regardless of whether or not you are logged in using a Google user account. If you are logged in to a Google account, your data will be attributed directly to the account. If you do not wish such data to be attributed to your Google profile, you must log out of the Google account before accessing the relevant subpage. Google stores your data as part of a user profile and uses it for the purposes of advertising, market research, and/or needs-oriented design of their website. This evaluation is carried out (even for users not logged in) in particular for the provision of targeted advertising and to inform other social media users of your activities on our website. You have the right to object to such a user profile being created, and this objection must be communicated to Google.

Google may also transfer your data to the USA, where they are stored and processed. In order to guarantee a sufficient level of protection for personal data when being processed in the USA (see: "Transfer of data to third countries"), Google is certified under the EU-US Privacy Shield initiative (more information can be found here).

More information on the purposes and extent of data collection and how Google processes your data can be found in Google's Privacy Policy, which can be seen here. There, you can also find more information on your rights and configuration options to protect your privacy.

 

Integration of YouTube videos

On our website, we have integrated YouTube videos, which are stored on YouTube servers operated by the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA (henceforth: "YouTube") and can be played directly from our website.

These are all integrated in extended data protection mode, i.e. without cookies being stored to analyse user behaviour. This means that no data about your user activity is collected or transmitted to YouTube or Google. If you play a video, some data are transferred, as outlined below. We have no influence over this data transfer.

When playing a video, Google and YouTube are informed that you have accessed the relevant subpage of our website. Additionally, the data outlined in the section "Collection and processing of personal data for informational purposes" of this document will also be transferred. This occurs regardless of whether or not you are logged in using a Google or YouTube user account. If you are logged in to a Google (Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA) or YouTube account, these data are attributed to the account. If you do not wish such data to be attributed to your Google or YouTube profile, you must log out of the account before playing the videos. Google and YouTube store your data as part of a user profile and use these data for the purposes of advertising, market research, and/or needs-oriented design of their website. This evaluation is carried out (even for users not logged in) in particular for the provision of targeted advertising and to inform other YouTube users of your activities on our website. You have the right to object to such a user profile being created, and this objection must be communicated to Google or YouTube.

Google and YouTube may also transfer your data to the USA, where they are stored and processed. In order to guarantee a sufficient level of protection for personal data when being processed in the USA (see: "Transfer of data to third countries"), Google is certified under the EU-US Privacy Shield initiative (more information can be found here).

More information on the purposes and extent of data collection and how Google processes your data can be found in Google's Privacy Policy, which can be found here. There, you can also find more information on your rights and configuration options to protect your privacy.

 

Use of Matomo

With your consent, we use Matomo, an open source software for statistical analysis of visitor numbers. Matomo uses cookies, which are stored on your terminal device and which enable us to analyse the use of the website. For this purpose, the usage information generated by the cookie (including your shortened IP address) is transmitted to our server and stored for usage analysis and optimisation purposes. Your IP address is immediately anonymised during this process, so that you as a user remain anonymous to us. The information generated by the cookie about your use of this website is not passed on to third parties.

 

In detail, the following data is stored:

- A unique ID that is assigned to your device via cookie,

- Your IP address, shortened by at least one digit,

- approximate geographic location derived from the anonymised IP address,

- the browser you are using (user agent), from which your operating system can also be derived if necessary

- the main language configured in the browser,

- date and time of each access, as well as the URL and the title of the page accessed,

- files clicked on and downloaded,

- the duration of the page load,

- if applicable, the screen resolution used by you [1],

- if applicable, the plug-ins used by your browser (e.g. Adobe Flash) [1].

- If applicable, the referrer [2], i.e. the website from which you reached our websites [2],

- if applicable, outgoing links on which you click on our website. [1,2]

 

[1] If Javascript is activated in your browser.

[2] Insofar as the data arises in the specific case.

 

The legal basis for the use of Matomo is Art. 6 para. 1 sentence 1 lit. a DSGVO.

 

Your personal data processed within the framework of Matomo in connection with the use of our website will be anonymised immediately. Further information on Matomo can be found on the Matomo website, which can be accessed here.

 

Use of Google reCAPTCHA

We use Google reCAPTCHA, a service provided by Google (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland), which processes information about your user behaviour on our websites in order to check whether the input is made by a human being or abusively by automatic computer-controlled systems. This serves to defend against spam, hacking attacks and thus directly to ensure the integrity and functionality of our website. This is also our legitimate interest in accordance with Art. 6 para. 1 p. 1 lit. f DSGVO for the use of Google reCAPTCHA.

 

The IP address transmitted in the process will not be merged with other Google data unless you are logged into your Google account at the time of using Google reCAPTCHA. If you wish to prevent this transmission and storage of data about you and your behaviour on our websites by Google, you must log out of Google before visiting our websites or using Google reCAPTCHA.

 

You can prevent the processing of this data by deactivating the execution of JavaScript in your browser or by installing a JavaScript blocker. However, we would like to point out that you may then not be able to use all the functions of our websites.

 

For further information on the purpose and scope of data collection and processing by Google, please refer to Google's privacy policy, which is available here. There you will also find further information on your rights and setting options for protecting your privacy.

 

Use of Google Ads Remarketing

We use Google Ads Remarketing, a service provided by Google (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland), which processes information about your user behaviour on our websites to enable us to continue to serve our advertisements to you after you have left our websites while browsing third-party websites, including Google itself. These third parties use cookies and/or device recognition to serve these ads based on previous visits to our websites. The purpose of using Google Ads Remarketing is thus to increase our brand awareness or to remind you of our products and services even when you are no longer on our website. 

 

You can disable Google's use of cookies or device identifiers by accessing Google's display settings available here. You can also control the use of device identifiers through your device's settings (see here for more information).

 

Use of Facebook Custom Audiences / Conversion ("Facebook Pixel")

We use Facebook Pixel, a cookie from Facebook (Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, a subsidiary of Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA).

 

We use the Facebook pixel for remarketing purposes to display interest-based advertisements ("Facebook Ads") to internet users when they visit the social network "Facebook" or other websites that also use this tool. We do this in the interest of showing you ads that are of interest to you, in order to make our websites and offers more interesting for you.

 

We also use the Facebook pixel to ensure that our Facebook ads match the potential interest of users and are not disruptive. The Facebook pixel allows us to track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users have been redirected to our website after clicking on a Facebook ad.

 

Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server as soon as you have agreed to the use of cookies requiring consent. Through the integration of the Facebook pixel, Facebook receives the information that you have called up the corresponding page of our website or clicked on an advertisement from us. If you are registered with a Facebook service, Facebook can assign the visit to your account.

 

The processing of this data by Facebook takes place within the framework of Facebook's privacy policy, which can be accessed here. Specific information and details about the Facebook Pixel and how it works can also be found in Facebook's help section, which can be accessed here.

 

You can deactivate the use of the Facebook Pixel by following the instructions available here.

 

Use of LinkedIn Insight-Tag

We use LinkedIn Insight-Tag, a cookie from LinkedIn (LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA).

 

We use LinkedIn Insight-Tag for remarketing purposes in order to display interest-based advertisements to Internet users when they visit the "LinkedIn" social network or other websites that also use this tool. We do this in the interest of showing you ads that are of interest to you, in order to make our websites or offers more interesting to you.

 

We also use the LinkedIn Insight tag to ensure that our LinkedIn advertisements match the potential interest of users and are not disruptive. The LinkedIn Insight tag allows us to track the effectiveness of LinkedIn ads for statistical and market research purposes by seeing whether users have been redirected to our website after clicking on a LinkedIn ad.

 

Due to the marketing tools used, your browser automatically establishes a direct connection with the LinkedIn server as soon as you have agreed to the use of cookies requiring consent. By integrating the LinkedIn Insight tag, LinkedIn receives the information that you have called up the corresponding page of our website or clicked on an advertisement from us. If you are registered with a LinkedIn service, LinkedIn can assign the visit to your account.

 

The processing of this data by LinkedIn takes place within the framework of LinkedIn's privacy policy, which can be accessed here.

 

You can deactivate the use of the LinkedIn Insight tag by following the instructions available here.

 

Links to our social networking profiles

Links to our profiles on social networks can be found on our website and in our email signature. The buttons we have implemented here are purely for linking purposes, and contain no plug-ins that would collect personal data when clicked on. We process personal data in the context of our social media presences in accordance with the stipulations of this Privacy Policy.

Please note that the relevant provider of the social network in question may also collect and process personal data when you visit our profile on such networks. More information on this can be found in the relevant provider's data protection regulations. For our Facebook profile, this information can be found here, for our Google+ profile, it can be found here, and for our Twitter profile, it can be found here.

 

Additional information about our Facebook presence

We have a profile on Facebook. The provider is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, a subsidiary of Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA; Facebook and we are jointly responsible for the collection of personal data from visitors to our Facebook profile, but not for the further processing thereof. The information required pursuant to Article 13 (1) (a) and (b) DSGVO, the privacy policy and further information on how Facebook processes personal data, including the legal basis on which Facebook relies and the options for exercising the rights of data subjects vis-à-vis Facebook, can be found in Facebook's so-called "Data Policy" at www.facebook.com/about/privacy. By visiting our Facebook profile, you regularly submit information, the content of which can be found in detail in the section "Things you and others do and provide" in Facebook's data policy. This includes, but is not limited to, information about the type of content users view, actions users take, and information about the devices they use (e.g., IP addresses, operating system, browser type, language settings, cookie data; see "Device Information" in Facebook's Data Policy). Facebook also processes information in order to provide analytics services, so-called "Page Insights", to Page operators, so that they receive, for example, statistical information such as gender or age distribution regarding the viewing of the Facebook Page. You can find more information on this and the so-called "Page Insights Supplement regarding the responsible party" that applies between Facebook and us here: www.facebook.com/legal/terms/page_controller_addendum. Your rights, in particular to information, correction and deletion, objection and complaint to the competent supervisory authority remain unaffected; Facebook will answer your enquiries in this regard in accordance with the Page Insights Supplement.

When Facebook provides us with aggregated and anonymised metrics, analytics and reports, it does not do so under shared responsibility. Rather, Facebook acts as a processor in this instance.

The data collected about you will be processed by Facebook and may be transferred outside the European Union, which could make it more difficult to enforce your rights. Where Facebook processes personal data as a (joint) controller, the standard contractual clauses set out by the EU Commission (https://eur-lex.europa.eu/legal-content/DE/TXT/?uri=CELEX%3A32004D0915) apply. To the extent that Facebook processes personal data as a processor, the "Data Processing Terms and Conditions" available at www.facebook.com/legal/terms/dataprocessing/update and the "Facebook EU Data Transfer Addendum" available at www.facebook.com/legal/EU_data_transfer_addendum apply, which also incorporates the standard contractual clauses for processors (without the illustrative optional clauses). The latter are available here: eur-lex.europa.eu/legal-content/DE/ALL/.

You have the possibility to object to the processing of your data by Facebook under the following link: www.facebook.com/settings.

 

Collection and processing of personal data when initiating contact – consent

If you share certain personal data (e.g. your name, telephone number, or email address) when using our contact form or when contacting us via email, we collect and process these data solely for the purposes of processing your request. When using our contact form, you may use certain non-mandatory fields to provide us with certain additional information so that we may process your request in a more targeted way. These fields are expressly marked as such. The legal basis for this is the first sentence of Article 6(1)(a) and (b)) and (1)(f) GDPR.

Once your request has been resolved, all of the data relating to the request will automatically be deleted.

 

If you wish to use the agrirouter, you will need an agrirouter account.

When registering, we ask you to provide personal data (e.g. name, address or e-mail address). Some data is required for the use and administration of the agrirouter or the agrirouter account. We process this data, which is marked as mandatory, exclusively for the purpose of providing our contractual services within the framework of the agrirouter end user provisions. The legal basis in this case is Art. 6 para. 1 p. 1 lit. b DSGVO. If you provide us with additional personal data in the course of registration or use, we process this on the basis of your consent within the meaning of Art. 6 para. 1 p. 1 lit. a DSGVO. You can revoke your consent at any time (see "Your rights" below).

 

 We use the so-called double-opt-in procedure for registration. This means that after your registration, we will send you an e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to register your agrirouter account. If you do not confirm your registration within one week, your information will be blocked and automatically deleted after one month. The legal basis for the deletion in this case is Art. 6 para. 1 lit. c or lit. f DSGVO.

When using the agrirouter, data transmission takes place between the respective endpoint and the agrirouter and is governed by the settings in the control centre. DKE has no interest in the content of the data to be transported. Nevertheless, in order to guarantee the functions of the agrirouter, data must be temporarily stored within the framework of the end user provisions or also temporarily retained.

 

Billing (of the use of the agrirouter free of charge for end users) with hardware, software or app providers or other service providers in connection with the use of the agrirouter takes place without DKE accessing or otherwise becoming aware of the content of the transported data. No personal data is exchanged during the billing process.

 

However, hardware, software or app providers or other third parties may process personal data of the end user in connection with the use of the agrirouter. DKE has no influence on this and is not responsible for it.

 

Event registration – consent

You may provide consent to register for events held by our company. Each event is described in more detail in the relevant registration form on the website for each event.

For our event registration process, we use a so-called double opt-in process. This means that once you have registered, we send an email to the email address provided where we ask that you confirm that you wish to take part in the event in question. If you do not confirm your registration within a week, your data will be blocked and will be automatically deleted after a month. The purpose of this process is to provide evidence of your wish to register for the event and to prevent any potential misuse of your personal data.

The only mandatory field when registering for an event is the email address field. Provision of any additional non-mandatory information is voluntary and such information will be used to allow us to address you personally. Once you have confirmed your registration, we store your email address in order to send you any additional information required in relation to the event and for follow-up questions. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

The data you provide will be stored in order for you to be considered for the event in question and for any communication required. If you revoke your consent for this, any data collected in this context will be deleted within a week or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

When registering for our events, you usually also have the option of registering for our newsletter. In this regard, the same applies as explained under "Registration for our newsletter". If you activate the corresponding field, the double-opt-in procedure applies both to the registration for the event and to the confirmation of the newsletter registration. You can revoke your consent independently of each other.

 

Newsletter subscription – consent, performance metrics, CleverReach

You may provide consent to subscribe to our company newsletter. Our newsletter contains information about our company, products and services, as well as interesting events and news from the agricultural and digitalisation sectors.

For our newsletter subscription process, we use a so-called double opt-in process. This means that once you have subscribed, we send an email to the email address provided where we ask that you confirm that you wish to receive our newsletter. If you do not confirm your subscription within a week, your data will be blocked and will be automatically deleted after a month. When confirming your subscription, our mailing service provider will record data relating to the confirmation and the time that you subscribed and confirmed your subscription, as well as any changes made. The purpose of this process is to provide evidence of your wish to subscribe to the newsletter and to prevent any potential misuse of your personal data.

The only mandatory field when subscribing to the newsletter is the email address field. Provision of any additional non-mandatory information is voluntary and such information will be used to allow us to address you personally. Once you have confirmed your subscription, we store your data for the purposes of distributing the newsletter and the related performance metrics. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

The data you provide will be stored in order to allow us to communicate with you. If you unsubscribe from the newsletter, i.e. you revoke your consent to this, any data collected in this context will be deleted within a week or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

  • CleverReach – for the newsletter distribution, we use the "CleverReach" mailing service offered by CleverReach GmbH & Co. KG, Mühlenstraße 43, 26180 Rastede. This service is used to organise and analyse the newsletter distribution. The data you enter in relation to the newsletter (e.g. email address) are stored on CleverReach servers in Germany or Ireland. The service provider will not use your personal data for their own purposes.

The use of CleverReach allows us to analyse the behaviour of newsletter recipients. This may include analysing how many recipients have opened the newsletter message and how often each link in the newsletter is clicked. With the help of so-called "conversion tracking", we can also determine whether a predefined action is executed once a link in the newsletter has been clicked. More information can be found in the service provider's Privacy Policy, which can be found here. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

  • Performance metrics – our newsletters contain a tiny image file (a so-called "web beacon"), which automatically loads from our mailing service provider's server when the newsletter is opened. In the process, some technical data are collected (e.g. the browser and system used, your IP address and the time that the file is retrieved), which are used to optimise the newsletter distribution. Information on which links in the newsletters have been clicked is also collected for this purpose. The data collected can be attributed to individual recipients and allow us to identify the preferences and habits of the recipients of our newsletter, and to adjust the content of the newsletter to reflect this, or to customise the newsletter to suit individual recipients' interests. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

 

Data recipients and transfer to third countries

Your data is not regularly passed on to third parties. However, this does not apply to service providers that we have commissioned to process data within the scope of this data protection declaration, in particular to provide the technical infrastructure of the websites and our system, to maintain the website content, to send newsletters, to provide support and/or marketing services and, with regard to any contact that may be made, to provide our e-mail system.

Similar to the data transfer for the use of YouTube, as described above, your data may also be transferred to the USA (a so-called "third country") in relation to any potential email communication. This third country may have a lower level of data security in place than is the case within the EU. In order to guarantee a sufficient level of data protection, we have entered into a contract with our email service provider based on standard data protection clauses. Additionally, all other applicable service providers are currently certified under the EU-US Privacy Shield initiative (see above). Upon request, which can be submitted using the contact information provided above, you can be sent a copy of the contract containing the guarantees relevant to the processing of your data, as described in this section.

 

Your rights

According to the GDPR, you have various rights, largely based on Articles 15 to 18 and 21 of the GDPR:

  • Right to access – in line with Article 15 GDPR, you have the right to access the personal data we process. In your access request, you must precisely explain your requirements in order to facilitate the compilation of the data required. Please note that in certain circumstances, your right to access may be limited in line with applicable legal provisions (especially § 34 BDSG).
  • Right to rectification – according to Article 16 GDPR, you can demand for any personal data to be rectified if such data are not (or no longer) accurate. If your data are incomplete, you have the right to have your personal data completed, in line with Article 16 GDPR.
  • Right to erasure – under the conditions of Article 17 GDPR, you have the right to obtain the erasure of your personal data. However, your right to erasure is dependent on other factors, including whether the data in question are still required by us in order to fulfil our legal obligations.
  • Right to restriction of processing – as part of the provisions of Article 18 GDPR, you have the right to restrict how data relating to yourself are processed.
  • Right to object – according to Article 21 GDPR, you have the right to object to the processing of your personal data at any time for reasons relating to your specific situation. However, we are not always able to accommodate this, for instance if legal provisions are in place that obligate us to process your data.
  • Right to data portability – according to Article 20 GDPR, you have the right to request the personal data you have provided to us in a structured, commonly used and machine-readable format, and you have the right to pass these data on to another data controller without hindrance from us, as long as the processing is based on your consent or on a contract between us and yourself and the processing is done using an automated process. You also have the right to request that the data is transferred from us directly to another data controller, as long as this is technically feasible.
  • Revoking consent – if you have provided consent for your data to be used, you can revoke this consent at any time with future effect.

If you wish to make use of the rights described here, or if you have any questions about data security, please contact our Data Protection Officer using the contact information provided above. If you have provided consent to receive communications from us, you can revoke this consent very easily by clicking on the link provided in the relevant message.

In any case, you have the right to file a complaint with the responsible supervisory body. A list of supervisory bodies (for the private sector) with addresses can be found here.

 

Obligation to provide personal data

You are under no legal or contractual obligation to provide us with your personal data. However, it is possible that certain functions of our websites depend on the provision of personal data. If you do not provide personal data in these cases, this may result in functions not being available or only being available to a limited extent.

 

Changes to this Privacy Policy

We reserve the right to alter this Privacy Policy in future to comply with any potential changes to the legal requirements or in relation to any changes made to our website.

 

Status: [18.08.2021]