Privacy statement

Protecting your personal data is of great importance to the Federal Ministry of Food and Agriculture (BMEL). We want users to know when the BMEL processes personal data, what data are processed and for what purposes. The BMEL provides content on the Internet in order to inform the public about the Ministry's activities. We process personal data only to the extent necessary. What personal data are processed, for what purposes they are processed and on what legal basis depends on the kind of service you would like to use. We have taken technical and organisational measures to ensure that data protection legislation is observed by ourselves and by our external service providers. The processing of personal data at the BMEL is governed by the European General Data Protection Regulation (EU GDPR) and the Federal Data Protection Act (Bundesdatenschutzgesetz/BDSG).

1. Foundations

1.1 Controller and data protection officer

The agency responsible for the processing of personal data is the
Federal Ministry of Food and Agriculture
Tel.: +49-(0)30 18 529 - 0
Fax: +49-(0)30 18 529 - 4262

Bonn Office
Visitor's address:
Rochusstraße 1, D-53123 Bonn
Postal address:
PO Box 14 02 70, D-53107 Bonn

Berlin Office
Visitor's address:
Wilhelmstraße 54, D-10117 Berlin;
Postal address: D-11055 Berlin.

BMEL Data Protection Officer
Federal Ministry of Food and Agriculture
P.O. Box 14 02 70
53107 Bonn

1.2 Personal data

Personal data means any information relating to an identified or identifiable natural person. Natural persons are considered identifiable if he or she can be identified, directly or indirectly, in particular by linking them to an identifier such as e.g. to a name, identification number, location data, or online identifier.

1.3 Legal basis for the processing of personal data

The BMEL processes personal data when it discharges the tasks of public interest that are assigned to it. These duties include in particular public relations activities, involving inter alia making information available to the public on this website. The legal basis for processing in this case is Article 6 (1) (e) of the EU GDPR in conjunction with Section 3 of the Federal Data Protection Act (BDSG). Insofar as the processing of personal data is required in order to fulfil a legal obligation, this is based on Article 6 (1) (c) of the EU GDPR in conjunction with the relevant legal provision under which the legal obligation arises. Insofar as it is necessary to obtain the consent of a data subject before processing his or her personal data, Article 6 (1) (a) of the EU GDPR serves as the legal basis. Article 6 (1) (b) of the EU GDPR is the legal basis for processing personal data that are required to perform a contract to which the data subject is a party. It is also the basis for processing operations that are needed to carry out pre-contractual measures. If vital interests of the data subject or of another natural person make it necessary to process personal data, the legal basis for doing so is Art. 6 (1) (d) of the EU GDPR. No decision-making processes are automated.

2. Data processing related to visiting this website

2.1 Data collection

Every time you visit our website and retrieve a file, data on this process are temporarily stored in a log file. Specifically, the following data are stored on each access/retrieval:
  • date and time of the retrieval (time stamp) as well as the IP address of the device or server requesting access;
  • details of the request and target address (protocol version, HTTP method, referrer, useragent-string);
  • name of the accessed file and amount of data transferred (requested URL incl. query string, size in bytes); and
  • notification on whether the request was successful (http status code).
Data that are logged when you access the website of the Global Forum for Food and Agriculture (GFFA) are only transferred in order to evaluate the use and to customise our services to meet your needs (2.3. web analysis). These data are not pooled with other data sources.

2.2 Cookies

A cookie is a short entry in a specific data file on your computer, which supports the exchange of information between computer programmes or the archiving of information for a limited period of time. Cookies cannot be used to run programmes or to deliver viruses to your computer. They serve to make the internet sites more user-friendly and effective. When you visit our website, cookies are stored on our computer. This is done on the basis of 6 (1) (e) of the EU GDPR, in conjunction with Section 3 of the Federal Data Protection Act, as part of our public relations activities in order to gear the information we provide to people's needs. You can adjust the settings on your browser so that cookies are only stored for the duration of the respective Internet session. You can also completely disable the storage of cookies in the browser settings. In this case it is possible that you may no longer be able to use all the features of this website.

2.3 Web analysis

We use a specific software to evaluate the use and tailor the content of our website to meet people's needs. The legal basis for this is Article 6 (1) (e) of the EU GDPR in conjunction with Section 3 of the BDSG. To this end, we transmit data to the service provider Mindlab Solutions GmbH, Eichwiesenring 9, 70567 Stuttgart. For a statistical evaluation of the activities on our website, we use their product "netmind Enterprise Analytics Suite". This product enables clicks on downloads and external links to be counted. With regard to identifying the origin (geo-localisation), only the country is identified. We do not use any of the product’s more extensive evaluation possibilities (creation of user profiles). You can object to the analysis of your visit at any time; this will take effect in respect of future use. Should you wish to do so, please click on the following link: Revocation of data storage To block your tracking, Netmind needs to install a cookie on your computer. Please make the appropriate settings in your browser to enable this if you wish to revoke data storage. The data are stored at Mindlab in Germany. As netmind anonymises IP addresses, it is technically impossible to assign individual data files to specific persons.
Revocation of data storage

2.4 Google web fonts

This website uses Google web fonts for a standard display of fonts. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose, your browser needs to directly connect to the google servers. Google thus becomes aware that our web page was accessed from your IP address. Google web fonts are used in the interest of a uniform and attractive presentation of our website. This constitutes a legitimate interest pursuant to Art. 6 (1) (f) of the GDPR. If your browser does not support web fonts, your computer uses a standard font. Further information about handling user data can be found at and in Google’s privacy statement at

3. Processing of personal data in the context of registration

On the website you can register to participate in GFFA 2020 and in various events. In order to process your registration, we process the personal data entered in the registration form on the basis of the declaration of consent you gave us when you registered, with the entry of your first name, last name and e-mail address being mandatory.
The data will be processed exclusively for the purpose of organising and carrying out the event, in particular to verify registration upon access to the event and to create badges.
If you register for the GFFA 2020, your personal data will be forwarded to BIOCOM AG, Lützowstraße 33-36, 10785 Berlin, which is the service provider commissioned to organise the event. The service provider will store your data on a server located in Germany. The data provided during registration will be deleted at the end of the event. If you have given your consent, then your name, organisation/employer, address and e-mail address will continue to be stored for the purpose of invitations to future events.

4. Processing of personal data for partnering

Visitors have the opportunity to register for partnering during the registration process. The purpose of partnering is to facilitate mutual contact. For this purpose, profiles can be placed on the partnering portal. These profiles will be visible to all other visitors who have registered for partnering and can be searched by a person’s name or by company / organisation name. It is possible to make contact enquiries via the partnering portal; the person requested will be informed of the request by e-mail. The e-mail addresses themselves will not be displayed on the partnering portal.
If a person consents to the partnering, the data given in the input masks will be transmitted, exclusively for the operation of the partnering portal, to the service provider Venture Valuation AG, Kasernenstrasse 11, 8004 Zurich, Switzerland, which has been commissioned with the partnering; the data will be stored on a server in Switzerland.
The personal data collected during registration for partnering in the partnering profile will be deleted at the latest one month after the end of the event. In case of a de-registration from partnering via the partnering portal, the data will be deleted immediately.

5. Processing of personal data from online correspondence

We enable interested parties to contact us via an online form on our website. Here, the personal data (name, e-mail address) used for answering will be collected. This data will be forwarded to BIOCOM AG, Lützowstraße 33-36, 10785 Berlin, the service provider commissioned with the processing and organisation of GFFA. Your data will not be used beyond the processing of the request. We would like to point out that this personal data is processed on the basis of Article 6 paragraph 1 letter e EU-GDPR in conjunction with § 3 BDSG. Processing of the transmitted personal data is necessary for the purpose of processing your request. If we receive a message via the contact form or an e-mail from you, we assume that we are entitled to reply by e-mail. Otherwise, please expressly inform us of any other form of communication.

6. Processing personal data from our press service

We offer a press service in order to keep you up to date about the opening of the registration portal and programme updates. If you sign up for this service, we will store your personal data (first name and last name, organisation, e-mail address) both on our server which is located in Germany and on the server of the service provider "sendinblue" which has been commissioned with sending the press releases. Your data will be used solely for the dispatch of the press release. Our registration system, which includes a confirmation message containing a web link to finalise registration (double opt-in), ensures that you have explicitly requested the newsletter. You can unsubscribe from this press service at any time. Your personal data will then be deleted without delay.

7. Images

The BMEL processes images of persons who participate in the GFFA for the purpose of public relations work. Provision of the data is voluntary. Those participants who would not like any images of themselves to be made are requested to avoid the photo / film area and / or to notify the photographer and the event staff accordingly.
Please note: Press representatives are themselves data controllers within the meaning of the EU-GDPR.
Public relations work includes making the images available both to the public (in particular on the BMEL’s Twitter and Instagram channels and in publications such as the brochure on the outcome of the GFFA) and internally to BMEL staff (intranet, drives). The personal data collected by the BMEL are stored only as long as is required for completion of the respective purpose or by legislation.

8. Your rights

You have the following rights vis-à-vis the BMEL with regard to the personal data concerning your person:
  • Right of access, Article 15 of the EU GDPR and Section 34 of the BDSG The right of access confers on the data subject a comprehensive right of access to the data concerning his or her person and to certain other criteria, such as the purposes for which it is processed and the duration for which it will be stored. The derogations from this right set out in Section 34 of the BDSG apply.
  • Right to rectification, Art. 16 of the EU GDPR The right to rectification includes the possibility for the data subject to have inaccurate personal data concerning him or her corrected.
  • Right to erasure, Art. 17 of the EU GDPR and Section 35 of the BDSG The right to erasure includes the possibility for the data subject to have data deleted by the controller. However, this is only possible if the personal data concerning his or her person are no longer needed, have been processed unlawfully or if the relevant consent has been revoked. The derogations from this right set out in Section 35 of the BDSG apply.
  • Right to restriction of processing, Art. 18 of the EU GDPR The right to restrict processing includes the possibility for the data subject to prevent further processing of personal data concerning his or her person for the time being. A restriction particularly occurs pending verification of the exercise of other rights by the data subjects.
  • Right to data portability, Article 20 of the EU GDPR The right to data portability enables data subjects to receive the personal data concerning him or her in a commonly used and machine-readable format from the controller and the right to have those data transmitted to another controller, as appropriate. According to the second sentence of Article 20 (3), however, this right does not apply if the data processing serves the discharge of public tasks.
  • Right to object to processing, Article 21 (1) of the EU GDPR and Section 36 of the Federal Data Protection Act (BDSG) The right to object enables data subjects to object, on grounds relating to their particular situation, to the further processing of their personal data where this is justified by the discharge of public tasks or public and private interests. The derogations from this right set out in Section 36 of the BDSG apply.
  • Right to revoke consent If personal data are processed on the basis of consent, data subjects may at any time revoke such consent for the purpose for which it was given. The lawfulness of the processing undertaken on the basis of this consent remains unaffected until receipt of the revocation.
You can assert the aforementioned rights in writing using the contact details set out in Section 1.1. Pursuant to Art. 77 of the EU GDPR, you also have the right to appeal to the data-protection supervisory authority if you believe that we have failed to comply with provisions of data protection law when processing your personal data. If you have a complaint you can, for instance, lodge this complaint with the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

Contact details of the BfDI
Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit
Husarenstraße 30
D-53117 Bonn