This Data Protection Policy refers to the nature, scope and purpose of personal data processing (hereinafter referred to as “data”) relating to our websites, features and content thereof, as well as the external presence such as our social media profiles (collectively referred to as “online offer”). With regard to the terminology used, e.g. “processing” and “controller”, we refer to the definitions stimulated in Article 4 of the General Data Protection Regulation (GDPR).
The party responsible for this website (the “controller”) for purposes of data protection law is:
Zukunftsstiftung Landwirtschaft
(Foundation on Future Farming)
Benedikt Haerlin
Berlin office
Phone: +49 30 2848 23 20
Fax: +49 30 275 903 12
Email: berlin@zs‑l.de
The controller’s external data protection officer is:
Stefan Strüwe
Rechtsanwalt (Syndikusrechtsanwalt)
CURACON GmbH
Am Mittelhafen 14
48155 Münster
Phone: 0251 / 92208 – 209
Email:
Collection of access data and log files
We, or our hosting provider, collects on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. DSGVO Data on every access to the server on which this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Logfile information is stored for security reasons (eg to investigate abusive or fraudulent activities) for a maximum of 7 days and then deleted. Data whose further retention is required for evidential purposes shall be exempted from the cancellation until final clarification of the incident.
Contact form, email or phone contact
Should you send us questions via the contact form, email, telephone or social media, we will collect the data you provide, to answer your question and any follow-up questions as per Art. 6 (1) lit. a GDPR. The data may be stored in a Customer-Relation-Management System (“CRM System”) or similar systems.
We delete the requests, if they are no longer required. We check the necessity every two years. Furthermore, the legal archiving obligations apply.
Cookies
We use cookies on our website. Cookies are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do no damage to your end device, do not contain viruses, Trojans or other malware.
Information is stored in the cookie that results in each case in connection with the specifically used terminal device. However, this does not mean that you can be directly identified.
The use of cookies serves to make the use of our website more pleasant for the user. For example, we use so-called session cookies to recognise that you have already visited individual pages of our website. These are deleted automatically after leaving our site.
We also use cookies to statistically record the use of our website and evaluate it for you for the purpose of optimising our offer (see number 5. below). These cookies enable us to automatically recognise when you return to our website that you have already visited. These cookies are automatically deleted after a defined period of time.
The data processed by cookies is required for the aforementioned purposes in order to protect our legitimate interests and those of third parties pursuant to Art. 6 Para. 1 S. 1 lit. f) GDPR.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, the complete deactivation of cookies can lead to your being unable to use all functions of our website.
Matomo web analysis (formerly PIWIK)
This website uses the open source web analysis service Matomo (formerly “Piwik”). Matomo uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of the website. For this purpose, the information generated by the cookie about the use of this website is stored on our server. The IP address is made anonymous before it is saved. Our concern in the sense of the GDPR (legitimate interest) is the optimization of our online offer and our website.
The information generated by the cookie about the use of this website will not be passed on to third parties.
Your IP address is never merged with other customer related data. The IP addresses are anonymized ensuring that no match to an individual is possible (IP masking).
If you do not agree to the storage and use of your data, you can deactivate the storage and use here. In this case, an opt-out cookie is stored in your browser which prevents Matomo from saving usage data. If you delete your cookies, the Matomo Opt-Out cookie will also be deleted. The opt-out must be reactivated the next time you visit our site.
Third party content and social media plug-ins
We use the following social media plug-ins: Facebook, Twitter, and Youtube. This allows you to communicate with such services and like or comment from our website. Social media plug-ins enable a direct communication between your device and the servers of the social media provider, allowing the social media provider to communicate with you and collect information about you browsing our website. This processing is based on Article 6 sec. 1 sent. 1 lit. f GDPR and represents our legitimate interest to improve your website experience and to optimise our services.
YouTube
This website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.
Further information about handling user data, can be found in the data protection declaration of YouTube under www.google.de/intl/de/policies/privacy.
Use of Facebook Social Plugins
On the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of art. 6 sec. 1 lit. f. GDPR), we use social plugins (“plugins”) of the social network www.facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). The plugins can display interaction elements or content (e.g. videos, graphics or text) and are identified by one of the Facebook logos (white “f” on blue tile, the term “like” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of Facebook Social Plugins can be found here: developers.facebook.com/docs/plugins/.
Facebook is certified under the Privacy Shield Agreement and thus guarantees to comply with the GDPR (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
When users use a function of this online offer that contains such a plugin, their device establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to the user’s device and integrated into the online offer. The processed data can be used to create user profiles. Therefore, we have no influence on the amount of data Facebook collects with the help of this plugin and inform users according to our level of knowledge.
By integrating these plugins, Facebook receives information that a user has opened the corresponding page of the online offer. If the user is logged into Facebook, Facebook can assign the visit to its Facebook account. When users interact with the plugins, such as pressing the Like button or posting a comment, the information is sent directly from their device to Facebook and stored there. If a user is not a member of Facebook, it is still possible for Facebook to obtain and store their IP address. According to Facebook, only anonymized IP addresses are stored in Germany.
The purpose and scope of the data collection and the processing and use of the data by Facebook, as well as the relevant rights and setting options for the protection of the users’ privacy can be found in Facebook’s privacy notice: www.facebook.com/about/privacy/.
If users are on Facebook and do not want Facebook to collect data about them via this online offer and link it to their membership data stored on Facebook, they must log out of Facebook before using our online offer and delete their cookies. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: www.facebook.com/settings or via the US page www.aboutads.info/choices/ or the EU page www.youronlinechoices.com. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.
Twitter
Within our online offer, functions and contents of the Twitter service offered by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated. This may include content such as images, videos or texts and buttons with which users can express their appreciation of the content, subscribe to the authors of the content or our contributions. If the users are members of Twitter, Twitter can assign the above content and functions to the users’ profiles. Twitter is certified under the Privacy Shield Agreement and thus guarantees to comply with the GDPR (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active). Privacy Policy: twitter.com/de/privacy, Opt-Out: twitter.com/personalization.
The rights of users and data subjects
With regard to the data processing to be described in more detail below, users and data subjects have the right
- under Art. 15 GDPR to ask for information about your personal data processed by us. You may specifically ask for information as to the purpose of such processing, the categories of personal data concerned, the categories of recipients to whom your data has been or is being disclosed and the length of time that it is intended to be kept, as to the existence of a right to amend, delete or limit such processing or raise an objection, the existence of a right of appeal, the origin of your data if it has not been obtained from us and as to the existence of automated decision-making, including profiling, and details of any significant information;
- under Art. 16 GDPR to require the rectification without undue delay of inaccurate personal data recorded by us or the supplementation of personal data recorded by us;
- under Art. 17 GDPR to require the erasure of personal data recorded by us unless its processing should be necessary in the exercise of the right of freedom of expression and information, to fulfil a legal requirement, for reasons of public interest or in order to assert, establish or defend legal claims;
- under Art. 18 GDPR. to require a restriction to be put on the processing of your personal data where the accuracy of data is disputed by you, processing is unlawful but you refuse its erasure and we no longer need the data but you need it in order to assert, establish or defend legal claims or where you have filed an objection to processing under Art. 21 GDPR;
- under Art. 20 GDPR to receive your personal data that you have provided to us in a structured, conventional and machine-readable format or to require it to be transmitted to another data protection controller;
- under Art. 7(3) GDPR to withdraw your consent at any time. This means that in future we will no longer be allowed to continue data processing to which your consent relates, and
- under Art. 77 GDPR to lodge a complaint with a supervisory authority. You may generally address this to the supervisory authority at your habitual place of residence, your place of work or our place of business
Right to object
Where your personal data is processed for the purpose of legitimate interests under Art. 6(1) sentence 1(f) GDPR you have the right under Art. 21 GDPR to object to the processing of your personal data on grounds relating to your particular situation or where the objection is levelled at direct marketing. In the latter case you have a general right to object which will be implemented by us without a particular situation having to be specified.
If you should wish to exercise your right to object or ask for rectification kindly send an email to berlin[at]zs‑l(dot)de.
Data security
When you visit our website, we use the common SSL procedure (Secure Socket Layer) in combination with the highest possible encryption level that is supported by your browser. This usually is a 256-bit encryption. If your browser does not support the 256-bit encryption, we will use the 128-bit v3 technology instead. You can see by the closed key or lock icon in the lower status bar of your browser whether an individual page of our Internet presentation is encrypted during transfer.