Privacy Policy

Data protection declaration

We are pleased about your visit to our website www.biogas-convention.com and your interest in our Association.

The protection of your personal data, such as date of birth, name, telephone number, address etc., is important to us.

It is the purpose of this data protection declaration to inform you about the processing of your personal data that we collect when you visit our website. Our data privacy practice is consistent with the statutory provisions of the EU’s General Data Protection Regulation (GDPR) and the Federal Data Protection Act (“BDSG”). The following data protection declaration is meant to satisfy the information requirements arising from the GDPR. They can be found, as an example, in Articles 13 & 14 et seq. of the GDPR.

 

Controller

Controller in accordance with Article 4, No. 7, GDPR is a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

As regards our website, the controller is:

Fachverband Biogas e.V.
Angerbrunnenstraße 12
85356 Freising
Germany
E-mail: infobiogasorg
Phone: +49 (0)8161/9846-60
Fax: +49 (0)8161/9846-70

 

Contact data of the data protection officer

We have appointed a data protection officer pursuant to Article 37 GDPR. Our data protection officer can be contacted as follows:

ituso GmbH - Mirko Tasch
Fraunhoferstrasse 9
85221 Dachau
Germany
E-mail: datenschutzbiogasorg
Phone: 08142 420 50 20
Website: http://www.ituso.de/

Providing the Website and generating logfiles

Every time when our website is called, our system automatically captures data and information from the end terminal calling (e.g. computer, mobile phone, tablet etc.).

Which personal data are collected and to what extent are they processed?

  1. information about the browser type and the version used;
  2. the operating system of the end terminal (access device);
  3. host name of the accessing computers;
  4. IP address of the end terminal;
  5. date and time of the access;
  6. websites and resources (images, files, other website contents) called from our website;
  7. websites from which the user’s system was referred to our website (referrer tracking);
  8. message, whether the call has been successful;
  9. data volume transmitted

These data will be stored in our system’s logfiles, although they will not be stored together with a specific user’s personal data, so that individual visitors of the website cannot be identified.

Legal basis for processing personal data

Article 6, sub-section 1(f), GDPR (legitimate interest), i.e. to achieve the purpose described below.

Purpose of data processing

The temporary (automated) storage of the data is required for the process of a visit to the website, so that the website can be presented. Besides, the personal data are also stored and processed, in order to maintain our website’s compatibility for as many visitors as possible, for trouble-shooting and to combat abuse. This makes it necessary to log the technical data of the accessing computer, so as to be able to respond to display errors, attacks on our IT systems and/or faults in our website’s functionality as early as possible. Besides, the data help us optimizing the website and securing the general safety of our IT systems.

Duration of storage

The technical data referred to above will be erased, as soon as they are no longer required to ensure the website’s compatibility for all visitors, however, not later than 3 months after having called our website anyway.

Right of objection and erasure

Pursuant to Article 21 GDPR, you can object to the processing of your personal data and, pursuant to Article 17 GDPR, demand the erasure of data at any time. In the lower section of this data protection declaration you will find the rights you are entitled to and how you can assert them.

Integration of external web services and processing of data outside the EU

We use active contents from external providers, so-called web services, on our website. When you call our website, these external providers might receive personal information about your visit to our website. In such case, the processing of data might be possible outside the EU. You can prevent it by installing an appropriate browser plugin or by disabling the execution of scripts on your browser. This may result in functional limitations on websites you visit.

We use the following external web services:

  • Google Fonts

On our website we use the service Google Fonts from Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States, e-mail:  support-de@ google.com, website: www.google.com. Data can also be processed in a third country, for which the Commission has not adopted an appropriateness resolution. The protection level customary for the GDPR can therefore not be ensured when transmitting the data, since it cannot be excluded that, say, third-country authorities may access the collected data.

Your consent pursuant to Article 6, sub-section 1(a), or Article 9, sub-section 2(a), GDPR given on our website is the legal basis for transmitting personal data.

Fonts are reloaded via the service Google Fonts onto our website, in order to present it in an optically enhanced version.

You can revoke your consent at any time. You will find more detailed information how to revoke your consent either at the place, where you gave your consent, or at the end of this data protection declaration.

For further information on the handling of the transmitted data, please refer to the provider’s data protection declaration under https://policies.google.com/privacy.

  • Google APIS

On our website we use the service Google APIS from Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States, e-mail: support-degooglecom, website: http://www.google.com/. Data can also be processed in a third country, for which the Commission has not adopted an appropriateness resolution. The protection level customary for the GDPR can therefore not be ensured when transmitting the data, since it cannot be excluded that, say, third-country authorities may access the collected data.

Your consent pursuant to Article 6, sub-section 1(a), or Article 9, sub-section 2(a), GDPR given on our website is the legal basis for transmitting personal data.

We use Google APIS, in order to enable us to reload further services of Google onto our website. Google APIS is a collection of interfaces enabling the communication between the various Google services used on your website.

Either the service or we ourselves shall collect the following data for being processed: IP address

You can revoke your consent at any time. You will find more detailed information how to revoke your consent either at the place, where you gave your consent, or at the end of this data protection declaration.

For further information on the handling of the transmitted data, please refer to the provider’s data protection declaration under https://policies.google.com/privacy.

  • Gstatic

On our website we use the service Gstatic from Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States, e-mail: support-degooglecom, website: http://www.google.com/. Data can also be processed in a third country, for which the Commission has not adopted an appropriateness resolution. The protection level customary for the GDPR can therefore not be ensured when transmitting the data, since it cannot be excluded that, say, third-country authorities may access the collected data.

Your consent pursuant to Article 6, sub-section 1(a), or Article 9, sub-section 2(a), GDPR given on our website is the legal basis for transmitting personal data.

Gstatic is a service used by Google to call static contents, so as to reduce the bandwidth utilization and to load required catalog files in advance.

You can revoke your consent at any time. You will find more detailed information how to revoke your consent either at the place, where you gave your consent, or at the end of this data protection declaration.

For further information on the handling of the transmitted data, please refer to the provider’s data protection declaration under https://policies.google.com/privacy.

Information about the use of cookies

Scope of processing personal data

We integrate and use cookies on various websites, in order to enable certain functions of our website and to integrate external web services. The so-called "cookies" are little text files that your browser can store on your access device. These text files contain a distinctive string of characters that identify the browser unambiguously, when you return to our website. The process of storing a cookie file is also called "setting a cookie". Cookies can be set both from the website itself and from external web services.

Legal basis for processing personal data

Article 6, sub-section 1(f) (legitimate interest) or sub-section 1(a) GDPR, or Article 9, sub-section 2(a) GDPR (consent).

It can be taken from the cookie table in this section below, which legal basis is relevant.

It generally applies in the case of cookies set on the basis of a legitimate interest that we are legitimately interested in ensuring the functionality of our website and the services integrated in it (technically necessary cookies). It may also be that the cookies increase the user friendliness and enable a more individual user approach. In this respect, we have weighed up the options between your interest and our own interest.

We can identify, analyze and pursue individual website visitors with the help of the cookie technology only then, when the website visitor concerned has given his/her consent to using cookies pursuant to Article 6, sub-section 1(a), GDPR.

Purpose of data processing

Cookies are set by our website or by external web services, in order to maintain our website’s full functionality, to improve the user friendliness or to pursue the purpose stated with your consent. The cookie technology also enables us to identify individual visitors on the basis of pseudonyms, e.g. an individual or random ID, so as to enable us to offer more individual services. Details are contained in the table below.

Duration der storage

The cookies listed below will be stored in your browser until they are deleted or, in the case of a session cookie, until the session is completed. Details are contained in the table below:

Cookie name                   omCookieConsent

Server                             www.biogas-convention.com

Provider                          website operator

Purpose                           This cookie enables us to store individual comfortable                                settings you have chosen and maintain them for future                                    visits to our website.

Legal basis                      consent

Duration of storage         approx. 12 months

Type                                configuration

 

Option to object, revocation of consent and erasure

You can set your browser according to your needs in such a way that setting cookies is generally prevented. You can then decide on a case-to-case basis, whether to accept (individual) cookies or whether to basically accept them. Cookies can be used for various purposes, such as to recognize that your access device is already connected with our website (permanent cookies) or to store offers seen most recently (session cookies). If you have explicitly granted us permission to process your personal data, you can revoke this consent at any time. Please note that the lawfulness of the data processing performed until the revocation on the basis of the consent originally granted will not be affected.

Data security and privacy, communication by e-mail

Your personal data are protected by technical and organizational measures in such a way, when being collected, stored and processed, so that they are not accessible to any third parties. In cases of unencrypted communication by e-mail we cannot ensure the full data security on the transmission paths to our IT systems, so that we recommend the encrypted communication or delivery by mail in cases of information with a high need for secrecy.

Right of access to, and rectification of, personal data – erasure of data & right to restriction of processing – revocation of consents – right to object

Right of access to the personal data

You shall have the right to obtain confirmation, as to whether or not we process personal data from you and, where that is the case, access to the personal data and the information referred to in Article 15, sub-section 1, GDPR, unless this adversely affects the rights and freedoms of others (cf. Article 15 sub-section 4 GDPR). We are quite prepared to provide a copy of the personal data undergoing processing to you.

Right of rectification

Pursuant to Article 16 GDPR, you have the right, at any time, to have personal data rectified (such as address, name etc.) that may have been incorrectly stored by us. You can also demand, at any time, the completion of data stored by us. Such data will be rectified at once.

Right of erasure

Pursuant to Article 17, sub-section 1, GDPR, you shall have the right that we erase personal data collected about you, if and when

  • the data are no longer required;
  • you have revoked your consent on which the processing is based without replacement;
  • you object to the processing and there are no overriding legitimate grounds for the processing;
  • your data are unlawfully processed;
  • this is required by a legal obligation or the data have been collected pursuant to Article 8, sub-section 1, GDPR.

Pursuant to Article 17, sub-section 3, GDPR this right shall not exist, if and when

  • the processing is necessary for exercising the right of freedom of expression and information;
  • your data have been collected on the basis of a legal obligation;
  • the processing is necessary for reasons of public interest;
  • the data are required for establishing, exercising or defending legal claims.

Right to restriction of processing

Pursuant to Article 18, sub-section 1, GDPR you have the right, in individual cases, to demand restriction of processing as regards your personal data.

This shall be the case, if and when

  • you contest the accuracy of the personal data;
  • the processing is unlawful and you oppose the erasure of the personal data;
  • the data are no longer required for the purpose of the processing, but they are required for asserting, executing or defending legal claims;
  • an objection to processing the data has been filed pursuant to Article 21, sub-section 1, GDPR pending the verification, whose the legitimate grounds are overriding.

Right of revocation

If you have granted us an explicit consent to process your personal data (Article 6, sub-section 1(a) or Article 9, sub-section 2(a) GDPR), you can revoke it at any time. Please note that the lawfulness of the data processing performed until the revocation on the basis of the consent originally granted will not be affected.

Right to object

Pursuant to Article 21 GDPR, you have the right, at any time, to object to the processing of personal data concerning your person that have been collected on the basis of Article 6, sub-section 1(f) (in the context of a legitimate interest). However, you shall have this right only, if and when special circumstances speak against the storage and processing of your personal data.

How do you exercise your rights?

You can exercise your rights at any time by getting in contact with

Fachverband Biogas e.V.
Angerbrunnenstraße 12
85356 Freising
Germany
E-mail: infobiogasorg
Phone: +49 (0)8161/9846-60
Fax: +49 (0)8161/9846-70

Right to data portability

Pursuant to Article 20 GDPR, you have the right to receive the personal data concerning you. These data will be provided by us in a structured, commonly used and machine-readable format. In exercising this right to data portability, you can have the data transmitted either directly to you or to a controller named by you.

At your request, we shall provide the following data in accordance with Article 20, sub-section 1, GDPR:

  • data collected on the basis of an explicit consent granted in accordance with Article 6, sub-section 1(a) or Article 9, sub-section 2(a), GDPR;
  • data we received from you in accordance with Article 6, sub-section 1(b), GDPR on the basis of existing contracts;
  • data processed by automated means.

We shall transfer the personal data directly to a controller named by you, if this proves to be technically feasible. Please note that, pursuant to Article 20, sub-section 4, GDPR, we must not transfer data that adversely affect the rights and freedoms of others.

Right to lodge a complaint with a supervisory authority pursuant to Article 77, sub-section 1, GDPR

If you suspect that your data are unlawfully processed on our website, you can, of course, seek legal clarification of the problem at any time. In addition to that, any other legal option is open to you. Notwithstanding the above, Article 77, sub-section 1, GDPR, provides the opportunity to lodge a complaint with a supervisory authority. The right to lodge such complaint pursuant to Article 77 GDPR can be exercised in the EU member state, where you have your place of residence, where your workplace is located and/or at the place, where the alleged infringement has occurred, i.e. you can select the supervisory authority which you wish to contact from the places stated above. The supervisory authority with which you filed your complaint will then inform you about the status and result of your complaint, including the option of a legal remedy pursuant to Article 78 GDPR.

Prepared by:

© DURY LEGAL lawyers – www.dury.de

© Website-Check GmbH – www.website-check.de