The fine print

Privacy Policy

Privacy policy for farmerJoe website and farmerJoe app

1. General
farmerJoe GmbH (hereinafter, “farmerJoe”, “we” or “us”) appreciates your visit to our website farmerjoe.com (hereinafter, the “Website”) and your interest in our mobile app and our web app (hereinafter, collectively, the “App”).

The farmerJoe app helps you to clearly document all agricultural activities directly in the field. You will receive effective support both in the collection of operational data and in the planning, management and evaluation of corresponding measures.

When you use our app and when you visit our website, personal data is collected and processed, which we process in compliance with the applicable data protection regulations. We take the protection of your personal data seriously and we want you to feel safe when visiting our website and using our app. Personal data is information about your identity. This includes, for example, information such as name, address, telephone number and e-mail address. The collection, storage and processing of personal data by farmerJoe complies with applicable data protection law, in particular the General Data Protection Regulation (GDPR). We have taken measures to ensure that data protection regulations are observed both by us and by external service providers.

The advantage of our mobile app is, among other things, the use of certain functions of your mobile device, such as access to GPS position data or the camera. The use of this data facilitates your operational documentation. The data will not be used, evaluated or passed on beyond your explicit consent. The collected data is protected from access by unauthorized persons by means of state-of-the-art measures.

2. Name and contact details of the person responsible for data protection
Responsible for the processing of your data is farmerJoe GmbH, address: Albert-Überle-Straße 18, 69120 Heidelberg, Phone: 0049 157 750 676 59, Email: info@farmerjoe.com.

3. Collection and storage of personal data as well as type and purpose of their processing, relevant legal basis as well as storage period

3.1. Use of our website and the app
When you visit our website or use our app, we collect data that your browser transmits to our server (so-called server log files), whereby logging only takes place to the extent technically necessary. The following information is collected:

IP address of the requesting Internet-enabled device
Date and time of access
Name and URL of the accessed file
Website from which the access is made (referrer URL)
the browser you use and, if applicable, the operating system of your Internet-enabled device, as well as the name of the access provider.
The legal basis for the collection of this data is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest in collecting this data is based on the following purposes:

Ensuring optimal use of our website,
ensuring smooth connection establishment,
Evaluation of system security and stability.

3.2. Contact inquiries
You can use the contact form on our website to ask us questions by providing your name, email address, phone number and subject. The data you enter in the contact form is transmitted to us and stored by us. When you contact us by e-mail, the data you provide (e.g. your e-mail address, possibly your name, etc.) will also be stored by us in order to process your request. We use your data transmitted to us in connection with the contact form / contacting you exclusively for the purpose of answering your inquiry. The legal basis for this is Art. 6 para. 1 lit. f) GDPR (legitimate interest of processing requests and inquiries). Your data will be deleted after your request has been processed, unless further storage is necessary for the proper processing of your request.

3.3. Registration in the app
In order for them to use our app, we collect the following data from you when you register in the app:

Your first and last name
Your phone number
Your email address
To confirm the e-mail address you have provided, we use the so-called double opt-in procedure. This means that after your registration we will send you an email to the email address you provided, asking you to confirm your email address.

We process your registration data in order to fulfill the usage agreement with you via the app. The legal basis is Art. 6 para. 1 lit. b) GDPR (performance of contract). We need the phone number so that employees of the same company can contact each other more quickly via the app. We use the e-mail address in addition to the double opt-in process for the purpose of resetting the password should this become necessary.

3.4. Create additional users

3.4.1. Data processing
The app allows you to create additional employees as users for a site created in the app. This allows several employees of a company to access and edit the operational data. To create another user, you need to specify at least the employee’s name and email address in the app. In addition, you can also specify the user’s area of responsibility and telephone number. The employee will then receive a message to the email address you provided with the invitation to register.

We collect and process the employee data you provide in the app on the basis of Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is to enable users of our app to network with other employees of the business. If the employee registers himself with farmerJoe after receiving the e-mail, we will also process his data on the basis of Art. 6 para. 1 lit. b) GDPR (performance of a contract).

3.4.2. User authorizations
If several employees are registered as users in the app for a company, it is possible to define within the app which usage authorizations the respective user should receive.

Operation-related data: The operation manager can view and modify all data. To a certain extent, he/she decides which company-related information other users are allowed to see and modify from his/her own company. This is done primarily through the distribution of system roles “Admin” and “User”. The “Admin” role is able to see, modify, add or delete comprehensive data, while the “User” role is able to see and add essentially limited data. The “Admin” role decides on the assignment of the system role.
User-related data: Individual, personal data (such as name, telephone number, e-mail address) can be changed to a certain extent by each user himself. Vom Betriebsleiter sind alle personenbezogenen Angaben der zum Betrieb zugehörigen Nutzer sichtbar, jedoch nicht veränderbar. Only the user’s authorizations for editing operation-related data can be influenced by the plant manager.

3.5. Access to functions of the end device in the mobile app
To help you make better use of our mobile app, we ask that you access certain features on your mobile device. You always have the option to deny access or restrict it again. To do this, simply go to the settings of your mobile device and make the appropriate adjustments. We ask you to access the following functions:

Camera:
The release allows you to easily and quickly capture and document current situations on the field via photo.

Location/GPS:
With the release you get the possibility to use the map function of the app. This visualizes all fields and the current crop states clearly at a glance.

Contacts:
You can network with employees at your facility through the app. Sharing your contacts will make it easier for you to create employees of your company in the app. You do not have to enter the data manually in this case.
We use access to the features of your mobile device solely for the aforementioned purposes to provide you with an even better app experience. Any further storage, processing or forwarding of the data does not take place. We process the personal data collected by accessing your terminal device on the basis of your consent pursuant to Art. 6 para. 1 S. 1 lit. a) GDPR. The submission of the declaration of consent is voluntary. This can be revoked at any time with effect for the future. However, this shall not affect the lawfulness of the data processing carried out on the basis of the consent until revocation. You can declare your revocation of consent by making the appropriate settings on your terminal device.

3.6. Newsletter
If you give us your express consent, we will send you information about our services and offers by e-mail. For this purpose, we process your name and e-mail address. When registering for our newsletter, we use the so-called double opt-in procedure, if you are not already registered as a user at farmerJoe with your e-mail address. This means that after you have registered with your e-mail address, we will send you an e-mail to the specified e-mail address in which we ask you to confirm that you actually wish to receive the newsletter. The submission of the declaration of consent is voluntary. This can be revoked at any time with effect for the future. However, this shall not affect the lawfulness of the data processing carried out on the basis of the consent until revocation.

The legal basis for sending our newsletter is Art. 6 para. 1 lit. a) GDPR.

3.7. Storage duration
You can delete your account in our app yourself at any time. Otherwise, we store your data as long as they are required for the processing of the existing usage contract with you, i.e. until the expiry of the legal or possible contractual warranty rights. After this period, we retain the data required by commercial and tax law for the periods specified by law. Data processing beyond this purpose does not take place.

4. Optimization of the website and the app

4.1. Cookies
In order to be able to offer you additional functions that, for example, improve the comfort of using our website and to obtain information about the use of our website and thus improve the design of our website, we use so-called cookies. In this process, files with information are stored on your PC for a limited time. The information stored in these files is read when you visit our website again, saving you from having to enter data multiple times. However, you can also set your web browser to prevent cookies from being stored on your PC. In this way, you can decide for yourself whether or not to accept cookies and make use of the associated functions.

Enabling cookies is necessary for the proper functioning of the website. We therefore have a legitimate interest in their use. The legal basis for the related data processing is therefore Art. 6 para. 1 Sentence 1 lit. f) GDPR.

4.2. Privacy policy for the use of Google Analytics
On our website, we use Google Analytics, a web analytics service provided by Google Inc, 1600 Amphitheatre Parkway, Mountainview, CA 94043, USA (“Google”). Google Analytics uses cookies, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website (including your IP address) will be transmitted to and stored by Google on servers in the United States. The transfer of data to the USA takes place on the basis of the European Standard Contractual Clauses. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

Data processing in connection with Google Analytics is based on your express consent pursuant to Art. 6 para. 1 lit. a) GDPR.

For more information on Google Analytics privacy, please visit the third-party provider’s website: Privacy Overview: http://www.google.com/intl/de/analytics/learn/privacy.html and Privacy Policy: http://www.google.de/intl/de/policies/privacy.

5. Recipients of personal data or categories of recipients
In order to process your personal data, we sometimes use the services of external service providers. These service providers process your personal data on our behalf, in accordance with our instructions and under our supervision, solely for the purposes set out in this Privacy Policy. These include in particular: IT service and host provider providers for sending e-mail newsletters.

6. Transmission of data to third countries
Except in the cases described in para. 4 above, we do not transfer your personal data to recipients in countries outside the European Union or the European Economic Area (where it cannot be readily assumed that the level of data protection is comparable to that in the European Union).

7. Data security
We make every effort to protect your personal data from unauthorized access and misuse by using appropriate technical and organizational measures. Our security measures are continuously improved in line with technological developments. In particular, we ensure that sensitive personal data is stored exclusively on servers hosted in the EU that are certified in accordance with DIN ISO/IEC 27001 (as amended).
Please note that when communicating by e-mail, data security cannot be guaranteed on the Internet and we recommend using the postal service for confidential information.

8. Your rights
With regard to the processing of your personal data, you are entitled to the following rights free of charge:

8.1. Right to information according to Art. 15 DSGVO
You have the right to receive information from us about whether and what data we process about you. Also covered are, among other things, information on the purposes of the processing, the recipients, the duration of the storage, your rights and the origin of the data. In addition, we can provide you with a copy of your data.

8.2. Right to rectification according to Art. 16 GDPR
You have the right to have us correct data about you that is not or no longer accurate. Furthermore, you can request completion of your incomplete data. Where required by the GDPR, we will also inform third parties about this rectification if we have transferred your personal data to them.

8.3. Right to deletion according to Art. 17 DSGVORight to deletion according to Art. 17 GDPR
You have the right to request that we delete your personal data in one of the following cases:

Your data is no longer necessary for the purposes for which it was collected or otherwise processed, or the purpose has been achieved; You withdraw your consent and there is no other legal basis for the processing; You object to the processing and there are no overriding legitimate grounds for the processing; in the case of use of personal data for direct marketing, your objection to the processing is sufficient; your personal data has been processed unlawfully; erasure of your personal data is necessary for compliance with a legal obligation under European Union law or the law of a Member State to which we are subject. Your right to deletion may be restricted based on legal requirements. This includes in particular the restrictions listed in Article 17 DSGVO and Section 35 BDSG.This includes in particular the restrictions listed in Article 17 GDPR and Section 35 of the German Federal Data Protection Act (BDSG).

8.4. Right to restriction of processing pursuant to Art. 18 GDPR
You have the right to request us to restrict the processing of your personal data if one of the following reasons applies:

You dispute the accuracy of your personal data for a period of time that allows us to verify the accuracy of the personal data;
the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of your personal data; we no longer need your personal data for the purposes of the processing; however, you need it for the assertion, exercise or defense of legal claims, or you have objected to the processing as long as it is not yet determined whether our legitimate grounds override yours. If a restriction of processing occurs, we will inform you before the restriction is lifted.

8.5. Right to data portability according to Art. 20 GDPR
You have the right to receive personal data concerning you that you have provided to us in a structured, common and machine-readable format and to transmit this data to others. The exercise of this right does not affect your right to erasure pursuant to Art. 17 GDPR.

8.6. Right of objection according to Article 21 GDPR
If we base the processing of your personal data on legitimate interests pursuant to Art. 6 para. 1 lit. f) GDPR, you have the right to object to the processing of your data at any time on grounds relating to your particular situation. If you object, we will no longer process your personal data unless the following conditions apply: we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defense of legal claims. If we process your data for direct advertising, you also have the right to object at any time to the processing of your data for the purpose of such advertising. If you object to the processing of your data for direct marketing purposes, we will no longer use your personal data for this purpose.

8.7. Right of withdrawal for consents Art. 7 GDPR
You can revoke your consent given to us at any time with effect for the future. This revocation may take the form of an informal communication to the
above mentioned contact addresses. If you revoke your consent, this will not affect the lawfulness of the data processing carried out up to that point.

8.8. Right to complain to the supervisory authority
If you believe that the processing of your data by us violates applicable data protection law, you have the right to lodge a complaint with one of the competent supervisory authorities. The supervisory authority responsible for us is: The State Commissioner for Data Protection and Freedom of Information
Baden-Württemberg
Postfach 10 29 32
70025 Stuttgart