Privacy policy

1 Foreword

Regardless of whether you are a customer, prospective customer, applicant or visitor to our website: We, TerraVis GmbH (hereinafter referred to as " TerraVis ", "we") take the protection of your personal data very seriously. But what does this mean in concrete terms?

Below, we provide you with an overview of the personal data we collect from you and how we process it. You will also find an overview of your rights under applicable data protection law. In addition, we provide you with contact details should you have any further questions.

1.1 Who are we?

As a modern agricultural trading and service company, we support our cooperative distribution partners, agriculture and people in rural areas with high-quality products, extensive expertise, professional advice and first-class service in the areas of plants, animals, technology, construction, markets and energy.
We do everything we can to be the number one partner for our cooperatives, customers and shareholders: we help them to work more profitably, deliver more efficient services and achieve higher returns.

As the responsible party within the meaning of applicable data protection laws, we, the

TerraVis GmbH
Industrieweg 110
48155 Münster
Email: info@terravis-biogas.de
Telephone: +49(0)251 . 682-2055

all measures required under applicable data protection law to ensure the protection of your personal data.

If you have any questions regarding this privacy policy, please contact our data protection officer.

Data Protection Officer:

2B Advice GmbH
Joseph-Schumpeter-Allee 25
53227 Bonn
E-Mail: AGRAVIS@2B-Advice.com

2 Scope of the privacy policy

The legislator defines the processing of personal data as activities such as the collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of personal data.

Personal data is any information relating to an identified or identifiable natural person.

This privacy policy concerns the personal data of customers, interested parties, applicants or visitors.

3 What personal data do we process?

We collect your personal data when you contact us, e.g. as a prospective customer or customer. This may happen, for example, when you express interest in our products, register for our online services, contact us via our communication channels, or when you use our products or services within the scope of existing business relationships.

We process the following types of personal data:

  • Personal identification details, e.g. first name and surname, address details, email address, telephone number, fax number
  • Order data, e.g. customer number, order number, invoice data
  • Company-related data, e.g. company name, department, job title
  • Data relating to your online behaviour, e.g. IP addresses, user names, data relating to your visits to our website, customer portals or app, actions performed on our websites and customer portals, location of access
  • Information about your interests and preferences that you share with us, e.g. via our contact form or other communication channels
  • Information about your professional career, e.g. vocational training, previous employers, other qualifications

as well as other information comparable to these data categories.

3.1 Sensitive data

Sensitive data, i.e. special categories of personal data such as information on religious affiliation or trade union membership, is not collected in this way.

3.2 Personal data of minors

Personal data of children or minors is only collected if they create a customer account with us, register on the career portal, use our communication channels or use the app.

3.3 Use of cookies and data collection by external service providers

3.3.1 What are cookies?

Cookies are files that are stored on your computer by our website or customer portals when you visit the site. These files store information that makes your use of this site more efficient.

You can manage the setting of various cookies and view further information about these cookies at the following link.

Cookie settings

In addition, we use the following cookies:

X

This offer uses the buttons and content of the X service. These buttons are provided by X Corp., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. They are recognisable by terms such as "X" or "Follow", combined with a stylised black X. With the help of the buttons, it is possible to share a post or page of this offer on X or to follow the provider on X.

When a user visits a page on this website that contains such a button, their browser establishes a direct connection to X's servers. The content of the X button is transmitted directly from X to the user's browser. The provider therefore has no influence on the scope of data that X collects using this plugin and informs users according to its level of knowledge. Accordingly, only the user's IP address and the URL of the respective website are transmitted when the button is accessed, but are not used for any purpose other than displaying the button.

Further information on this can be found in X's privacy policy at x.com/en/privacy.

Stape.io

Provider: Stape.io, 8 The Green, Suite # 12892, Dover, DE 19901, USA

Explanation of how it works:

Our website uses stape.io, a service for server-side management of tracking tags. Stape.io acts as a processor and processes the tracking data on our behalf. This enables secure and efficient data processing by transferring the data from the user's browser to a server, where it is processed.

Purpose of processing:

The use of Server-Side Tagging Made Easy For Everyone - Stape is for the following purposes:

  • Improving the loading times and performance of our website.
  • Increased data security through server-side processing.
  • Compliance with data protection regulations through controlled transfer of tracking data to third-party providers.

Deletion periods:

The tracking data collected by Server-Side Tagging Made Easy For Everyone - Stape will only be processed for as long as is necessary to fulfil the above-mentioned purposes. After the data has been transferred to the downstream services, it will be deleted on a regular basis.

Disclosure of data to third parties:

The data collected by Server-Side Tagging Made Easy For Everyone - Stape is shared with the following third-party providers:

  • Google Analytics
  • Google Ads
  • Meta
  • LinkedIn
  • Xing

Conditions for third-country transfers:

If Server-Side Tagging Made Easy For Everyone - Stape transfers data to countries outside the European Economic Area (EEA), this is only done in compliance with legal requirements to ensure an adequate level of data protection. This is usually done through an EU adequacy decision, the conclusion of standard contractual clauses or other appropriate safeguards.

Link to privacy policy explanations and the privacy policy of Server-Side Tagging Made Easy For Everyone - Stape:

Further information on data protection at Server-Side Tagging Made Easy For Everyone - Stape can be found in their privacy policy at the following link: https://stape.io/eu-gdpr or in the contract for order processing. The contact for data protection enquiries is privacy@stape.io.

YouTube

Our website uses plugins from the YouTube site operated by Google. The operator of the site is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used in the interest of an appealing presentation of our online content. This constitutes a legitimate interest within the meaning of Article 6(1)(f) of the GDPR.

Further information on the handling of user data can be found in YouTube's privacy policy at: www.google.de/intl/de/policies/privacy.

Messaging services

By sending a start message to the company specified in the legal notice (hereinafter referred to as the sender), I consent in accordance with Art. 6 (1) (a) GDPR to the sender using my personal data (e.g. surname and first name, telephone number, messenger ID, profile picture, messages) for direct communication and the data processing required for this purpose using the selected messenger. An existing messaging account with the respective provider is required to use this service.

Web fonts

Our pages use so-called web fonts provided by external providers to ensure uniform font display. When you visit a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
To do this, the browser you are using must connect to external servers. This informs the respective provider that our website has been accessed via your IP address. The
Web fonts are used in the interest of a uniform and appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
If your browser does not support web fonts, a standard font from your computer will be used.
We currently use Google Web Fonts. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
For information on the purpose and scope of data collection and the further processing and use of data by the providers, as well as your rights in this regard and settings options for protecting your privacy, please refer to the respective data protection information provided by the providers.

3.4. Creation of log files

3.4.1. Description and scope of data processing

Every time you visit our website, our system automatically collects data and information from the computer system of the accessing computer.

The following data is collected:

  • Information about the browser type and version used
  • Websites from which the user's system accesses our website
  • Websites accessed by the user's system via our website
  • Date and time of access
  • The user's IP address

The data is also stored in our system's log files. This data is not stored together with other personal data relating to the user.

3.4.2. Legal basis for data processing

The legal basis for the temporary storage of data and log files is Article 6(1)(f) of the GDPR.

3.4.3. Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. We also use the data to optimise the website and to ensure the security of our information technology systems. The data is not evaluated for marketing purposes in this context.

These purposes also constitute our legitimate interest in data processing pursuant to Article 6(1)(f) of the GDPR.

3.4.4. Duration of storage

The data will be deleted as soon as it is no longer required for the purpose for which it was collected. In the case of data collected for the provision of the website, this is the case when the respective session has ended.

In the case of data storage in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of users are deleted or anonymised so that it is no longer possible to identify the accessing client.

3.4.5. Right to object and right to erasure

The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, there is no possibility for the user to object.

3.5. Newsletter dispatch via CleverReach

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. CleverReach is a service that can be used to organise and analyse newsletter distribution. The data you enter for the purpose of receiving the newsletter (e.g. email address) is stored on CleverReach's servers in Germany or Ireland.

Our newsletters sent with CleverReach enable us to analyse the behaviour of newsletter recipients. Among other things, we can analyse how many and which recipients opened the newsletter message and who clicked on which link in the newsletter and how often. With the help of conversion tracking, we can also analyse whether a predefined action (e.g. requesting/downloading information material or registering for seminars) was carried out on our website after clicking on the link in the newsletter. For more information on data analysis by CleverReach newsletters, please visit: Email marketing KPIs in newsletter reporting and Data protection and security in email marketing – CleverReach.

Data processing is based on your consent (Art. 6(1)(a) GDPR). You may revoke this consent at any time by unsubscribing from the newsletter. The legality of data processing operations already carried out remains unaffected by the revocation.

If you do not want CleverReach to analyse your data, you must unsubscribe from the newsletter. We provide a link for this purpose in every newsletter message. You can also unsubscribe from the newsletter directly on the website.

The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from both our servers and the servers of CleverReach after you unsubscribe. Data stored by us for other purposes (e.g. email addresses for the member area) remains unaffected by this.

For further details, please refer to CleverReach's privacy policy at: CleverReach privacy policy.

We have concluded a contract with CleverReach for commissioned data processing and fully implement the strict requirements of the German data protection authorities when using CleverReach.

4 Why do we process your personal data – and on what legal basis?

4.1 Contract fulfilment

We process your data in order to fulfil our contracts. This also applies to information that you provide to us in the course of pre-contractual correspondence. The specific purposes of data processing depend on the respective product and the application submitted and may also be used to analyse your needs and check which products and services are suitable for you. Furthermore, the data is also processed for warranty-related measures.

4.1.1 Performance of the contractual relationship

In order to fulfil the contractual relationship, we require your name, address, telephone number and/or email address so that we can contact you.

4.1.2 Offering goods and services

We also require your personal data in order to check whether and which products and services we can and are permitted to offer you.

Details on the respective purposes of data processing can be found in the contract documents and our General Terms and Conditions.

4.1.3 Conducting the application process

We process the data you have sent us as part of your application in order to check whether your professional qualifications are suitable for the advertised position. We use your information solely for the application process and transfer it to your personnel file upon conclusion of a contract. If no agreement is reached, your information will be deleted or destroyed. We will not use your application information for any purpose other than to carry out the application process.

4.2 After weighing up interests: We improve our services and offer you suitable products.

4.2.1 To strengthen and optimise customer relations

As part of our efforts to continuously improve our relationship with you, we occasionally ask you to participate in our customer surveys. The results of these surveys help us to tailor our products and services even better to your needs.

4.2.2 Data processing and analysis for marketing purposes

Your needs are important to us, and we strive to provide you with information about products and services that are tailored to your specific requirements. To this end, we utilise insights gained from our mutual business relationship and from market research. Our primary objective is to tailor our product recommendations to your needs. In this context, we guarantee that we will always process your data in accordance with applicable data protection laws. Important: You can object to the use of your personal data for this purpose at any time.

What exactly do we analyse and process?

  • Results of our marketing activities to measure the efficiency and relevance of our campaigns;
  • Information from your visits to our website;
  • We analyse the potential demand for our products and services.

4.2.3 Measures to ensure your safety

We use your personal data in the following cases, among others:

  • We analyse your data to protect you and your company from fraudulent activities. This may occur, for example, if you have been the victim of identity theft or if unauthorised persons have gained access to your user account in some other way.
  • In order to improve the reliability of our web applications, our IT support team works closely with you in the event of technical problems. In this context, we also evaluate logs of page accesses, actions performed, etc.
  • in order to ensure IT security
  • in order to be able to record and prove facts in the event of possible legal disputes.

4.3 Based on your consent

If you have consented to the processing of your personal data for one or more specific purposes, we are permitted to process your data. You can revoke this consent at any time with future effect without incurring any costs other than the transmission costs according to the basic rates (costs of your Internet connection). However, the revocation of consent does not affect the lawfulness of the processing carried out until the revocation.

4.4 Due to legal requirements or in the public interest

As a company, we are subject to a wide range of legal requirements (e.g. from tax legislation). We process your personal data in order to comply with our legal obligations.

5 Where we transfer data and why

5.1 Data usage within the company

Within TerraVis GmbH , only those departments that need your personal data to fulfil our contractual or legal obligations or to protect our legitimate interests will have access to it.

5.2 Use of data outside the company

We respect the protection of your personal data and will only disclose information about you if required to do so by law, if you have given your consent, or to fulfil contractual obligations.

The following recipients may be subject to a legal obligation to disclose your personal data, for example:

  • Public authorities or supervisory authorities, e.g. tax authorities, customs authorities
  • Judicial and law enforcement authorities, e.g. police, courts, public prosecutor's office
  • Lawyers or solicitors, e.g. in legal disputes
  • chartered accountant
  • To register the GHG quota, the necessary data is forwarded to the competent authorities (Federal Environment Agency), which then carry out a conformity check and certify the GHG quota.

In order to fulfil our contractual obligations, we cooperate with other companies. These include:

  • Transport service providers and freight forwarders
  • manufacturer
  • Organisers and training providers, if you have registered for specific trade fairs or events through us
  • Banks and financial service providers for handling all financial matters
  • own service providers.

In order to operate efficiently, we use the services of external service providers who may receive personal data from you for the purposes described above, including IT service providers, printing and telecommunications service providers, debt collection, consulting or sales companies.

Important: We take great care with your personal data!

To ensure that service providers adhere to the same data protection standards as we do, we have concluded appropriate contracts for order processing. These contracts regulate, among other things:

  • that third parties only have access to the data they need to perform the tasks assigned to them
  • that only employees of the service providers who have explicitly committed themselves to complying with data protection regulations have access to your data
  • that service providers comply with technical and organisational measures that ensure data security and data protection
  • what happens to the data when the business relationship between the service provider and us is terminated.

For service providers based outside the European Economic Area (EEA), we take special security measures (e.g. by using special contractual clauses) to ensure that the data is treated with the same level of care as within the EEA. We regularly check all our service providers for compliance with our requirements.

Very important: Under no circumstances will we sell your personal data to third parties!

5.3 Data usage within the AGRAVIS Group

In order to provide you with the best possible service, we occasionally exchange data within the group. In doing so, we ensure that the applicable data protection regulations are complied with and that your personal data is adequately protected at all times.

For this reason, we have taken appropriate measures to ensure compliance with data protection regulations within the AGRAVIS Group:

We have concluded appropriate agreements with the individual subsidiaries to ensure that personal data exchanged within the Group remains protected at all times.

In accordance with these agreements and applicable data protection law, we only transfer personal data to our production and sales subsidiaries for the purposes specified in this privacy policy. In doing so, we support our subsidiaries both operationally and in complying with the technical and organisational measures that we also implement at the parent company in order to ensure the security of your personal data. Where possible, we protect your data through pseudonymisation or anonymisation measures. If subsidiaries are located outside the EEA, we take appropriate measures to ensure that the personal data processed there is protected in the same way as within the EEA. In order to offer you the best possible service, we occasionally exchange data within the group. In doing so, we ensure that the applicable data protection regulations are complied with and that your personal data is adequately protected at all times.
For this reason, we have taken appropriate measures to ensure compliance with data protection regulations within the AGRAVIS Group:
We have concluded appropriate agreements with the individual subsidiaries to ensure that personal data exchanged within the Group remains protected at all times.
In accordance with these agreements and applicable data protection law, we only transfer personal data to our production and sales subsidiaries for the purposes specified in this privacy policy. In doing so, we support our subsidiaries both operationally and in complying with the technical and organisational measures that we also implement at the parent company in order to ensure the security of your personal data. Where possible, we protect your data through pseudonymisation or anonymisation measures. If subsidiaries are located outside the EEA, we take appropriate measures to ensure that the personal data processed there is protected in the same way as within the EEA.

6 Are you obliged to provide us with personal data?

In the context of the business relationship between you and AGRAVIS, we require the following categories of personal data from you:

  • all necessary data for establishing and conducting a business relationship
  • Data required for the fulfilment of contractual obligations
  • Data that we are legally obliged to collect
  • Without this data, we are unable to enter into or execute contracts with you.

7 Deletion periods

In accordance with applicable data protection regulations, we do not store your personal data for longer than we need it for the purposes of the respective processing. If the data is no longer required to fulfil contractual or legal obligations, we regularly delete it, unless its temporary storage is still necessary. The following reasons may exist for further storage:

  • Commercial and tax law retention requirements must be observed: The retention periods, primarily in accordance with the provisions of the Commercial Code and the Tax Code, are up to 10 years.
  • To preserve evidence in the event of legal disputes within the framework of the statutory limitation provisions: limitation periods in civil law can be up to 30 years, with the regular limitation period expiring after three years.

8 Your rights

You also have certain rights in relation to the processing of your personal data. More detailed information can be found in the relevant provisions of the General Data Protection Regulation (Articles 15 to 21).

8.1 Right to information and correction

You have the right to obtain information from us about which of your personal data we process. If this information is no longer correct, you can request that we correct the data or, in the case of incomplete information, that we supplement it. If we have passed on your data to third parties, we will inform the relevant third parties in accordance with the applicable legal situation.

8.2 Right to erasure

You may request the immediate deletion of your personal data under the following circumstances:

  • If your personal data is no longer required for the purposes for which it was collected
  • If you have withdrawn your consent and there is no other legal basis for data processing
  • If you object to the processing and there are no overriding legitimate grounds for data processing
  • If your data is being processed unlawfully
  • If your personal data must be deleted to comply with legal obligations.

Please note that before deleting your data, we must check that there is no legitimate reason for processing your personal data.

8.3 Right to restriction of processing ("right to block")

You may request that we restrict the processing of your personal data for one of the following reasons:

  • If you dispute the accuracy of the data until we have had the opportunity to verify its accuracy;
  • If the data is being processed unlawfully, but you request only the restriction of the use of the personal data instead of its deletion
  • If we no longer need the personal data for the purposes of processing, but you still need it to assert, exercise or defend legal claims
  • If you have objected to the processing and it is not yet clear whether your legitimate interests outweigh ours.

8.4 Right to object

8.4.1 Right to object in individual cases

If the processing is carried out in the public interest or on the basis of a balancing of interests, you have the right to object to the processing on grounds relating to your particular situation. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or because your personal data serves to assert, exercise or defend legal claims. The objection does not affect the lawfulness of the processing carried out until the objection was made.

8.4.2 Advertising objection

In cases where your personal data is used for advertising purposes, you may object to this form of processing at any time. We will then no longer process your personal data for these purposes.

The objection may be made informally and should be addressed to:

TerraVis GmbH
Industrieweg 110
48155 Münster
info@terravis-biogas.de
Telephone +49(0)251 . 682-2055

8.5 Right to data portability

You have the right to receive personal data that you have provided to us for processing in a transferable and machine-readable format upon request.

8.6 Right to lodge a complaint with the supervisory authority (Art. 77 GDPR)

We always try to process your enquiries and claims as quickly as possible in order to protect your rights accordingly. However, depending on the frequency of enquiries, it may take up to 30 days before we can provide you with further information about your request. If it takes longer, we will notify you promptly of the reasons for the delay and discuss the further procedure with you.

In some cases, we are not permitted or able to provide you with information. Where legally permissible, we will inform you of the reason for refusing to provide information.

If you are still not satisfied with our responses and reactions, or if you believe that we are in breach of applicable data protection law, you are free to lodge a complaint with both our data protection officer and the competent supervisory authority. The supervisory authority responsible for us is:

State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia

Kavalleriestraße 2-4
40213 Düsseldorf

Phone 02 11 . 384 24-0
Fax 02 11 . 384 24-10

Email: poststelle@ldi.nrw.de
Url: www.ldi.nrw.de

9 Version

This privacy policy is current as of 20 September 2020 . Registered customers will be informed of any changes to the privacy policy. Previous versions of the privacy policy are available on the website or from our data protection officer.