Data Privacy Statement
Welcome to our website. On this page you will find information on how we process your personal data when you visit our website.
We attach great importance to compliance with all applicable data protection rules and regulations, particularly the General Data Protection Regulation (Regulation (EU) 2016/679; also referred to as "GDPR"), which will come into full force and effect on 25 May 2018.
Name and address of controller
This website is operated by Open Grid Europe GmbH, Essen (hereinafter also referred to as "Open Grid Europe", "OGE" or "we"). Open Grid Europe is solely responsible for all data processing operations associated with your visit, unless otherwise stated below.
Our contact address is:
45141 Essen (Germany)
For further information about our company, please refer to our Legal Notice.
Visiting and interacting on the website
Data processed: Whenever you visit our website, we will collect certain (mainly technical) information, which may, however, be classified by the courts as personal data. This information includes the IP address, device identification, browser features, operating system details, language settings, referring URLs, the duration of your visit and the pages displayed. If you use our contact forms or functions for contributions and comments, we will collect the data submitted by you and the time of data transmission.
Processing purposes: We will use the data submitted by you via the contact form and other forms to process your request and to initiate resulting improvements. Any information provided by you in connection with postings and comments features will be used to publish and process any questions you may have about the content. When using other information, we do not as a rule draw any conclusions about the data subject. This information is used to correctly deliver the contents of our website, to guard against cyber-attacks, for scientific research and statistical purposes, and to provide law enforcement authorities with the information required for prosecution in the event of a cyber-attack.
Legal basis of data processing: In part, the consent of data subjects; performance of a contract or steps taken prior to entering into a contract; compliance with a legal obligation of Open Grid Europe; processing for the purposes of the legitimate interests pursued by Open Grid Europe and third parties (cf. Article 6 para. 1 lit. (a) to (f) of the GDPR).
Any further statistical analysis of collected data will only take place after any reference to persons has been removed.
Pursued legitimate interests within the meaning of Article 6 para. 1 lit. (f) of the GDPR: Interest in operating a website; protecting our computer systems against attacks and optimising our website; tracking attacks on our computer systems.
Categories of recipients of personal data: The personal data mentioned in this section will only be disclosed to service providers for the operation of our website. Data submitted via the contact form and other forms will be forwarded to the persons needed / responsible for answering such enquiries.
No data transfer to recipients in unsafe third countries: Open Grid Europe does not intend to transfer the personal data mentioned in this section to recipients in unsafe third countries (e.g. on the basis of standard contractual clauses).
Storage period: The aforementioned personal data will generally be stored for a period of seven days, after which the data will be rendered anonymous or be deleted. This does not include data that (i) is still needed to investigate or track a cyber-attack or (ii) must be stored further in accordance with a legal or statutory retention obligation. We plan to keep the data you submit via the contact form and other forms for a period of two years, after which the data will be deleted.
Obligation to provide personal data: The provision of the aforementioned personal data by you is neither required by law nor by any contractual agreements. Processing restrictions can restrict the use of some of our website functions.
No automated decision making (profiling): The above personal data will not be used to automatically make decisions that have a legal effect on you or significantly affect you in a similar way.
We use Google services on our website. The operating company is Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (here: “Google”).
Use of Google services may result in transmission, storage and usage of the data collected by Google and other group companies in the USA – in particular Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (here likewise: “Google”). This entails the risk, for example, that your data may be subject to extensive access by security authorities.
In order to guarantee an appropriate level of data protection in Google’s data processing, we use the so-called EU standard data protection clauses in our contractual relationship with Google. EU standard data protection clauses are contracts drafted by the European Commission that place certain obligations on the contracting parties (i.e. us and Google) to ensure protection of the data subject’s personal data. Currently our collaboration with Google in relation to the components “Google Analytics” and “Google Tag Manager”, which are described in more detail below, is based on the contract for commissioned processing provided by Google pursuant to Article 28 of the GDPR (available at: https://privacy.google.com/businesses/processorterms/). Within the scope of this agreement, Google is entitled to engage subcontractors. A list of these subcontractors is available at https://privacy.google.com/businesses/subprocessors/.
This website uses Google Analytics (with an anonymization function). Google Analytics is a web analytics service. Web analysis is the gathering, collection and evaluation of data on the behaviour of visitors to websites. A web analysis service collects personal data about the behaviour of the user of a website, e.g. the website from which a data subject has accessed a website (known as a 'referrer'), which individual pages of the website have been accessed or how often and for how long a page was viewed.
Please note that we use the code extension "gat._anonymizeIp" for web analysis via Google Analytics. With this extension the IP address of your Internet connection is truncated by Google and, according to Google, anonymised if you access our Internet pages from within the European Economic Area.
The purpose of the Google Analytics component is our legitimate interest in analysing the flows of visitors to our website and measuring its reach (purpose pursuant to Article 6.1 (f) of the GDPR). The use of Google Analytics also takes place on the basis of your express consent (Article 6.1 (a) of the GDPR). The granting of consent is voluntary. You can revoke your consent at any time in the cookie settings. The lawfulness of any processing carried out on the basis of consent before such revocation remains unaffected.
Google uses the data and information on our behalf among other things to (i) evaluate the use of our website, (ii) compile reports for us that show the activities on our web pages, and (iii) provide other services in connection with the use of our website. These services are designed to improve our offerings.
Google Analytics places statistics cookies on your computer. Please refer to the section on “Cookies” below for more information about cookies. The cookies allow the use of our website to be analysed. Each time you visit one of the pages of this website, the Internet browser on your computer is automatically prompted by the relevant Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical procedure, Google receives information on our behalf about personal data, such as your IP address, which among other things serves to trace the origin of visitors and clicks.
The cookies are used to store the following data, which may be categorised as personal data: time, duration and frequency of access, origin (country and city) of access (estimated by Google), language settings, operating system, device used (PC, tablet or smartphone), browser and all add-ons used, resolution of the computer, visitor origin (Facebook, search engine or referring website), visitor exit (e.g. the exit page), information about downloaded files and pages visited.
Google may disclose personal data collected through the technical process to third parties. We cannot exclude the possibility that Google may use the data collected for its own purposes, such as profiling, or link them with other data, such as search history, personal accounts, usage data from other devices and any other information that Google may have about you (e.g. from any existing Google accounts). Even if you do not have a Google account or you have not logged into it, it is possible that Google will obtain and store your IP address.
Preventing the use of Google Analytics as described above will have no influence on the usability of our website.
As part of Google Analytics we do not store any personal data, as the data reported to us is immediately rendered anonymous to us by Google.
We will not transmit any personal data to other recipients.
Google Tag Manager
We also use the Google service “Google Tag Manager”. Google Tag Manager allows us to manage the analytics tools (such as Google Analytics) via one standardised application. The Tag Manager manages the so-called tags assigned to the respective analytics tool. Tags are code elements that are built into the source text of our website for the use of tracking and analysis tools such as Google Analytics. With the help of the Google Tag Manager, we are able to manage the tags required for use of the tracking and analytics tools in a uniform manner and thus to save computing and programming power.
If and to the extent that personal data is processed via the Google Tag Manager, this processing is based on our legitimate interest in the efficient management of tags/analytics tools used by us (Article 6.1 (f) of the GDPR).
LinkedIn Insight Tag
Registered LinkedIn users can manage the use of their personal data in their account settings. There is an option to deactivate the Insight Tag via the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
No personal data from the cookies is transmitted to any recipients unless otherwise stated in this data privacy statement.
We plan to store the aforementioned data for a period of 10 years and to delete it afterwards.
There are no intentions to transfer data to third countries outside the European Economic Area (with the exception of Google Analytics' cookies – as outlined above).
We use the following cookies for the purposes specified in each case with the expiration dates specified in each case:
|Cookie designation||Purpose||Expiry date|
|Neos_Session||Web server session cookie||Session|
|ARRAffinity||Cookie on the Windows Azure cloud platform for load balancing||Session|
|myBreadcrumb||Cookie storing Breadcrumb – convenience function for use of the navigation||No expiry date|
|_ga||GoogleAnalytics cookie to generate statistical data on how the visitor uses the website||2 years|
|_gid||GoogleAnalytics Cookie distinguishes anonymous users||1 day|
|Unique identifier for the Adobe Experience Cloud||180 days|
|li_oatml||Cookie identifies LinkedIn members outside of LinkedIn for promotional and analytical purposes outside of the designated countries and, for a limited time, for promotional purposes as well in the designated countries||30 days|
|lang||Cookies remembers language setting of a user||Session|
|_gcl_au||Cookies is used by Google Analytics to understand how users iteract with website and ads||3 months|
|lidc||Cookies optimises the data center selection||1 day|
|mbox||Cookie is used by Adobe Target to analyse relevance of online content||180 days|
|lissc||Cookie ensures that all cookies in this browser are using the same SameSite attribute||1 year|
|ELOQUA||Cookies is used by ELOQUA for tracking purposes||2 years|
|spectroscopyId||Cookies is used to detect malicious activities via browser extensions||7 days|
|VID||ID is assigned to visitors of a LinkedIn microsite to determine conversions for lead generation pusposes||1 year|
|liap||Cookie is used by domains without the addition "www" to show the login status of a member||1 year|
|Cookie indicates for Adobe Experience Cloud when a session has started||Session|
|SID||Cookie to determine a visitor's actions before conversion on a LinkedIn microsite||Session|
|UserMatchHistory||Cookie to synchronise the IDs of LinkedIn Ads||30 days|
|_guid||Cookie to identify a LinkedIn member for advertising via Google Ads||90 days|
|sdsc||Signed context cookie for the data service, which is used for database routing and should ensure cross-database consistency in case of changes||Session|
|bcookie||Cookie is a browser identifier that is used to uniquely identify devices accessing LinkedIn in order to detect misuse of the platform||2 years|
A "Session" ends when you close your browser.
On our website, there is an option to sign up to a newsletter. We use our newsletter to provide you with regular information about press releases on our website and/or to send you our Policy Letter (with current topics and background reports on energy policy and the energy industry). For this purpose, we store and use your e-mail address. In addition, when you register for the newsletter, the IP address of the computer system being used at the time of registration as well as the date and the time of registration are recorded.
After registration for the newsletter, you will receive an e-mail in which you need to re-confirm your registration to the newsletter via a link (“confirm registration” – so-called “double opt-in procedure”). This confirmation e-mail serves to check whether the owner of the e-mail address did actually authorise receipt of the newsletter.
The aforementioned data collection is necessary, on the one hand, in order to be able to track potential misuse of the e-mail address and thus takes place on the basis of the statutory provisions of Article 6.1 (f) of the GDPR. On the other hand, the processing of your data and delivery of the newsletter to the e-mail address you supplied takes place on the basis of your express and voluntary consent (Article 6.1 (a) of the GDPR). It is possible to unsubscribe from the newsletter at any time by clicking on the unsubscribe link in the relevant newsletter e-mail and thus to revoke consent. Alternatively, you can unsubscribe via the following link: https://oge.net/en/newsletter/unsubscribe.
The lawfulness of any processing carried out on the basis of consent before such revocation remains unaffected. If you unsubscribe from the newsletter or do not complete your registration, we will delete your data.
To send the newsletter, we make use of assistance from service providers acting on our behalf and under our instructions.
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server, or from that of a mailing service provider where we are using one, when the newsletter is opened. As part of this retrieval, technical information, such as information on the browser and your system as well as your IP address and the place and time of the retrieval, is initially recorded.
We use this information to improve our newsletter. For this purpose we evaluate not only the abovementioned technical data but also click rates and users’ reading behaviour. This analysis also includes determining whether or not the newsletter was actually opened and which links in the newsletter were clicked on. This information is assigned to the individual newsletter recipient and stored in profiles until its deletion. We use the analyses to identify the reading habits of our users and to adapt our content to them, or to send different content according to the interests of our users.
The data processing operations relating to the newsletter tracking described take place on the basis of express and voluntary consent from the user (Article 6.1 (a) of the GDPR), which can be revoked at any time with a click on the unsubscribe link in the respective newsletter e-mail. Alternatively, you can unsubscribe via the following link: https://oge.net/en/newsletter/unsubscribe. In this case, the stored profile information will be deleted. The lawfulness of any processing carried out on the basis of consent before such revocation remains unaffected. Separate revocation of the newsletter tracking is not possible.
Use of social media links
We currently offer social media links from Facebook, Twitter, Xing, LinkedIn, kununu and YouTube.
By clicking on such links to third-party providers, your IP address and the page from which you clicked on the link are transmitted to the selected provider and stored there (e.g. US providers in the USA). If you do not then use any further offers from the linked third-party providers (e.g. by neither recommending nor linking to the page), nothing else will be transmitted from our website to the third-party provider. How you act on the following page with the respective third-party provider is entirely up to you.
We have no control over the data collected by third parties or data processing processes, nor are we aware of the full scope of the data collection, the processing purposes and the storage periods. Further information on the purpose and scope of data collection and its processing by the respective third-party provider can be found in the data protection declarations provided below. There you will also find further information on your rights in this regard and setting options to protect your privacy.
Addresses of the respective providers and URL with their data protection information:
- Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, Facebook Inc. 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php
- Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy
- Xing AG (including kununu), Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy
- YouTube, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; https://policies.google.com/privacy?hl=en
- LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Your rights, which Open Grid Europe will be happy fulfil at your request, include the right to:
- obtain information about your personal data;
- have incorrect personal data about you corrected;
- have your personal data deleted or restrict the processing of your personal data;
- have the personal data concerning you transferred in a structured, common and machine-readable format to you or – as far as technically feasible – to a third party; or
- object to the processing of your personal data if such processing is based on legitimate interests (Article 6.1 (c) and (f) of the GDPR).
Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority.
Withdrawal of consents: You have the right to withdraw a consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
No responsibility for links to other websites
We have no control over the Internet pages of other providers which are offered under other domain names. Insofar as our website refers to such third-party offers, we cannot accept any responsibility for the third party's handling of your personal data. Please contact the respective third party for further information.
Open Grid Europe
Data Protection Officer
Last revised: 01 September 2021