Data privacy notice
1.1 What are personal data?
Personal data (sometimes referred to as personally identifiable information, PII) are data that directly or indirectly reveal the identity of the user. We adhere to the principle of data avoidance. Wherever possible, we dispense with the collection of personal data.
1.2 Handling of personal data
Personal data are used solely in connection with the establishment, content-related design, or settlement of the contractual relationship (Art. 6 I b General Data Protection Regulation, GDPR). Furthermore, personal data are processed only when we have received your consent (Art. 6 I a GDPR). In principle they shall not be transmitted to third parties. In connection with the settlement of payments, the data necessary for the payment transactions shall be forwarded to the credit institution assigned to perform the transaction and, where applicable, to the assigned and selected payment service providers. Your personal data shall be processed exclusively within the EU.
1.3 Usage data
When the website is visited, general technical information is recorded. These data include the IP address used, the time and duration of the visit, the browser type, and, where applicable, the referring site. For technical reasons, these usage data are registered in a logfile and may be used and saved for the statistical evaluation of this website. These usage data are not linked with your further personal data in any way.
1.4 Duration of data storage
After the purpose for which the data are recorded has ended, we save your personal data only as long as is necessary on the basis of the statutory (in particular tax-legal) provisions.
2. Your rights
2.1 Right of access
You shall have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and also to the further information specified in Art. 15 GDPR.
2.2 Right to rectification
You shall have the right to request the rectification of any inaccurate personal data concerning you and according to Art. 16 GDPR may have incomplete personal data completed, including by means of providing a supplementary statement.
2.3 Right to erasure
You shall have the right to demand from us the immediate erasure of your personal data concerning you. We pledge to erase such data immediately, in particular whenever one of the following reasons applies:
- Your personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
- You withdraw your consent on which the processing is based, and where there is no other legal ground for the processing.
- Your data have been unlawfully processed.
There is no right to erasure in the event that your personal data are required for the establishment, exercise, or defence of legal claims.
2.4 Right to restriction of processing
You shall have the right to obtain from us restriction of processing where one of the following applies:
- You contest the accuracy of the data, enabling us to verify the accuracy;
- The processing is unlawful, and you oppose the erasure of your personal data and request the restriction of their use instead;
- We no longer require the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims;
- You have objected to the processing of your data pending the verification whether our legitimate grounds override your grounds.
2.5 Right to data portability
You shall have the right to receive the personal data concerning you that you have provided to us, in a structured, commonly used and machine-readable format, and you shall also have the right to transmit those data to another controller without hindrance on our part wherever the processing is based on a consent or a contract and the data are processed by automated means.
2.6 Right to object
Wherever your personal data are processed on the basis of your consent, you shall have the right to object to the further processing of these data at any time.
2.7 General aspects and right of appeal
The exercise of the rights specified above is generally without any cost to you. If you have any objections, you are entitled to appeal directly to the supervisory agency responsible for us, the State Data Protection Commissioner.
3. Data security
3.1 Data security
All data on our website are secured by technical and organizational measures against loss, destruction, access, alteration, and dissemination.
3.2 Sessions and cookies
4. Services of third-party providers
4.1 Google Analytics
4.2 Social media links and social sharing
In connection with third-party providers who can be reached via links on this website, we have separate social media sites. Using the links will take you to the respective internet sites of the third-party providers (e.g. Facebook, Twitter, Google+), where you can share our content. Once you call up the site of the third-party providers, you are within the area of responsibility of the respective third-party provider, with the result that his data-privacy notice and/or his notices on data usage now apply. This is beyond our influence; however, to prevent any unnecessary transmission of data, we recommend that you log out from the respective third-party provider before using the corresponding link as a measure to avoid the possible generation of usage profiles by the third-party provider as a result of using the link.
4.3 Use of Google Maps
4.4 Use of Facebook plug-ins
These websites use plug-ins of the social network www.facebook.com, operated by Facebook Inc. 1 Hacker Way, Menlo Park, CA 94304, USA (“Facebook”). The office responsible for the processing of the information collected by Facebook is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Activating such a plug-in on our websites sets up a connection to the Facebook servers. In such a case the Facebook server receives data regarding which websites you have visited. If you are logged in on Facebook as a member, Facebook will assign this information to your personal Facebook user account. Using the plug-in functions (e.g. clicking on the “Like” button, using the messenger function, submission of a comment) also assigns this information to your Facebook account; this can be prevented only by logging out before activating the plug-in. Further details on the collection and usage of data by Facebook, on your rights in this connection, and on the possibilities for protecting your privacy can be seen in the data-privacy notice of Facebook at https://www.facebook.com/about/privacy/.
5. Contact details
If you wish to contact us in matters concerning data privacy, please do not hesitate to contact us via the contact options listed below. Responsible in the context of GDPR:
Zentralverband Gartenbau e. V.
D-10117 Berlin, Germany
Phone: +49(0)30 200 065-0
Gladly our data protection officer is also at your disposal:
DPA Drewes Privacy Advice GmbH