Privacy policy

DTG eG takes the protection of your personal data very seriously. We treat your personal data confidentially and according to the legal data protection regulations as well as this data protection declaration.

This privacy policy informs you of the nature, scope and purposes of processing. The terms used correspond to the definitions of Article 4 of the General Data Protection Regulation (GDPR).


Controller
DTG DEUTSCHE TRANSPORT-GENOSSENSCHAFT
BINNENSCHIFFFAHRT eG
Fürst-Bismarck-Straße 21
47119 Duisburg eMail   
This email address is being protected from spambots. You need JavaScript enabled to view it.
Tel.: 0203 I 800 04-0
Fax:  0203 I 800 04-53   

Types of processed data – Contact data (e.g. first name, surname, telephone number)
– Usage data (e.g. visited web pages, interest in content, access times).
– Communication data (e.g. IP address, browser version)

Categories of data subjects – Users of this website

Purpose of the processing – Provision of company information
– Provision of contact options
– Security measures to protect the website

Terms used – Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). A natural person is considered identifiable if they can be identified either directly or indirectly, in particular through the assignation of an identifier such as a name, an identification number, location data, online ID, or one or several other characteristics which form the expression of a person’s physical, physiological, genetic, psychological, economic, cultural or social identity. Processing is defined as any activity performed with or without help of automated processes or each such sequence of activities related to personal data such as the collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, the alignment or combination, restriction, erasure or destruction. The word “Controller” is used to designate a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Applicable legal basis
The basis of data protection law is the individual’s right to self-determination. In accordance with Article 13 GDPR, we shall inform you about the legal basis of our data processing. The legal basis for obtaining consent is point (a) of Art. 6(1) and Art. 7 GDPR; the legal basis for the processing of data to provide our services and implement contractual measures as well as replying to requests is point (b) of Art. 6(1) GDPR; the legal basis for the processing of data to comply with our legal obligations is point (c) of Art. 6(1) GDPR; and the legal basis for the processing of data to protect our legitimate interests is point (f) of Art. 6(1) GDPR. If processing is necessary to protect the vital interests of the data subject or another natural person, point (d) of Art. 6(1) GDPR serves as legal basis.  

Cooperation with third parties or data processors
If we disclose or transfer or make available any data to other persons and companies (third parties) during processing, this will only occur based on statutory permission, your consent, a legal obligation that requires it or our legitimate interests. If we commission third parties with the processing of data based on data processing, this will occur on the basis of Art. 28 GDPR.

There will be no transfer of your data to third countries.

Rights of the data subjects
Access (Article 15 GDPR)
The data subject has the right to obtain confirmation as to whether or not personal data concerning them is being processed. If this is the case, they have a right of access to this data as well as to information, including about the purposes of processing, the origin of the data, its recipient, the duration of storage and the rights of the data subject.

Rectification (Article 16 GDPR)
The data subject has the right to request that the inaccurate personal data concerning them is rectified and that incomplete personal data is completed.

Erasure (Article 17 GDPR)
The data subjects have the right to request the erasure of their data – for example, if it is no longer required for the purpose for which it was originally collected or processed or if the consent issued for this purpose has been withdrawn. As a special implementation of the right of erasure, there is also a “Right to be forgotten”, where the responsible body has made the data to be erased public. In this case, they must take reasonable steps to inform the bodies which are processing this data that the data subject has requested the erasure by such controllers of all links to, or copy or replication of, this personal data.

Restriction of processing (Article 18 GDPR)
In certain cases, the data subject may also request a restriction of processing. For example: if the data subject has objected to processing but it is not yet clear whether the legitimate grounds of the controller override those of the data subject.

Right to data portability (Article 20 GDPR)
The right to data portability gives data subjects, in certain circumstances, the right to obtain a copy of the personal data concerning them in a commonly used and machine-readable file format. Complaints (Article 77 GDPR)
Data subjects have the right to lodge a complaint with the competent supervisory authority. Right of withdrawal (Article 7(3) GDPR)
Data subjects have the right to withdraw their consent with future effect. Right to object (Article 21 GDPR)
Data subjects can object to the future processing of their personal data at any time. The right to object refers to processing for direct marketing purposes in particular.

Erasure of data
The data which is processed by us is erased or its processing is restricted in compliance with Art. 17 and 18 GDPR. Unless expressly stated in this privacy policy, the data we have saved will be erased as soon as it is no longer required for their purpose and the erasure does not conflict with any legal obligation to preserve records. If the data is not erased due to it being required for other purposes which are permitted by law, its processing will be restricted. This applies, for example, to data which has to be preserved due to commercial law or tax law.

Collection of access data and log files
Based on our legitimate interest (point (f) of Art. 5(1) GDPR), we store data on every access to the web server in order to ensure its availability. Access data includes the name of the visited web page, file, date and time of access, the volume of data, status messages, browser type including version, the user’s operating system, IP address and, if applicable, other technical information. Log files are saved for security reasons for a maximum of 30 days and are erased afterwards. Data for the purpose of providing proof is exempted from erasure until the incident has been clarified.

Contact
When making contact (e.g. email, telephone), information of the user is processed for the purposes of processing the request and for performing the necessary steps. User information can be saved in a suitable program for customer management or in a comparable organisation system. We erase the data which was stored on the basis of requests provided this is no longer required and provided the statutory retention obligations do not oppose this.

Cookies and the right to object to direct marketing
“Cookies” is the term given to small files which are saved on the computers of the users. Different information can be saved within cookies. A cookie can be used to save information about a user (such as their browser version, interests of the user) during or also after their visit to a website. These cookies may be saved temporarily or permanently. We may make use of temporary and permanent cookies, and explain this usage within the framework of our privacy policy. If the data subject does not wish to have cookies stored on their computer, they are asked to disable the relevant option in the system settings of their browser. The prevention of cookies may lead to restrictions regarding the functionality of this website.

Integration of YouTube videos
On our website, we use plugins of the video portal YouTube, which is operated by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). When you visit one of our webpages where such a YouTube video is embedded, a connection to the servers of YouTube is established. This allows YouTube to collect information about your user behaviour, particularly if you are logged in to your own YouTube or Google account. This data can be linked with your profile. You can prevent this by logging out of your account before visiting our website. We embed YouTube videos in the extended data protection mode. According to information from YouTube, this means that data is only transmitted to YouTube when you actively play a video. However, even in this mode, data processing upon which we have no influence may still take place. This processing of this data takes place on the basis of point (f) of Article 6(1) GDPR. Google has certified itself as part of the EU-US Privacy Shield agreement (cf. https://www.dataprivacyframework.gov/). For more information about the data processing by YouTube, please refer to the privacy policy of Google at: https://policies.google.com/privacy

Integration of Vimeo videos
On our website, we use plugins of the video portal Vimeo which is operated by Vimeo LLC (555 West 18th Street, New York 10011, USA). When you visit one of our webpages where such a Vimeo video is embedded, a connection to the servers of Vimeo is established. In so doing, Vimeo can collect information about your user behaviour. The processing of this data takes place on the basis of point (f) of Article 6(1) GDPR. Vimeo LLC has certified itself as part of the EU-US Privacy Shield agreement (cf. https://www.dataprivacyframework.gov/). For more information about the data processing by Vimeo, please refer to the privacy policy at: https://vimeo.com/privacy

CloudFlare website protection
On our website, a web service from the company CloudFlare Inc., 101 Townsend St, 94107 San Francisco (hereinafter: CloudFlare) is loaded. We use this data to guarantee the complete functionality of our website. In this context, your browser may transfer personal data to CloudFlare. The legal basis for the data processing is the legitimate interest (point (f) of Art. 6(1) GDPR) in a fault-free function of the website. CloudFlare has certified itself as part of the EU-US Privacy Shield agreement (cf. https://www.dataprivacyframework.gov/). The data is erased as soon as the purpose of its processing has been fulfilled. You can find further information on the handling of transferred data in the CloudFlare privacy policy: https://www.cloudflare.com/de-de/trust-hub/gdpr/. You can prevent the collection and processing of your data by CloudFlare by deactivating the execution of script code in your browser, or by installing a script blocker in your browser.

Data protection officer
In case of questions regarding data protection, you can also contact our data protection officer directly:
Guido Petermann
Oberbilker Allee 203
40227 Düsseldorf
Tel.: 0211 72139550
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
www.planitas.de