Data protection notice

Privacy Policy

DKE-Data takes the protection of your personal information very seriously, and strongly complies with all applicable laws and regulations related to data protection, in particular the General Data Protection Regulation (GDPR) the German Federal Data Protection Act (BDSG) and the German Telemedia Law (TMG).

In the following, we will provide you with information about how we collect your data when you use our website or contact us via email. Personal data are any data that can be attributed to you personally (e.g., name, address, email address).

Data Controller and Data Protection Officer

The Data Controller as defined by the GDPR is DKE-Data GmbH & Co. KG, Albert-Einstein-Str. 42, 49076 Osnabrück (info@dke-data.com).

Our Data Protection Officer can be contacted via  privacy@dke-data.com or our postal address with "The Data Protection Officer" in the address line.

Data Security

We implement technical and organisational measures to protect any of the personal data that we process against accidental or intentional manipulation, loss, or destruction, as well as against access by unauthorised persons.

In order to protect your data, even during transmission as part of your use of the website, we use encryption methods that correspond with the current state-of-the-art technology.

Collection and processing of personal data for informational purposes

When using our website solely for informational purposes, i.e. if you do not initiate contact or provide any other information beyond informational use of the website, we only collect – in addition to data from cookies (more information on this in the next section) – usage data that are automatically transmitted by your browser in order to allow you to visit the website.

In doing so, we collect and process the following data, which is a technical requirement for us to be able to display the website and ensure its stability and security:

•     IP address;

•     Date and time of the request;

•     Time zone difference compared with Greenwich Mean Time (GMT);

•     Content accessed (specific webpages);

•     Access status/HTTP status code;

•     Amount of data transferred;

•     Website where the request originated;

•     Browser;

•     Operating system and its UI;

•     Language and version of browser software.

The purposes outlined above also include our legitimate interest in processing data. The legal basis for this is the first sentence of Article 6(1)(f) GDPR. Any data collected in this context are deleted once the storage of such data is no longer required, or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

Use of cookies

In addition to the data outlined above, cookies will be stored on your computer, smartphone, or any other device used when visiting our website. Cookies are small text files stored in your device memory by the browser you use, which are used to transmit certain data to the party that placed the cookie (in this case, us).

The cookies we use cause no damage to your device and contain no viruses. They serve to make our website more effective, secure and user-friendly. Most of the cookies we use are so-called "session cookies". They are automatically deleted when you leave the website. Other cookies are stored on your end device until you delete them. These cookies allow us to recognise your browser   the next time you visit our website.

We use cookies that are required in order to execute electronic communications or to provide certain desired functions (e.g. to identify whether you have a customer login and wish to stay logged in on any future visits to the website). The legal basis for this is the first sentence of Article 6(1)(f) GDPR. We have a legitimate interest in storing cookies for the purpose of providing our website in an optimised and technically sound manner. The cookie data are separated from any other existing data relating to yourself, and are not connected with such data.

You can adjust your browser settings to suit your wishes and, for instance, opt out of cookies being stored on your device. However, please note that in such cases, you may not have access to the full functionality of our website.

Integration of Google Maps

We use Google Maps on our website. This allows us to display interactive maps directly within our website, giving you convenient access to the map function.

When you visit our website, Google (Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA) is informed that you have accessed the relevant subpage of our website. Additionally, the data outlined in the "Collection and processing of personal data for informational purposes" section of this document will also be transferred to Google. This occurs regardless of whether or not you are logged in using a Google user account. If you are logged in to a Google account, your data will be attributed directly to the account. If you do not wish such data to be attributed to your Google profile, you must log out of the Google account before accessing the relevant subpage. Google stores your data as part of a user profile and uses it for the purposes of advertising, market research, and/or needs-oriented design of their website. This evaluation is carried out (even for users not logged in) in particular for the provision of targeted advertising and to inform other social media users of your activities on our website. You have the right to object to such a user profile being created, and this objection must be communicated to Google.

Google may also transfer your data to the USA, where they are stored and processed. In order to guarantee a sufficient level of protection for personal data when being processed in the USA (see: "Transfer of data to third countries"), Google is certified under the EU-US Privacy Shield initiative (more information can be found here).

More information on the purposes and extent of data collection and how Google processes your data can be found in Google's Privacy Policy, which can be seen here. There, you can also find more information on your rights and configuration options to protect your privacy.

Integration of YouTube videos

On our website, we have integrated YouTube videos, which are stored on YouTube servers operated by the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA (henceforth: "YouTube") and can be played directly from our website. They are all integrated with advanced data protection features. As such, YouTube receives no information about you as a user if you do not play the videos. If you play a video, some data are transferred, as outlined below. We have no influence over this data transfer.

When playing a video, Google and YouTube are informed that you have accessed the relevant subpage of our website. Additionally, the data outlined in the section "Collection and processing of personal data for informational purposes" of this document will also be transferred. This occurs regardless of whether or not you are logged in using a Google or YouTube user account. If you are logged in to a Google (Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA) or YouTube account, these data are attributed to the account. If you do not wish such data to be attributed to your Google or YouTube profile, you must log out of the account before playing the videos. Google and YouTube store your data as part of a user profile and use these data for the purposes of advertising, market research, and/or needs-oriented design of their website. This evaluation is carried out (even for users not logged in) in particular for the provision of targeted advertising and to inform other YouTube users of your activities on our website. You have the right to object to such a user profile being created, and this objection must be communicated to Google or YouTube.

Google and YouTube may also transfer your data to the USA, where they are stored and processed. In order to guarantee a sufficient level of protection for personal data when being processed in the USA (see: "Transfer of data to third countries"), Google is certified under the EU-US Privacy Shield initiative (more information can be found here).

More information on the purposes and extent of data collection and how Google processes your data can be found in Google's Privacy Policy, which can be found here. There, you can also find more information on your rights and configuration options to protect your privacy.

Links to our social networking profiles

Links to our profiles on social networks can be found on our website and in our email signature. The buttons we have implemented here are purely for linking purposes, and contain no plug-ins that would collect personal data when clicked on. We process personal data in the context of our social media presences in accordance with the stipulations of this Privacy Policy.

Please note that the relevant provider of the social network in question may also collect and process personal data when you visit our profile on such networks. More information on this can be found in the relevant provider's data protection regulations. For our Facebook profile, this information can be found here, for our Google+ profile, it can be found here, and for our Twitter profile, it can be found here.

Collection and processing of personal data when initiating contact – consent

If you share certain personal data (e.g. your name, telephone number, or email address) when using our contact form or when contacting us via email, we collect and process these data solely for the purposes of processing your request. When using our contact form, you may use certain non-mandatory fields to provide us with certain additional information so that we may process your request in a more targeted way. These fields are expressly marked as such. The legal basis for this is the first sentence of Article 6(1)(a) and (b)) and (1)(f) GDPR.

Once your request has been resolved, all of the data relating to the request will automatically be deleted.

Event registration – consent

You may provide consent to register for events held by our company. Each event is described in more detail in the relevant registration form on the website for each event.

For our event registration process, we use a so-called double opt-in process. This means that once you have registered, we send an email to the email address provided where we ask that you confirm that you wish to take part in the event in question. If you do not confirm your registration within a week, your data will be blocked and will be automatically deleted after a month. The purpose of this process is to provide evidence of your wish to register for the event and to prevent any potential misuse of your personal data.

The only mandatory field when registering for an event is the email address field. Provision of any additional non-mandatory information is voluntary and such information will be used to allow us to address you personally. Once you have confirmed your registration, we store your email address in order to send you any additional information required in relation to the event and for follow-up questions. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

The data you provide will be stored in order for you to be considered for the event in question and for any communication required. If you revoke your consent for this, any data collected in this context will be deleted within a week or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

Newsletter subscription – consent, performance metrics, CleverReach

You may provide consent to subscribe to our company newsletter. Our newsletter contains information about our company, products and services, as well as interesting events and news from the agricultural and digitalisation sectors.

For our newsletter subscription process, we use a so-called double opt-in process. This means that once you have subscribed, we send an email to the email address provided where we ask that you confirm that you wish to receive our newsletter. If you do not confirm your subscription within a week, your data will be blocked and will be automatically deleted after a month. When confirming your subscription, our mailing service provider will record data relating to the confirmation and the time that you subscribed and confirmed your subscription, as well as any changes made. The purpose of this process is to provide evidence of your wish to subscribe to the newsletter and to prevent any potential misuse of your personal data.

The only mandatory field when subscribing to the newsletter is the email address field. Provision of any additional non-mandatory information is voluntary and such information will be used to allow us to address you personally. Once you have confirmed your subscription, we store your data for the purposes of distributing the newsletter and the related performance metrics. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

The data you provide will be stored in order to allow us to communicate with you. If you unsubscribe from the newsletter, i.e. you revoke your consent to this, any data collected in this context will be deleted within a week or we will restrict how such data are processed if this is necessitated by legal requirements to retain the data.

•     CleverReach – for the newsletter distribution, we use the "CleverReach" mailing service offered by CleverReach GmbH & Co. KG, Mühlenstraße 43, 26180 Rastede. This service is used to organise and analyse the newsletter distribution. The data you enter in relation to the newsletter (e.g. email address) are stored on CleverReach servers in Germany or Ireland. The service provider will not use your personal data for their own purposes.

The use of CleverReach allows us to analyse the behaviour of newsletter recipients. This may include analysing how many recipients have opened the newsletter message and how often each link in the newsletter is clicked. With the help of so-called "conversion tracking", we can also determine whether a predefined action is executed once a link in the newsletter has been clicked. More information can be found in the service provider's Privacy Policy, which can be found here. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

•     Performance metrics – our newsletters contain a tiny image file (a so-called "web beacon"), which automatically loads from our mailing service provider's server when the newsletter is opened. In the process, some technical data are collected (e.g. the browser and system used, your IP address and the time that the file is retrieved), which are used to optimise the newsletter distribution. Information on which links in the newsletters have been clicked is also collected for this purpose. The data collected can be attributed to individual recipients and allow us to identify the preferences and habits of the recipients of our newsletter, and to adjust the content of the newsletter to reflect this, or to customise the newsletter to suit individual recipients' interests. The legal basis for this is the first sentence of Article 6(1)(a) GDPR.

Data recipients and transfer to third countries

As a rule, your data will not be passed on to third parties. However, exceptions to this include service providers who we have commissioned with processing the data in line with this Privacy Policy, especially for the provision of the website's technical infrastructure, for managing website content, for the newsletter distribution, and for the provision of our email system with respect to any potential resulting communication. Similar to the data transfer for the use of YouTube, as described above, your data may also be transferred to the USA (a so-called "third country") in relation to any potential email communication. This third country may have a lower level of data security in place than is the case within the EU. In order to guarantee a sufficient level of data protection, we have entered into a contract with our email service provider based on standard data protection clauses. Additionally, all other applicable service providers are currently certified under the EU-US Privacy Shield initiative (see above). Upon request, which can be submitted using the contact information provided above, you can be sent a copy of the contract containing the guarantees relevant to the processing of your data, as described in this section.

Your rights

According to the GDPR, you have various rights, largely based on Articles 15 to 18 and 21 of the GDPR:

•     Right to access – in line with Article 15 GDPR, you have the right to access the personal data we process. In your access request, you must precisely explain your requirements in order to facilitate the compilation of the data required. Please note that in certain circumstances, your right to access may be limited in line with applicable legal provisions (especially § 34 BDSG).

•     Right to rectification – according to Article 16 GDPR, you can demand for any personal data to be rectified if such data are not (or no longer) accurate. If your data are incomplete, you have the right to have your personal data completed, in line with Article 16 GDPR.

•     Right to erasure – under the conditions of Article 17 GDPR, you have the right to obtain the erasure of your personal data. However, your right to erasure is dependent on other factors, including whether the data in question are still required by us in order to fulfil our legal obligations.

•     Right to restriction of processing – as part of the provisions of Article 18 GDPR, you have the right to restrict how data relating to yourself are processed.

•     Right to object – according to Article 21 GDPR, you have the right to object to the processing of your personal data at any time for reasons relating to your specific situation. However, we are not always able to accommodate this, for instance if legal provisions are in place that obligate us to process your data.

•     Right to data portability – according to Article 20 GDPR, you have the right to request the personal data you have provided to us in a structured, commonly used and machine-readable format, and you have the right to pass these data on to another data controller without hindrance from us, as long as the processing is based on your consent or on a contract between us and yourself and the processing is done using an automated process. You also have the right to request that the data is transferred from us directly to another data controller, as long as this is technically feasible.

•     Revoking consent – if you have provided consent for your data to be used, you can revoke this consent at any time with future effect.

If you wish to make use of the rights described here, or if you have any questions about data security, please contact our Data Protection Officer using the contact information provided above. If you have provided consent to receive communications from us, you can revoke this consent very easily by clicking on the link provided in the relevant message.

In any case, you have the right to file a complaint with the responsible supervisory body. A list of supervisory bodies (for the private sector) with addresses can be found here.

Changes to this Privacy Policy

We reserve the right to alter this Privacy Policy in future to comply with any potential changes to the legal requirements or in relation to any changes made to our website.

 

TwitterFacebookYouTube