Privacy Statement
The protection of personal data is an important concern for the Federal Ministry of Food, Agriculture and Regional Identity (BMLEH). We process personal data only to the extent necessary and in compliance with the applicable data protection provisions, in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and the German Telecommunications-Digital Services Data Protection Act (TDDDG).
The following information explains which personal data are processed when you visit this website, for what purposes this is done and on which legal basis the respective processing is carried out.
1. Controller and Data Protection Officer
Controller
The controller responsible for processing personal data on this website is:
Federal Ministry of Food, Agriculture and Regional Identity
Division 625 Global Forum for Food and Agriculture
Berlin Office
Visitor address:
Wilhelmstraße 54, 10117 Berlin
Postal address:
11055 Berlin
E-mail: 625@bmleh.bund.de
Data Protection Officer
If you have any questions regarding data protection, you may contact the Data Protection Officer of the Federal Ministry of Food, Agriculture and Regional Identity:
Data Protection Officer at the Federal Ministry of Food, Agriculture and Regional Identity
P.O. Box 14 02 70
53107 Bonn
Germany
E-mail: bds@bmleh.bund.de
2. General Information on Data Processing
Personal Data
Personal data means any information relating to an identified or identifiable natural person. This includes, in particular, names, contact details, IP addresses and other information that can be attributed to a person directly or indirectly.
Legal Bases for Processing
Where personal data are processed in connection with the performance of tasks carried out in the public interest, such processing is based on Article 6(1)(e) GDPR in conjunction with Section 3 BDSG.
Where processing is necessary for compliance with a legal obligation, it is based on Article 6(1)(c) GDPR.
Where the consent of the data subject is required, processing is based on Article 6(1)(a) GDPR and, where applicable, Section 25(1) TDDDG. Consent may be withdrawn at any time with effect for the future.
Where processing is necessary for the performance of a contract or in order to take steps prior to entering into a contract, it is based on Article 6(1)(b) GDPR.
Where, in individual cases, processing is necessary in order to protect the vital interests of the data subject or of another natural person, it is based on Article 6(1)(d) GDPR.
Automated decision-making, including profiling, does not take place unless expressly stated otherwise in this privacy statement.
Storage Period
Personal data are stored only for as long as necessary to fulfil the respective purpose of processing or for as long as statutory retention obligations apply. Once this period has expired, the data are deleted unless statutory retention obligations prevent deletion.
Recipients of Personal Data
Personal data are transferred to third parties only where this is necessary for the performance of statutory tasks, for the performance of a contract, due to legal obligations, or on the basis of consent. Where external service providers process personal data on our behalf, this is done on the basis of a data processing agreement pursuant to Article 28 GDPR.
3. Data Processing When Visiting This Website
Provision of the Website and Log Data
When this website is accessed, technically necessary information is processed by the hosting provider and the IT systems in server log files. This includes, in particular:
- date and time of access,
- IP address of the accessing end device,
- browser used and operating system,
- referrer URL,
- pages and files accessed,
- HTTP status code, and
- other technical information required for the delivery of the website.
This data is processed in order to ensure the secure, stable and technically error-free operation of the website and to prevent and analyse attacks on the IT infrastructure. The legal basis is Article 6(1)(e) GDPR in conjunction with Section 3 BDSG and, where applicable, Article 6(1)(c) GDPR.
Hosting
This website is hosted by the following provider:
ALL-INKL.COM – Neue Medien Münnich
Owner: René Münnich
Hauptstraße 68
02742 Friedersdorf
Germany
Further information on data processing by the hosting provider is available at:
All-Inkl Privacy Information.
A data processing agreement has been concluded with the provider.
Content Delivery Network and Security via Cloudflare
For the protection and optimised delivery of our website, we use the Cloudflare service. The provider is:
Cloudflare Inc.
101 Townsend St.
San Francisco, CA 94107
USA
Cloudflare provides a content delivery network (CDN) and security functions. In this context, traffic between your browser and our website is routed through Cloudflare’s systems. This serves, in particular, to defend against abusive access, improve availability and ensure the secure provision of our online services.
The processing is based on Article 6(1)(e) GDPR in conjunction with Section 3 BDSG insofar as it is necessary for the secure provision of the website in the performance of public tasks. Where, in individual cases, additional legitimate technical security interests are relevant, processing is based on Article 6(1)(f) GDPR.
A transfer of personal data to the United States cannot be ruled out. Cloudflare is certified under the EU-U.S. Data Privacy Framework. In addition, the European Commission’s Standard Contractual Clauses are used. Further information is available at:
Cloudflare Privacy Policy.
A data processing agreement has been concluded with Cloudflare.
4. Cookies and Consent Management
Cookies
This website uses cookies and comparable technologies. Cookies are small text files stored on your end device. They are used to provide the website technically, to ensure its security and, where consent has been given, to enable statistical analysis.
Technically necessary cookies are used for the operation and security of the website. The legal basis for this is Article 6(1)(e) GDPR in conjunction with Section 3 BDSG and, where required, Section 25(2) TDDDG.
Where cookies or comparable technologies are used for statistical, analytical or other purposes that are not strictly necessary, such processing takes place exclusively on the basis of your consent pursuant to Article 6(1)(a) GDPR and Section 25(1) TDDDG.
You may withdraw your consent at any time with effect for the future or adjust your settings via the consent management tool used on this website.
Consent Management with Cookiebot
We use the Cookiebot service to obtain, manage and document consent. The provider is:
Usercentrics A/S
Havnegade 39
1058 Copenhagen
Denmark
When you access the website, a connection to Cookiebot’s servers is established in order to record and document your cookie settings and, where applicable, your consent declarations. In this context, consent data, your IP address in shortened form, browser information and time stamps may in particular be processed.
This processing is carried out in order to comply with our legal obligation to obtain and document valid consent. The legal basis is Article 6(1)(c) GDPR.
A data processing agreement has been concluded with Cookiebot.
5. Contacting Us
Contact Form
If you send us enquiries via a contact form, the data you enter, including the contact details you provide, will be processed for the purpose of handling your enquiry and in the event of follow-up questions.
Where your enquiry relates to the performance of public tasks, processing is based on Article 6(1)(e) GDPR in conjunction with Section 3 BDSG. Where your enquiry is related to a contract or pre-contractual measures, processing is based on Article 6(1)(b) GDPR. Where consent has been obtained, Article 6(1)(a) GDPR is the legal basis.
The data will be deleted once the purpose of storage no longer applies and no statutory retention obligations prevent deletion.
Enquiries by E-mail, Telephone or Fax
If you contact us by e-mail, telephone or fax, the personal data transmitted by you will be processed for the purpose of handling your request.
Depending on the content of the enquiry, the processing is based on Article 6(1)(e) GDPR in conjunction with Section 3 BDSG, Article 6(1)(b) GDPR or, where applicable, on the basis of your consent pursuant to Article 6(1)(a) GDPR.
The data will be deleted once processing has been completed and no statutory retention obligations prevent deletion.
6. Web Analysis and Services Used
Google Tag Manager
This website uses Google Tag Manager. The provider is:
Google Ireland Limited
Gordon House
Barrow Street
Dublin 4
Ireland
Google Tag Manager is used for the technical administration and integration of further services on this website. According to the provider, the service itself does not create user profiles and does not store cookies, but it may process technical data, in particular your IP address.
The service is used only insofar as this is technically necessary or covered by your consent. Where consent is required for the integration of downstream services, processing is based on Article 6(1)(a) GDPR and Section 25(1) TDDDG.
Google is certified under the EU-U.S. Data Privacy Framework. Further information is available at:
Data Privacy Framework – Google.
Google Analytics
Subject to your consent, this website uses Google Analytics, a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables statistical analysis of the use of this website. In this context, page views, dwell time, technical device information, approximate location data, interactions and usage paths may in particular be processed. Processing takes place exclusively on the basis of your consent pursuant to Article 6(1)(a) GDPR and Section 25(1) TDDDG.
We use Google Analytics with IP anonymisation enabled. The IP address is shortened within the European Union or the European Economic Area before any further processing takes place. Nevertheless, a transfer to Google servers in the United States cannot be ruled out.
Google is certified under the EU-U.S. Data Privacy Framework. In addition, the European Commission’s Standard Contractual Clauses are used. Further information is available at:
Google Analytics Privacy Information.
You may withdraw any consent you have given at any time via the cookie settings. In addition, you can prevent the collection of data by Google Analytics by installing the browser add-on available at:
Google Analytics Opt-out Browser Add-on.
A data processing agreement has been concluded with Google.
7. Embedded Media and Other Content
YouTube in Enhanced Privacy Mode
This website embeds videos from the YouTube platform. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The embedding is carried out in enhanced privacy mode. Even when merely accessing a page with an embedded video, a connection to YouTube servers may already be established. If you actively play a video, additional data processing operations may be triggered by YouTube over which we have no influence.
The embedding and playback of YouTube videos take place only on the basis of your consent pursuant to Article 6(1)(a) GDPR and Section 25(1) TDDDG, insofar as cookies, local storage elements or comparable technologies are used for this purpose.
A transfer of personal data to the United States cannot be ruled out. Google is certified under the EU-U.S. Data Privacy Framework. Further information is available at:
Google Privacy Policy.
Font Awesome (Local Hosting)
For the consistent display of icons and fonts, Font Awesome is hosted locally on our servers. In this context, no connection is established to external servers of Fonticons, Inc. Accordingly, no independent transfer of personal data to third parties takes place in this respect.
Further information is available at:
Font Awesome Privacy Policy.
8. Data Security
For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. You can recognise an encrypted connection by the address line of your browser and by the lock symbol in the browser display.
9. Your Rights
Subject to the applicable statutory provisions, you have the following rights vis-à-vis the controller:
- right of access pursuant to Article 15 GDPR,
- right to rectification pursuant to Article 16 GDPR,
- right to erasure pursuant to Article 17 GDPR,
- right to restriction of processing pursuant to Article 18 GDPR,
- right to data portability pursuant to Article 20 GDPR, where the statutory requirements are met,
- right to withdraw consent pursuant to Article 7(3) GDPR with effect for the future,
- right to object to processing pursuant to Article 21 GDPR.
Right to Object
Where personal data are processed on the basis of Article 6(1)(e) or (f) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data. In the event of a justified objection, the personal data will no longer be processed unless there are compelling legitimate grounds for further processing.
Right to Lodge a Complaint with a Supervisory Authority
You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data. The competent supervisory authority for federal public bodies is the Federal Commissioner for Data Protection and Freedom of Information.
The Federal Commissioner for Data Protection and Freedom of Information
Graurheindorfer Straße 153
53117 Bonn
Germany
E-mail: poststelle@bfdi.bund.de
10. Current Version and Amendments to this Privacy Statement
This privacy statement will be updated where necessary in order to reflect changes in the factual or legal framework.