Data Privacy Statement

eLearning Software Avendoo

back to privacy policy

Information on the processing of personal data by Deutsche Saatveredelung AG pursuant to Article 13(f) of the GDPR

Who is the data controller?

Deutsche Saatveredelung AG
Address: Weissenburger Straße 5, 59557 Lippstadt
Email: info@dsv-saaten.de
Phone: +49 2941 296 0
Fax: +49 2941 296 100

The parent company is the data controller for the data processing described below, either alone or jointly with the group companies.

How can you contact our Data Protection Officer?

You can contact our Data Protection Officer at the following address: datenschutz@dsv-saaten.de 

For what purposes and on what legal basis do we process your personal data?

We process your personal data to provide you with access to our learning platform and to deliver digital learning, training, and qualification programs.

  • For employees, additionally, where applicable, in accordance with the relevant labor law data protection regulations, such as Section 26 of the German Federal Data Protection Act (BDSG), to the extent applicable
  • Art. 6(1)(b) GDPR, to the extent that processing is necessary for the implementation of pre-contractual measures or a contract,
  • Art. 6(1)(f) GDPR, to the extent that processing is necessary to safeguard our legitimate interests,
  • Art. 6(1)(c) GDPR, to the extent that legal obligations exist, such as documentation or proof obligations

If country-specific regulations apply, these will be taken into account accordingly.

What categories of your data do we process?

  • Master data such as last name, first name, business contact information, username 
  • Organizational data such as department, location, role, cost center, or affiliations 
  • Learning data such as booked or assigned courses, processing status, test results, participation history, certificates, and qualification levels 
  • Technical log and usage data such as login times, device/browser information, and system logs, to the extent necessary for operation and security

Who has access to your personal data (internally and externally)?

At our company, access to your data is granted to those departments that require it to fulfill contractual and legal obligations. Depending on the purpose, this may include:

  • Internal departments: Human Resources, Executive Board, management, employees, Works Council, IT, Marketing, EHS
  • External departments: Parent company/subsidiaries and branches of the Group, data processors, authorities (data protection supervisory authorities), cooperation partners

Data transfer and data processing within/outside the European Union or the European Economic Area

Your personal data will be processed by the parties listed above both within and outside/only within the European Union and the European Economic Area (EEA), always in compliance with contractual restrictions regarding confidentiality and security and in accordance with applicable data protection laws and regulations. We do not disclose your personal data to any parties not authorized to process it.

We will always ensure that appropriate measures are taken in accordance with all applicable laws to protect such transfers of your personal data outside the European Union at all times.

How long do we store your personal data?

We store your personal data only for as long as necessary for the stated purposes or as required by statutory retention periods. User accounts, learning progress, and records are deleted or anonymized once the purpose no longer applies or upon expiration of internal retention periods, unless there are legal or legitimate grounds for longer storage.

If country-specific retention obligations apply, these will be taken into account accordingly.

Would you face any disadvantages if you do not provide us with the data?

If you do not provide us with the information, we cannot register you on the learning platform. 

What rights do you have?

  • Right of access 
  • Right to rectification 
  • Right to erasure 
  • Right to restriction of processing
  • Right to data portability

Provided the legal requirements are met, you have the right to:

  • Request information about which of your data we process (Art. 15 GDPR);
  • To have your data corrected or deleted, provided that this does not conflict with our legitimate interest or a legal obligation to process the data (Art. 16, 17 GDPR);
  • To restrict the processing of your data (Art. 18 GDPR);
  • To exercise your right to data portability (Art. 20 GDPR).

Note on withdrawal: If you have given consent regarding certain processing activities, you may withdraw this consent at any time with effect for the future. This withdrawal will not affect the processing of data that took place prior to the withdrawal. 

Note on objection: If we process your data on the basis of a legitimate interest, you may also object to this processing at any time pursuant to Art. 21 GDPR.

To exercise your rights, please contact us using the contact details provided above.

Is automated decision-making/profiling used?

As part of the processing, AI-supported applications may be used to assist with analysis, structuring, or evaluation processes. These systems serve exclusively to prepare for and support decision-making processes. There is no exclusively automated decision-making within the meaning of Article 22 of the GDPR. All final decisions are always made by natural persons.

Where can you file a complaint regarding the processing of your personal data, if applicable?

If you believe that we are processing your data unlawfully, you have the right to lodge a complaint with the competent supervisory authority. The competent authority for the[ parent company] is: 

Enter the competent supervisory authority, including contact details and address, here

State Commissioner for the State of North Rhine-Westphalia
Kavalleriestraße 2 - 4, 40213 Düsseldorf
Tel.: 0211 38424-0 Fax: 0211 38424-10
Email: poststelle@ldi-nrw.de 

An overview of national data protection supervisory authorities can be found here.

The international data protection authorities are available here.