Privacy policy

Cloudfarms is pleased about your visit to our website and your interest in our company. The topic of data protection has the highest priority at BASF. Therefore, we would like to inform you in detail about it in the following:

A. Who is responsible for data processing and who is our data protection officer?
B. What data do we process, for what purposes, for how long and on what legal basis?
C. Are you obliged to provide us with this data?
D. To whom do we pass on your personal data?
E. How do we safeguard your personal data?
F. What rights do you have?
G. Where can you complain?
H. Data protection for minors

A. WHO IS RESPONSIBLE FOR DATA PROCESSING AND WHO IS OUR DATA PROTECTION OFFICER? YOU CAN FIND THE PERSON RESPONSIBLE FOR DATA PROCESSING AT HERE.

Our data protection officer is:
Alexandra Haug
EU Data Protection Officer
67056 Ludwigshafen
+49 (0) 621 60-0
e-mail: data-protection.eu@BASF.com

B. WHAT DATA DO WE PROCESS, FOR WHAT PURPOSES, FOR HOW LONG AND ON WHAT LEGAL BASIS?

In the following, we inform you about the data processing on our site (a), its purposes and legal basis (b) as well as the respective storage period and, if applicable, specific objection and removal options (c).

1. log files

a. Data processing
If you visit our website for information purposes only, i.e. if you do not register or transmit data in any other way (e.g. via a contact form), the following information is automatically transmitted from your browser to our server:
– IP address of your device
– Information about your browser
– Name of the website from which you visit us
– Name of the visited page (URL) or the opened file
– Date and time of your visit
– Status information such as error messages
– Transferred data volume and the access status (file transferred, file not found, etc.)
– Operating system and version of your computer’s operating system and the name of your access provider
b. Purposes and legal basis
When you visit the Cloudfarms web site, we use the IP address and other information automatically transmitted to our server by your browser under B. 1. a. to
(i) provide you with the requested content
(ii) ensure the security and stability of our website and to trace unauthorized use
(iii) enable a comfortable use of our website.
The legal basis for the data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the above listed purposes for data processing. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person.
c. Storage period
The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session is ended. In the case of storage of the data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses are anonymized by deleting the last eight bits, so that an identification of you is no longer possible.

3. Contact form and e-mail

a. Data processing
Our web pages contain contact forms as well as links to send us an e-mail directly. If you use one of these contact forms, the data which you provide in such forms will be transmitted to us and processed. The mandatory data that must be filled in for electronic contact via the respective contact form are marked with (*). If you provide us with additional data, this is done voluntarily.
If you send us an e-mail, we will process the associated metadata and the content of the message.
b. Purpose and legal basis
Your data will be processed to enable us to contact you, to process your request and to provide you with our respective services, to prevent misuse of the contact form and to ensure the security of our information technology systems.
The legal basis for the processing of data classified as being mandatory is Art. 6 para. 1 sentence 1 lit. f GDPR. The aforementioned purposes also include a legitimate interest in the processing of the data. If the purpose of the contact is the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b GDPR. The legal basis for the processing of the data that you have voluntarily provided us with is your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
c.Storage period
The personal data of the person concerned will be deleted or made unavailable as soon as the purpose of the storage does no longer apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. Data will also be deleted or made unavailable when a storage period prescribed by the above-mentioned provisions expires, unless there is a need to continue storing the data for the purpose of concluding or fulfilling a contract.
In case of a consent, you have the right to revoke such consent at any time, without affecting the lawfulness of the processing carried out on the basis of the consent until revocation. To do so, please change the settings in the Privacy Preference Center.
d.Social media hyperlink
We have included hyperlinks to the following social media services on our website: LinkedIn, Facebook, YouTube.
These hyperlinks are designed in the form of the corresponding logos and are stored on our own server. This means that when our website is loaded for the first time, no data about you as a user are transferred to the respective provider. You will be directed to the respective website only if you click on the logos. Further data about you may be processed on this website.
We have no influence on this data processing on the respective linked websites.

C. ARE YOU OBLIGED TO PROVIDE US WITH THIS DATA?

When you visit our website, the information specified in section B. 1. a. as well as the information from the cookies classified as strictly necessary is processed automatically. The transfer of this information is voluntary. Without the provision of this personal data, we cannot display the requested page.
If you
– allow us to use cookies that are not classified as strictly necessary,
– want to contact us and send us an e-mail or use our contact form (including the necessary reCAPTCHA query) or
– want to see embedded YouTube videos
the transfer of the information is voluntary.
If you contact us, we cannot answer your inquiry in the chosen way without the provision of the personal data required in the individual case. As far as cookies are concerned, the lack of consent can lead to a restriction of the functionality of the website or parts of it. Embedded videos cannot be played without your consent.

D. TO WHOM DO WE PASS ON YOUR PERSONAL DATA?

Within our company, only persons and departments are granted access to your personal data as far as they need it to fulfil the abovementioned purposes.
We also involve service providers. These service providers will only act on our instructions and are contractually obliged to comply with the applicable data protection requirements.

Otherwise, we will only pass on your data to third parties if:
– you have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
– the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
– there is a legal obligation for us to pass on the data in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR, or
– this is legally permissible and, in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR, is necessary for the fulfilment of contractual relationships with you.
A transfer of your personal data to service providers in a third country will only take place if the special requirements of Art. 44 ff. GDPR are fulfilled.

E. HOW DO WE SECURE YOUR PERSONAL DATA?

Cloudfarms uses technical and organizational security measures to protect your personal data from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously revised in line with technological developments.

F. WHAT RIGHTS DO YOU HAVE?

You have certain rights under the General Data Protection Regulation including the right to request a copy of the personal information we hold about you, if you request it from us in writing:
Right to access: the right to obtain access to your information (if we’re processing it), and certain other information (like that provided in this Privacy Policy);
Right to correct: if your personal information is inaccurate or incomplete you have the right to have your personal information rectified;
Right to erasure: this is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your information where there’s no compelling reason for us to keep using it. This is not a general right to erasure; there are exceptions. For example, we have the right to continue using your personal data if such use is necessary for compliance with our legal obligations or for the establishment, exercise or defense of legal claims;
Right to restriction of processing: the right to suspend the usage of your personal information or limit the way in which we can process it. Please note that this right is limited in certain situations: When we are processing your personal information that we collected from you with your consent you can only request restriction on the basis of: (a) inaccuracy of data; (b) where our processing is unlawful and you don’t want your personal information erased; (c) you need it for a legal claim; or (d) if we no longer need to use the data for the purposes for which we hold it. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for restriction of the use of their personal information to make sure the restriction is respected in future;
Right to data portability: the right to request that we move, copy or transfer (where technically feasible) your personal information in a structured, commonly used and machine-readable format, for your own purposes across different services;
Right to object: the right to object to our processing of your personal information including where we process it for our legitimate interests, direct marketing;
Right to withdraw consent: if you have given your consent to anything we do with your personal information, you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal information with your consent up to that point is unlawful).
Exercising these rights is free of charge. However, you are required to prove your identity by means of a two-factor-authentication. We will engage reasonable efforts consistent with our legal duty to supply, correct or delete personal information about you.
To exercise your rights, please contact us, for example by e-mail or by post. You will find the contact details in section A.

G. WHERE CAN YOU COMPLAIN?

You have the right to lodge a complaint with our data protection officer (for contact details see Section A) or with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.
In either case, you can contact our Lead Data Protection Authority:
State Commissioner for Data Protection and Freedom of Information of Rhineland-Palatinate (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz)
Hintere Bleiche 34
55116 Mainz
https://www.datenschutz.rlp.de/de/general-storage/footer/ueber-den-lfdi/kontakt/
E-Mail: poststelle@datenschutz.rlp.de

H. DATA PROTECTION FOR MINORS

This website is intended for persons who are at least 18 years old. If a minor submits personal data via this website, we will delete this data and not process it further as soon as we become aware of this fact.