data privacy statement
delta rhine corridor
Welcome to our website. On this page you will find information on how we process your personal data when you visit our website.
We attach great importance to compliance with all applicable data protection rules and regulations, particularly the General Data Protection Regulation (Regulation (EU) 2016/679; also referred to as "GDPR"), which will come into full force and effect on 25 May 2018.
Name and address of controller
This website is operated by Open Grid Europe GmbH, Essen (hereinafter also referred to as "Open Grid Europe", "OGE" or "we"). OGE is solely responsible for all data processing operations associated with your visit, unless otherwise stated below.
Our contact address is:
Open Grid Europe GmbH
45141 Essen (Germany)
For further information about our company, please refer to our Legal Notice.
Contract details of data protection officer
Our data protection officer can be contacted at email@example.com.
Visiting and interacting on the website
Data processed: Whenever you visit our website, we will collect certain (mainly technical) information, which may, however, be classified by the courts as personal data. This information includes the IP address, device identification, browser features, operating system details, language settings, referring URLs, the duration of your visit and the pages displayed. If you use our contact forms, we will collect the data submitted by you and the time of data transmission.
Processing purposes: We will use the data submitted by you via the contact form and other forms to process your request and to initiate resulting improvements. When using other information, we do not as a rule draw any conclusions about the data subject. This information is used to correctly deliver the contents of our website, to guard against cyber-attacks, for scientific research and statistical purposes, and to provide law enforcement authorities with the information required for prosecution in the event of a cyber-attack.
Legal basis of data processing: In part, the consent of data subjects; performance of a contract or steps taken prior to entering into a contract; compliance with a legal obligation of OGE; processing for the purposes of the legitimate interests pursued by OGE and third parties (cf. Article 6 para. 1 lit. (a) to (f) of the GDPR).
Any further statistical analysis of collected data will only take place after any reference to persons has been removed.
Pursued legitimate interests within the meaning of Article 6 para. 1 lit. (f) of the GDPR: Interest in operating a website; protecting our computer systems against attacks and optimising our website; tracking attacks on our computer systems.
Categories of recipients of personal data: The personal data mentioned in this section will only be disclosed to service providers for the operation of our website. Data submitted via the contact form and other forms will be forwarded to the persons needed / responsible for answering such enquiries. If we decide to use a service provider for contacting you in the future, the necessary information will also be made available to this service provider. Agreements on commissioned processing pursuant to Art. 28 DSGVO have been or will be concluded with the service providers in advance for the processing of your personal data. As a matter of principle, your personal data will only be passed on with your express consent. This does not apply to cases in which OGE is obliged to disclose data due to legal provisions or by enforceable official or judicial order (Art. 6 para. 1 lit. c DSGVO).
No data transfer to recipients in unsafe third countries: OGE does not intend to transfer the personal data mentioned in this section to recipients in unsafe third countries (e.g. on the basis of standard contractual clauses).
Storage period: The aforementioned personal data will generally be stored for a period of seven days, after which the data will be rendered anonymous or be deleted. This does not include data that (i) is still needed to investigate or track a cyber-attack or (ii) must be stored further in accordance with a legal or statutory retention obligation. We plan to keep the data you submit via the contact form and other forms for a period of two years, after which the data will be deleted.
Obligation to provide personal data: The provision of the aforementioned personal data by you is neither required by law nor by any contractual agreements. Processing restrictions can restrict the use of some of our website functions.
No automated decision making (profiling): The above personal data will not be used to automatically make decisions that have a legal effect on you or significantly affect you in a similar way.
We use Google services on our website. The operator is Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google").
When Google services are used, the data collected may be transmitted, stored and used by Google and other group companies in the USA – including but not limited to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter also referred to as "Google"). This entails the risk, for example, that your data may be subject to extensive access by security authorities.
Third country transfer: Where data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have agreed EU standard contractual clauses [https://business.safety.google/adsprocessorterms/sccs/eu-c2p/] with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective, and you do not have the same rights there as within the EU/EEA. You may not have any legal remedies against access by authorities.
Currently our collaboration with Google in relation to the components “Google Analytics 4”, “Google Analytics Universal” and “Google Tag Manager”, which are described in more detail below, is based on the contract for commissioned processing provided by Google pursuant to Article 28 of the GDPR (available at: https://privacy.google.com/businesses/processorterms/). Within the scope of this agreement, Google is entitled to engage subcontractors. A list of these subcontractors is available at https://privacy.google.com/businesses/subprocessors/.
For Google Analytics Universal and Google Analytics 4, the pseudonymisation of IP addresses is activated by default. Due to IP pseudonymisation, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
During your website visit, your user behaviour is recorded in the form of "events". Events can be: Page views, first visit and repeat visits to the website, start of session, your "click path" - interaction with the website, scrolls to the end of the page, clicks on external links, internal search queries, interaction with videos, file downloads, language settings.
The following is also recorded: Your approximate location, your IP address in shortened form, technical information about your browser and the terminal devices you use, your internet service provider, the referrer URL.
Processing purposes: On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, and compiling reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website and the success of our marketing campaigns (conversion measurement).
The purpose of the Google Analytics components is our legitimate interest in analysing the flows of visitors to our website and measuring its reach (purpose pursuant to Article 6.1 (f) of the GDPR). The use of Google Analytics also takes place on the basis of your express consent (Article 6.1 (a) of the GDPR). The granting of consent is voluntary. You can revoke your consent at any time in the cookie settings. The lawfulness of any processing carried out on the basis of consent before such revocation remains unaffected.
Google Analytics places statistics cookies on your computer. Please refer to the section on “Cookies” below for more information about cookies. The cookies allow the use of our website to be analysed. Each time you visit one of the pages of this website, the Internet browser on your computer is automatically prompted by the relevant Google Analytics component to transmit data to Google for the purpose of online analysis.
Revocation: You can revoke your consent at any time with effect for the future by accessing the cookie settings via the link button at the beginning of this page and changing your selection there. Such revocation shall be without prejudice to the lawfulness of the data processing carried out on the basis of the consent up until the revocation thereof.
You can also prevent the storage of cookies from the outset by setting your browser software accordingly. However, if you configure your browser to reject all cookies, functionalities on this and other websites may be restricted. You can also prevent the collection of data generated by the cookie and relating to your use of the website (including your IP address) by Google, and the processing of this data by Google, by
a. not giving your consent to the setting of the cookie or
b. downloading and installing the browser add-on to deactivate Google Analytics here.
Preventing the use of Google Analytics 4 and Google Analytics Universal as described above will have no influence on the usability of our website.
Storage period: The data sent by us and linked to cookies are automatically deleted after 2 months. Data whose retention period has been reached is automatically deleted once a month.
Google Tag Manager
We also use the Google service “Google Tag Manager”.
Google Tag Manager allows us to manage the analytics tools (such as Google Analytics 4 and Google Analytics Universal) via one standardised application. The Tag Manager manages the so-called tags assigned to the respective analytics tool. Tags are code elements that are built into the source text of our website for the use of tracking and analysis tools such as Google Analytics and Google Analytics Universal. With the help of the Google Tag Manager, we are able to manage the tags required for use of the tracking and analytics tools in a uniform manner and thus to save computing and programming power.
If and to the extent that personal data is processed via the Google Tag Manager, this processing is based on our legitimate interest in the efficient management of tags/analytics tools used by us (Article 6.1 (f) of the GDPR).
No personal data from the cookies is transmitted to any recipients unless otherwise stated in this data privacy statement.
There are no intentions to transfer data to third countries outside the European Economic Area (with the exception of Google Analytics' cookies – as outlined above).
We use the following cookies for the purposes specified in each case with the expiration dates specified in each case:
|Neos_Session||Web server session cookie||Session|
|ARRAffinity||Cookie on the Windows Azure cloud platform for |
|_ga||cookie to generate statistical data on how the visitor |
uses the website
|_gid||GoogleAnalytics cookie distinguishes anonymous users||1 day|
|_ga M8915HMTS9||Used to maintain session status.||2 years|
|_gac_gb_ M8915HMTS9||Contains campaign-related information. If Google Analytics and Google Ads accounts are linked, this cookie will be read by Google Ads website conversion tags unless you disable it.||90 days|
A "Session" ends when you close your browser.
Your rights, which OGE will be happy fulfil at your request, include the right to:
- obtain information about your personal data;
- have incorrect personal data about you corrected;
- have your personal data deleted or restrict the processing of your personal data;
- have the personal data concerning you transferred in a structured, common and machine-readable format to you or – as far as technically feasible – to a third party; or
- object to the processing of your personal data if such processing is based on legitimate interests (Article 6.1 (c) and (f) of the GDPR).
Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority.
Withdrawal of consents: You have the right to withdraw a consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
No responsibility for links to other websites
We have no control over the Internet pages of other providers which are offered under other domain names. Insofar as our website refers to such third-party offers, we cannot accept any responsibility for the third party's handling of your personal data. Please contact the respective third party for further information.
Open Grid Europe
Data Protection Officer
Last revised: 30 April 2023