50Hertz Logo linking to 50Hertz Website Amprion Logo linking to Amperion Website TenneT Logo linking to TenneT Website TransnetBW Logo linking to TransnetBW Website
Header image of a transmission tower

Data protection

Privacy Policy

Collection and processing of personal data

Thank you for visiting regelleistung.net, the joint website of Germany's four transmission system operators (TSOs), and for your interest in the issues covered here. You can rest assured that we take the protection of your personal data very seriously and want you to have peace of mind and feel secure when using our site. We treat your personal data as confidential and in accordance with the statutory data protection requirements of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) as well as this Privacy Policy.

The following information summarises our processing of your personal data and your rights.

1. Who is the controller responsible for data processing and who can I contact?

The controller is:

50Hertz Transmission GmbH
Heidestraße 2
DE-10557 Berlin
Tel.: +49 (0) 30 - 5150 - 0
Fax: +49 (0) 30 - 5150 - 2199
Email: info@50hertz.com

You can also contact our external data protection officer:

Dipl.-Inform. Udo Wenzel
Agentia Wirtschaftsdienst
Budapester Str. 31
DE-10787 Berlin
Tel.: +49 (0)30 2196 4390
Fax: +49 (0)30 2196 4392
Email: udo.wenzel@agentia.de

2. Who does this Privacy Policy apply to?

The Privacy Policy applies to all visitors to this website, including vendors, customers, prospects, suppliers and service providers.

3. What data do we use?

As a rule, you can visit our website without disclosing your identity to us unless:

you send us an email or a message via a contact form;

you become a registered user of our web portals or other services; or

you give your consent to be sent information material about our activities.

In such cases we only process the data required to respond to your request, handle your registration or send you information material. The data being collected can be clearly identified from the relevant input forms.

4. Why do we use your data and on what legal basis do we do so?

We process your personal data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). Please also note in this regard our 'Information regarding your right to object pursuant to Article 21 of the GDPR' below.

a) To fulfil contractual obligations (Art. 6(1)(b) of the GDPR)

The processing of personal data is necessary for the performance of a contract and in order to take steps at your request prior to entering into a contract.

Use of our web portals and other services

b) For the purposes of the balance of interests (Art. 6(1)(f) of the GDPR)

In addition to what is required for the actual performance of the contract, we also process your data where necessary to safeguard our own legitimate interests and those of third parties.

Assertion of legal claims and defence in legal disputes

Ensuring IT security

Responding to your request

c) Based on your consent (Art. 6(1)(a) of the GDPR)

If you have given consent to the processing of your personal data for specific purposes, the lawfulness of this processing is based on your consent. Consent given may be withdrawn at any time. Please note that this withdrawal of consent only applies to the future. It does not apply retroactively to processing that took place prior to the withdrawal of consent.

d) Based on statutory obligations (Art. 6(1)(c) of the GDPR) or in the public interest (Art. 6(1)(e) of the GDPR)

Furthermore, as a company we are subject to various legal obligations (e.g. the German Commercial Code and German tax laws).

5. Who receives my data?

Within the four German TSOs and other, non-German TSOs, those entities that use your data to fulfil our contractual and legal obligations or in the context of the balance of interests will receive access to your data. Also service providers and agents used by us may receive data for these purposes if they treat them confidentially and uphold our data protection requirements. Data may only be transferred to third parties under the arrangements set out by the GDPR and the BDSG.

6. Are data transferred to third countries?

Data are not transferred to countries outside the EU or European Economic Area (EEA) (known as 'third countries').

7. How long will my data be kept for?

We process and keep your personal data for as long as is necessary to fulfil our contractual and legal obligations or in the context of the balance of interests. Data no longer required to fulfil these purposes are regularly deleted unless (temporary) further processing thereof is required to honour retention periods under commercial and tax law, such as the German Commercial Code and the German Tax Code. The retention and documentation periods specified there range from six to ten years.

8. What are my data protection rights?

You have the right of access to your personal data under Article 15 of the GDPR, the right to rectification of the data under Article 16 of the GDPR, the right to erasure under Article 17 of the GDPR, the right to restriction of processing under Article 18 of the GDPR, the right to object pursuant to Article 21 of the GDPR and the right to data portability pursuant to Article 20 of the GDPR. In addition, you have the right to lodge a complaint with a data protection supervisory authority (Article 77 of the GDPR along with section 19 of the BDSG). A list of supervisory authorities and their contact details can be found here (link in German).

You can contact us at any time to withdraw consent given to processing of personal data. Please note that this withdrawal of consent only applies to the future. It does not apply retroactively to processing that took place prior to the withdrawal of consent. Please also note in this regard the details in our 'Information regarding your right to object pursuant to Article 21 of the GDPR' (point 11 on this page). To exercise your rights, please use the above contact details for our data protection officer.

9. Are you obliged to provide data?

In the context of our business relationship or ordering services, you must provide those personal data (in mandatory fields marked accordingly) that are required to conduct the business relationship or provide a service and fulfil the related contractual obligations or that we are required to collect by law. In the absence of these data we will generally be unable to enter into a contract, to fulfil an order or to continue performing an existing contract, and therefore we may be obliged to terminate the relevant contract.

10. Do we use automated decision-making, including profiling?

As a rule, we do not use fully automated decision-making, including profiling, pursuant to Article 22 of the GDPR.

11. Information regarding your right to object pursuant to Article 21 of the GDPR

a) Individual right to object

You have the right to object, on grounds relating to your particular situation, to processing of your personal data if the data are being processed in the public interest or on the basis of a balance of interests. The same applies to profiling. We shall no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing of the data which override your interests, rights and freedoms or that your personal data are necessary for the establishment, exercise or defence of legal claims.

12. What data are processed when you use the website?

a) Usage-related data

When you open pages on our website, we receive usage data. These include information on screen resolution, browser version, internet access, operating system, language, plug-ins used, country/region of origin and search engines. The stored data will be analysed solely for statistical purposes and the optimisation of our website. They will not be transferred to third parties or be subject to a user-related analysis. Furthermore, we store data on connections to our websites (IP addresses) for a short period (a few days) to ensure IT security.

b) Use of cookies

To facilitate browsing, session cookies are used when visitors open individual pages. These cookies expire at the end of the session and do not contain any personal data, and therefore no user-related analysis of the contents of the cookies is conducted. You can configure your browser to only allow cookies on a case-by-case basis or not at all.

Cookies required for electronic communications or to perform specific functions are stored pursuant to Art. 6(1)(f) of the GDPR. In this case, cookies are stored to ensure that our services are provided free of technical errors and in the best possible way. Disabling cookies may reduce the functional performance of this website.

13. How secure are my data?

50Hertz Transmission GmbH takes technical and organisational measures to protect your data from unauthorised access, loss or destruction. As a rule, 50Hertz Transmission GmbH will only transfer personal data in encrypted form.

14. Links to other providers' websites

Our website may include links to websites of other providers. As we have no control over these websites' compliance with data-protection and security requirements, our Privacy Policy does not cover such sites.

June 2018