Update Notice

We have updated our Privacy Statement as of  1st June 2022 Privacy Statement changes in version 3.0:

  • Added new categories of personal data processed by our entities in the policy and Table 2.
  • Added special category data in Section 6.2.
  • Added a differentiation in the DTN entities processing personal data in Table 2.
  • Added language with respect to selling of data by some DTN entities in section 10.4 and Section 18.
  • Added additional language with respect to California Residents (California Consumer Privacy Act – CCPA) in Section  18
  • Added language with respect to Nevada Residents in Section 19
  • Added new categories of recipients in table 1

Privacy Statement changes in version 3.1:

  • Added new record types Vessel Analytics in Table 2

Thank you for visiting our website, and we are happy to continue helping you manage and protect your identity. If you have any questions, please contact privacy@dtn.com

External Privacy Statement DTN

Version 3.1

  1. Introduction
    1. This Privacy Policy (“Policy”) is published and used by DTN, LLC and the affiliates of DTN, LLC, such as but not limited to the MeteoGroup group of companies, the DTN Weather Systems group of companies, Progressive Farmer LLC, Farm Market iD LLC, Online Fuel Ltd. (referred to as “DTN”, “we” or “us”. It applies to all our websites, including dtn.com, meteogroup.com, dtnpf.com, mydtn.com, and all other DTN related websites, which we refer to as “Sites”. The Policy also applies to all our services, such as all downloadable software, mobile applications, and other services provided by the DTN companies and on which a link to this Policy is displayed are referred, which refer to as “Services” in this Policy. More information on the DTN companies can be found in the below paragraph on ‘Data controllers’.
    2. We respect privacy and value the confidence of our customers, employees, business partners, and others. We strive to collect, process, and disclose personal information in a manner consistent with the laws of the countries in which we do business and have a tradition of upholding the highest ethical standards in our business practices. We comply with the applicable laws and legislations, such as but not limited to the General Data Protection Regulation (“GDPR”).
    3. We work with the following definition of “Personal Data”: all information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
    4. This Policy applies to the processing of Personal Data in connection to all business-to-business and consumer activities of DTN.
    5. This Policy describes the personal data that we collect on or through our Services, how we process and disclose such information during and after our relationship with us, the steps we take to protect your Personal Data, and the rights you may have related to our Personal Data collection and use practices. By visiting the Sites, or by purchasing or using our Services, you accept the privacy practices described in this Policy.
    6. This Policy is incorporated into, and is subject to, the DTN terms of use at www.dtn.com/tos.
  2. DTN
    1. 2.1 DTN consists of a group of companies that provide the Sites and Services. The group consists of multiple legal entities which all ultimately all fall under TBG Holdings (DTN) B.V. (“DTN Companies”).
  3. Data controller
    1. A ‘data controller’ is understood to be the entity that determines the purposes and means of processing Personal Data. This definition is derived from the GDPR.
    2. For the processing of Personal Data in the context of the activities of an establishment of DTN within the European Union, the data controller is MeteoGroup Nederland B.V.
    3. For all other processing of Personal Data, the data controller is DTN LLC.
    4. Should you have any questions on this, please contact us via the details in this Policy.
  4. Data Protection Officer
    1. DTN has appointed a contact person to direct your questions on privacy or the rights you may have to:

      MeteoGroup Nederland B.V.
      Att. Sylvia van Zijderveld
      P.O. Box 24092,
      3502 MB Utrecht, The Netherlands

    2. Or email privacy@dtn.com. Please note that the Legal Department also receives a copy via this email address. We aim to respond within 30 days from the date we receive privacy-related communications.
    3. For the DTN Companies established within the European Union, this contact person is formally appointed as “Data Protection Officer”.
  5. How and What Personal Data and information we process
    1. We may process, store and use the following categories of Personal Data where such is necessary:

      1. Name;
      2. Company details (registered name, address, registration number, etc.);
      3. Telephone number;
      4. E-mail address;
      5. Banking details;
      6. IP addresses, user/client ID’s and secrets;
      7. CCTV camera images and voice recordings;
      8. Photographs or videos;
      9. All further Personal Data that might be necessary to adhere to this Policy;
      10. All further Personal Data you choose to provide to us andhich we have determined the purposes and means. You can find more detailed information in Table 2.
    2. Personal Data and further information is collected via the following sources.
    3. User-Provided Information. We collect Personal Data voluntarily provided by users or visitors of our Services (also referred to as “Users” or “you” in this Policy), including when you visit the Sites, use the Services, register an account, fill out forms on the Sites, when you provide us with your business card, when you subscribe to our newsletters, register for trainings or seminars, attend meetings or events we organise or visit our offices. We may also collect Personal Data from you when we are establishing a business relationship, performing professional services or you otherwise contact us. The Personal Data that we collect on or through our Services may include:

      1. your first and last name;
      2. email address and mailing address;
      3. telephone number(s);
      4. organizational affiliation and further company details;
      5. billing / financial information;
      6. and any other information you choose to provide when you use the Services or otherwise interact with us.
    4. Location Information. For some of our services, API’s, Sites and mobile apps we also collect geo-location information. We use your location information to provide requested location-specific services, including local weather forecasts, local farm information and asset tracking. By default, permission to use your location information must be granted by you. You may at any time opt-out from further allowing us to have access to your location data by turning off the location services in your mobile phone or browser settings. Please be aware that certain features of the mobile apps will not perform as expected if location services are turned off.

      We may only collect data regarding your location if you turn on such location services. The data regarding your location will be anonymised after your request. This anonymous data will be analysed to optimise our services as well as for marketing purposes. This does not identify your device or you. However, we may process your location data together with your personal information if you have given the appropriate consent.

    5. Public sources. Personal Data may be obtained from public registers (such as the Companies House or the Chamber of Commerce), public databases, government agencies, news articles and internet searches. Examples of data obtained from these sources are: satellite imagery, real estate and land records.
    6. Social and professional networking. If you register or login to our Websites or Services using social media (.e.g. LinkedIn Twitter or Google) to authenticate your identity and connect your social media login information with us, we will collect Personal Data or content needed for the registration or login that you permitted your social media provider to share with us. Such Personal Data and content may include your name and e-mail address and depending on your privacy settings, additional details about you. Please review the privacy controls on the applicable social media service to set which Personal Data you want to share with us. For further details please be referred to the DTN Cookie statement.
    7. Automatically Collected Information. As is true of most websites and mobile applications, we or our third party service providers and partners (discussed below) collect information from you over time using automated means such as cookies, beacons, or online data analytics tools. We also automatically collect Personal Data via our security systems. This “automatically collected” information may include:

      1. CCTV camera images, photographs, voice recordings and video;
      2. internet protocol (IP) addresses;
      3. MAC addresses;
      4. device IDs, device and browser type(s);
      5. referring/exit pages;
      6. device operating system, device version, platform version, date/time stamp, or clickstream data;
      7. and other information about the way you use the Services.
  6. Special categories of Personal Data
    1. DTN collects “special category” data for use in its Services as that term is defined by the GDPR. We collect this data from our partner companies only if such data was disclosed voluntarily and with the necessary consents from the data subject. For more information on the data we collect, please see Table 2 of this Policy.
    2. When we do need to process such Personal Data, we may request your consent to do so. Examples of special categories of Personal Data we may obtain are dietary restrictions or physical health access requirements e.g. when registering for events or trainings or consumer demographic data and personal characteristics for our US agriculture services like race or gender.
  7. E-mail
    1. If you receive commercial emails from us, you may unsubscribe at any time by following the instructions contained within the email or by sending an email to the address provided in the “Contact Us” section below. Please be aware that if you opt-out of receiving commercial email from us, it may take up to ten (10) business days for us to process your request. Additionally, even after you opt-out from receiving commercial messages from us, you will continue to receive otherwise permitted administrative messages from us regarding the Services.
  8. Financial partners
    1. At times DTN may allow a customer to purchase or lease products or equipment and/or to make payments through the Services. In such event, DTN may use a third-party shipping company, such as UPS or FedEX, to fulfil customer orders through the Sites, and may also use a credit card processing company to bill you for goods or services that you request. The current credit card processing company that DTN uses is called CyberSource®, and more information about this company can be found at: www.cybersource.com. DTN takes all reasonable measures to select third-party agents for fulfilment and financial processing that agree to not retain, share, store, or use your personal or financial information for any other purposes than fulfilling orders or enforcing customer agreements.
  9. Advertising
    1. We may also partner with a third party, including our current partner AdRoll, to display advertising on our Services and/or to manage our advertising on other websites and platforms. For further details please be referred to the DTN Cookie statement.
  10. How We Use Personal Data – purposes of processing
    1. DTN processes Personal Data for the following purposes:

      1. As is necessary for the performance of contracts we have with you, or at your request prior to you entering into a contract with us (e.g., to send you product or billing information);
      2. Allowing DTN to provide, promote and improve products and services;
      3. To solicit, service and communicate with you;
      4. To allow you to set language, currency and other preferences in Platforms;
      5. Organizing events for prospects and customers;
      6. Providing prospects and customers access to our products and services (including by means of verification of your identity and login data);
      7. Allowing DTN to manage our business operations and complying with internal procedures and policies (for example, monitoring of compliance to rules, procedures and policies such as e.g. internal and external audits or
        investigations);
      8. Allowing DTN to purchase products and services and communicate with the (representatives of the) companies that supply such (for example, (personally owned) weather stations);
      9. Allowing DTN to support suppliers (for example, owners of weather stations);
      10. Allowing DTN to secure its property (for example, by conducting CCTV for security reasons for the various DTN offices);
      11. Participation in DTN’s marketing initiatives or branding activities;
      12. Allow DTN to show advertisements;
      13. To comply with our legal obligations.
    2. DTN does not use Personal Data to make solely automated decisions about you or to make decisions about you that are likely to procedure legal or similarly significant effects.
    3. We will only use Personal Data for the purposes for which we collected it. It may however be possible that we reasonably consider that we need to use it for another purpose, which is compatible with the initial purpose. If we need to use your Personal Data for an unrelated purpose, we will notify you.
    4. DTN does not sell or rent your Personal Data to third parties with the exception of the categories of personal information identified in Section 18.2 of this policy. When you give us Personal Data, DTN will not share that information with third parties without your permission, other than for the limited exceptions and purposes described in this Policy or as otherwise permitted by applicable law.
  11. Legal grounds
    1. We may rely on the following legal grounds when we process your Personal Data:
    2. Contract: we may process Personal Data as the processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.
    3. Consent: we may rely on your consent for the processing of Personal Data for one or more specific purposes.
    4. Legitimate interests of DTN: we may process Personal Data as the processing is necessary for the purposes of the legitimate interests pursued by DTN or a third party, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of Personal Data, in particular where you are a child. Such legitimate interests include:

      1. Our products and services: to provide, promote and improve products and services;
      2. Interaction: to interact and communicate with prospects, customers, suppliers and other third parties;
      3. Events: to organise events for you;
      4. Access: to you with access to our products and services (including by means of verification of your identity and login data);
      5. Business operations: to manage DTN’s business operations and complying with internal procedures and policies;
      6. Procurement: to purchase products and services and communicate with the (representatives of the) companies that supply such;
      7. Support: supporting suppliers;
      8. Security: to secure the DTN property;
      9. (Direct) marketing: to deliver information about our products and services, market insights and specialty knowledge we believe is welcomed by our business clients, subscribers and individuals who have interacted
        with us;
      10. Changes in our business and organization: we may restructure, expand or reduce our business and this may involve the sale and/or transfer of control of all or part of our business. Any Personal Data that you have provided will, where it is relevant to any part of our business that is being transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this Privacy Statement, be permitted to use that Personal Data only for the same purposes for which it was originally collected.
    5. Legal obligations: we may process Personal Data as this is necessary for compliance with a legal obligation to which DTN is subject.
  12. Recipients of Personal Data
    1. The following (categories of) third-party service providers receive Personal Data:

      1. The companies providing software;
      2. The companies providing product development services;
      3. The party providing financial services;
      4. Our IT system support company;
      5. The marketing services providers;
      6. Our financial partners;
      7. Other parties that support us in providing our services e.g. providers of telecommunication systems, archiving services, data management and cloud-based software services (e.g. our online marketing and sales tools).
    2. All third party service providers and other entities in the group are required to take appropriate security measures to protect Personal Data as set out in our policies. We do not allow our third-party service providers to use Personal Data for their own purposes.
    3. We may share Personal Data with other third parties, for example in the context of a possible sale or restructuring of the business. We may also need to share Personal Data with a supervising authority or a regulatory body, or to otherwise comply with the law or the legal obligations that DTN is subject to.
  13. Instagroup sharing of Personal Data
    1. Where necessary, Personal Data may be shared with the DTN Companies for administrative purposes, for business restructuring purposes and to provide professional services to our customers, as part of our regular reporting activities on company performance, for system maintenance support and hosting of data.
    2. The DTN entities are located everywhere around the world. We may share Personal Data with DTN Companies not located within the European Economic Area (hereinafter: “EEA”).
    3. To safeguard the transfer within the DTN Companies, all entities have entered into a Intragroup Personal Data Transfer Agreement. This agreement includes the contractual model clauses. Should you wish to review such safeguards, please contact us via the details as included in this Policy.
  14. Transfer of Personal Data outside the EEA
    1. Our partners are located throughout the world. Depending on the scope of your interactions with DTN, your Personal Data may be stored in or accessed from multiple countries, including the United States. Whenever we transfer Personal Data or make it available outside of the jurisdiction where we collected it, we will ensure that the information is transferred in accordance with this Privacy Policy and as permitted by applicable data protection laws, such as but not limited to the GDPR. If applicable, you may obtain a copy of the applicable safeguards. An overview of transfers is provided to table 1 as attached to this Policy.
  15. Retention
    1. DTN will retain your Personal Data for as long as necessary for the purposes we collected it for. Specific retention times can be found in table 2 as attached to this Policy. Please note that these retention times apply under the condition that should DTN be required to store the Personal Data for a longer period of time, DTN may do so.
  16. Security Measures
    1. DTN strives to protect and secure Personal Data in the most optimal way. ISO-certifications form a large part of our endeavours in this respect and we are constantly working on improving our standards throughout the DTN Companies. The DTN Companies comply with the security standards as reflected in the applicable laws and legislation in this respect such as but not limited to the GDPR.
    2. DTN holds a wide range of international certifications, based on globally recognized standards such as ISO 9001, ISO 27001, ISO 22301, ISO 45001 and ISO 14001. These certifications are unique to each DTN company* and are an independent endorsement to the superior level of quality with which we operate and enables us to make certain that the services we deliver to our clients are of consistent high quality, secure, compliant and fit for purpose. *Please note that ‘DTN’ in this provision refers to DTN generic branding, however the entity names may differ. The exact certified entity is indicated on each certificate.
    3. To learn more about the ISO 27001, click here to download.
  17. Your Obligations and Rights
    1. It is important that your Personal Data is accurate and up to date. Please therefore keep us informed via the means we provide to you.
    2. Upon a reasonable request, Users of which the processing of Personal Data is covered by the GDPR may have the following rights:

      1. Request access to your Personal Data (known as a ‘data subject access request’);
      2. Request correction of the Personal Data that we hold about you;
      3. Request erasure of your Personal Data;
      4. Object to processing of your Personal Data;
      5. Request the restriction of processing of your Personal Data;
      6. Request the transfer of your Personal Data to another party;
      7. Withdrawal of consent that you have previously provided. This will not affect the lawfulness of any processing carried out before you withdraw your consent. It may mean we are not able to provide certain products or Services to you and we will advise you if this is the case;
      8. File a complaint with the appropriate data protection authority.
      9. To invoke your rights, you may contact us by using the information provided in this Policy. In order to comply with these requests, we may ask you to verify your identity. Please note that your rights may be limited in certain cases – for example, if fulfilling your request would reveal information about another person, or if you ask to delete Personal Data which we are permitted by law or have compelling legitimate interests to keep. Permissible changes will be reflected in our databases within a reasonable period of time.
  18. California Residents
    1. The California Consumer Privacy Act of 2018 (the “CCPA”) requires DTN to make certain disclosures that already are covered in this Policy. This section provides an overview of the information required by the CCPA and an includes a description of how California residents can exercise the rights available under the CCPA. Any terms defined in the CCPA have the same meaning when used in this Section 18.
    2. In order to operate the Application and to maximize your experience, we have collected and used in the past 12 months the Personal Data described in Section 5 of this Policy, which includes the following categories of information as defined by the CCPA: identifiers, internet or other similar network activity, and location data. The sources from which we collect your Personal Data are also provided in Section 5 and further details regarding the business purposes for our collection are set forth in Section 10. The following table summarizes what categories of personal information DTN or one of its entities has collected, disclosed, or sold within the last twelve (12) months.

      Category Examples Collected Disclosed Sold
      A. Identifiers. A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, or other similar identifiers. YES YES YES
      B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). A name, address, telephone number, education, employment, real estate financial information.

      Some personal information included in this category may overlap with other categories.

      YES YES YES
      C. Protected classification characteristics under California or federal law. Age (40 years or older), race, ancestry, national origin, religion or creed, marital status, sex (including gender, gender identity, gender expression, gender, veteran or military status. YES NO NO
      D. Commercial information. Records of personal property, products or service interests. YES NO YES
      F. Internet or other similar network activity. Browsing history, search history, information on a consumer’s interaction with our Platforms. YES NO NO
      G. Geolocation data. Physical location or movements. YES NO NO
      K. Inferences drawn from other personal information. Modelled tendencies, preferences, and interests.NO NO NO YES
    3. We may share your personal information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the personal information confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, DTN (or one of its entities such as Farm Market iD and/or Progressive Farmer) has disclosed personal information for a business purpose to the categories of third parties indicated in the chart below as “disclosed”.

      We may also share your personal information by selling it as part of our Services, subject to your right to opt-out of those sales as set forth within Section 18.7. We collect data that includes whether a child is present within a household and the general age range of children within the household. Outside of the information described in this paragraph, we do not knowingly sell information about individuals we know are under age 18. In the preceding twelve (12)
      months DTN (or one of its entities such as Telematch Inc./Farm Market iD and/or Progressive Farmer) has sold the categories of personal information to the categories of third parties indicated in the chart above as “sold”. DTN does not collect data directly from individuals for use in our Services. More information regarding your personal information sale rights is included below.

    4. The personal and other information we collect is collected from the following categories of sources:

      1. Public Record and Publicly Available Information. We collect the following types of data from public record and publicly available information:

        Real property recorder information, and crop, pesticide, and soil information.

      2. Information from Data Brokers. We collect the following types of data from data brokers:

        Demographic marketing information, farmer contact information (such as phone number and physical and email address), farmer contact information quality checks to ensure information is still relevant and accurate (e.g. USPS National
        Change of Address and active email confirmation via ISPs), geospatial and infrastructure data.

    5. How We Share Personal Information.

      1. As part of the Services, DTN discloses or sells the personal information identified in the chart in Section 18.2 as “sold” to the following categories of entities:

        • Providers of products and services to farmers (directly or indirectly)

        • Purchasers of products and services from farmers

        • General sales and marketing companies

    6. Under the CCPA, California consumers have certain rights similar to those set forth in Section 17. The following information further explains these rights, provides instructions for submitting CCPA requests, and generally describes the process DTN will use to verify and respond to CCPA requests:

      1. You may request twice within a 12 month period that DTN disclose the categories of Personal Data collected about you in the 12 months preceding your request, the categories of sources from which the Personal Data was collected, the business or commercial purposes for which Personal Data was collected, and the categories of third parties with whom DTN shared your Personal Data. You may also make a request for the specific pieces of Personal Data that we have collected about you. If we are able to provide this information electronically, we will do so in a portable format.
      2. Additionally, you have the right to request that DTN delete your Personal Data from our systems. DTN will take reasonable steps to fulfil your request, however, in certain circumstances we will be unable to delete all of your Personal Data as DTN is lawfully authorized to retain certain categorizes of your Personal Data for legitimate business and regulatory purposes. In instances where DTN is not required to delete of your Personal Data, DTN will notify you of those categories of Personal Data that we did not delete and will provide an explanation as to why the information could not be deleted.
      3. Please note that DTN must be able to verify your identity in order to comply with your requests under this section. Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your Personal Data. To do so, DTN will seek to associate the information provided by you when making a request with Personal Data we have collected about you previously. If we are unable to appropriately verify your identity, we may ask you to contact us to provide additional information or explain why we are unable to complete your request. If you are requesting specific pieces of Personal Data as the authorized agent of a California consumer, we will ask you also to submit reliable proof that you have been authorized in writing by the consumer to act on such consumer’s behalf.
      4. California residents may submit any of the requests described in this section by email to privacy@dtn.com, calling 1-800-485-4000, or by mailing a request to the address provided in Section 24 of this Policy. Please include with your request your full name, preferred contact information and the nature of your request. Making a verifiable consumer request does not require you to create an account with us.
      5. We endeavor to respond to verifiable consumer requests within 45 days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
    7. Children age 18 or older or their parents have the right to direct us to not sell those children’s personal information at any time (the “right to opt-out”). Consumers who opt-in to personal information sales may opt-out of future sales at any time.

      To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by visiting the following Internet Web page link:

      Do Not Sell My Personal Information

      If you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales. However, you may change your mind and opt back in to personal information sales at any time. You do not need to create an account with us to exercise your opt-out rights. We will only use personal information provided in an opt-out request to review and comply with the request.

    8. DTN may not and will not discriminate against any California consumer for exercising any of the rights described in this section, including in terms of price or services that we offer.
    9. California Civil Code Section 1798.83, also known as California’s “Shine the Light” law, also allows California residents to request certain information regarding our disclosures in the prior calendar year, if any, of Personal Data to third parties for their own direct marketing purposes. If applicable, you may be able to opt-out of our sharing of your Personal Data with unaffiliated third parties for the third parties’ direct marketing purposes. Please send your request under Section 1798.83 (along with your full name, email address, postal address, and the subject line labelled “Your California Privacy Rights”) to privacy@dtn.com. We will attempt to provide you with the requested information within 30 days of receipt. Please note that not all Personal Data sharing is covered by Section 1798.83’s requirements.
  19. Nevada Residents
    1. Nevada residents who wish to exercise their sale opt-out rights under Nevada Revised Statutes Chapter 603A may submit a request by calling us at 1-800-485-4000 or by sending us an email at privacy@dtn.com, or by mailing a request to the address provided in Section 24 of this Policy.
  20. Links and Third Party Websites
    1. The Sites may contain links to other websites. Please be aware that we are not responsible for the privacy practices or the content of such other websites. We encourage our Users to read the privacy statements of each and every website they visit. This Policy applies solely to information collected by us through the Sites and does not apply to these third-party websites. The ability to access information of third parties from the Services, or links to other websites or locations, is for your convenience and does not signify our endorsement of such third parties, their products, their services, other websites, locations, or their content.
    2. Also, DTN may allow select third parties to offer subscription services or fee-based products through the Sites. DTN makes no guarantees in regards to the policies of these parties, so you should investigate each site’s privacy policy before providing Personal Data to third parties.
  21. Children Should Not Provide Information to Us
    1. None of our Services are intended for use by children, and we have no desire to collect Personal Data from those under the age of 13 (“Children”). DTN requests that Children DO NOT provide Personal Data to us. In an instance where such Personal Data was collected it would be purely accidental and unintentional. If we become aware that Personal Data has been submitted by a Child, the information will be deleted from the DTN databases. DTN encourages parents to discuss the Internet with their Children and monitor Personal Data that a Child may provide via the Internet.
  22. Change in Ownership
    1. In the event of a change in ownership of DTN as a result of a sale, merger, acquisition or bankruptcy, then DTN reserves the right to, subject to this Policy, transfer all of your Personal Data to a separate entity. DTN will use commercially reasonable efforts to notify you (e.g., by posting on its Sites, issuing a press release, or notification by e-mail) of any change in ownership.
  23. Policy Changes & Updating Information
    1. DTN reserves the right to modify this Policy whenever the need arises. Updates to this Policy will be posted to the Services in a timely manner. When such updates are made, the “last updated” date at the top of this Policy will be modified. This policy is not a contractual agreement and does not provide you with any legal right. Unless otherwise specified, the Sites, its content, and its domain name and URLs are the sole property of DTN.
  24. Questions
    1. Should you have any questions, you may contact us via the following details:

      EU / EEA citizens:
      MeteoGroup Nederland B.V.
      Att.Sylvia van Zijderveld
      P.O. Box 24092,
      3502 MB Utrecht
      Email: privacy@dtn.com

      Non-EU / EEA citizens:
      DTN, LLC
      ATTN: Privacy/Marketing
      2131 Lindau Lane, Suite 700
      Bloomington MN, 55425
      Phone: 1-800-485-4000
      Email: privacy@dtn.com

    2. DTN will investigate and attempt to resolve complaints and disputes regarding use and disclosure of Personal Data by reference to the principles contained in this Statement.
Table 1
Categories of recipients inside the EEA (including names of recipients as an example Arrangements
IT and Technology services providers

  • MTI
  • Piksel
  • EPAM
  • JKP
Data Processing Agreement
Financial software providers

  • People Soft
  • Afas Profit
Data Processing Agreement
Tax Authorities and Agencies

  • Local Tax Authorities
A data processing agreement is not required since this category of recipients is a controller itself.
Accountants and auditors

  • Various accountants and auditors (e.g. PWC, Splendor, Grant Thornton, TÜV Nord)
Data processing agreements are not required.
Office Software applications

  • Microsoft Office 365
Data Processing T&C as part of Service Agreement
Hosting of data bases

  • Amazon Web Services (Frankfurt / Ireland)
Data Processing T&C as part of Service Agreement  
Communication solution providers

  • VoIP Studio
  • Vonage
Data Processing Agreement
Resellers or partners

  • Kisters
  • MeteoIQ / Gothaer
  • Warehousing partners (e.g. La Isla Warehouse)
  • Sosein Tele Comunicaciones
Data processing agreements may be required, this will be decided on a one-by-one case
Service desk and incident management software

  • ServiceDesk
  • Topdesk
  • JIRA
  • Zendesk
Data Processing Agreement or addendum as part of T&C / service agreement
Analytics tools

  • Google Analytics and Google Firebase
  • Segment
Data Processing Addendum as part of Service Agreement
 
Rostering and time management software

  • Ortec
  • Replicon Project Management software
Data Processing Agreement
Categories of recipients outside EEA Location Safeguards
DTN and legal entities outside EEA Philippines, USA, Canada, Switzerland, UK, Australia Adequacy decisions (UK, Canada and Switzerland)
Intragroup Personal Data Transfer Agreement (including Standard Contractual Clauses)
Hosting of databases

  • AWS
  • Google Cloud
  • Microsoft Cloud
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
Corporate Binding Rules
Marketing, analytics and CRM software providers

  • Salesforce DC including Commerce Cloud and Salesforce Chat
  • Churn Zero
  • Zoominfo, Snowflake and Segment (Data Management Landing Pages
  • e.g. Gravity Pages DTN.com)
  • Eloqua landing pages for campaigns and messaging
  • Webex and Teams (webinars)
  • Creative Services
  • Wrike (collaboration tool for communication)
  • Alteryx (aggregator tool)
  • Hotjar (heat maps on clicks)
  • Lucky orange
  • Tableau (front end reporting)
  • Podicasting (Squadcast)
  • Transperfect (Translations)
  • Bambu (Sprout – for social channels)
  • HubSpot (Online Fuel CRM)
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Event Management Software providers

  • Cvent (event registration and financial transactions – collecting credit card payments)
  • Smartsheet (events and logistics)
  • Icapture (scanning software batches and business cards)
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Document Management System Software providers

  • Box
  • Confluence (Atlassian)
  • Jostle (The Hub)
USA
(Data is stored inside EEA via Box Zones)
Data Processing Agreement including Standard Contractual Clauses (SCC)
Corporate Binding Rules
Contract Management System Software providers

  • Concordnow.com
USA
(Data is stored inside EEA)
Data Processing arrangements in Privacy Policy
 
Monitoring, validation and ETL software

  • 6Sense
  • ZeroBounce
  • RedPoint Global
  • Auth0 user authentication system (login credentials, customer login rules, passwords)
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Email service providers

  • Pinpointe
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Customer service solution providers

  • Omnichannel (service program)
  • Bandwith (text messaging system)
  • Vonage
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Customer feedback solution providers

  • CSum (customer satisfaction surveys)
  • ChurnZero (customer feedback solution)
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Communication solution providers

  • Vonage Call Center
  • Calendly
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
CyberSource USA Data Processing Agreement including Standard Contractual Clauses (SCC) https://www.cybersource.com/en/about/dpa.html
Advertising partners

  • LiveRamp
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
Enhancement/plugin providers

  • Livesupporti (chat plugin)
  • Google (fonts)
  • US Census
  • Here (street/satellite maps)
  • NOAA (flood maps)
USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 
PasswordVault software USA Data Processing Agreement including Standard Contractual Clauses (SCC)
 

 

Table 2
Record type Retention Period Processed by DTN entity or group of entities
DTN, LLC MeteoGroup EU entities MeteoGroup non-EU entities (UK, CH) DTN Philippines LTD DTN Weather Services EU entities DTN Weather Services Australia DTN Progressive Farmer LLC Telematch Inc. (Farm Market iD) Online Fuel Ltd Weatherzone Australia
Customer data in our Finance Systems (PeopleSoft, AFAS Profit servers and previous used systems),Order Management System, DTN IQ (eCommerce application US), SalesForce DC):
Name and contact details (address, email and phone number), bank account numbers
7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X X X X X X  
Supplier data in our Finance Systems, (PeopleSoft, AFAS Profit, servers and previous used systems)
Name and contact details (address, email and phone number), bank account numbers
7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X X X X X X  
Customer data in Sales Systems (SalesForce Service Cloud)
Name, contact details (address, email, phone number)

During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X X X X X X X
Data of customers, ex-customers and other contacts in Servicedesk softwaretools (Topdesk, Zendesk, Omnichannel, Vonage, ServiceDesk and/or JIRA)
Contact data (name, telephone number, email addresses) and detailed information for trouble shooting, fixing and maintenance, customer requests, managing changes, issues and product complaints.  
 
No longer than necessary for the performance of the service or use of the product with a maximum of 3 years. X X X X X X       X
Data of customers in service and maintenance software tool (Rosmiman)
Contact data (name, telephone number, email addresses), location information, detailed information for maintenance and service purposes.
No longer than necessary for the performance of the service (retention dates will be defined with clients using Rosmiman)         X          
Credit card information in our Order Management System or via Online Bill Pay Portal, DTN IQ and/or CyberSource
Credit card number replaced by token ID in Order Management
DTN does not store customer credit card information X X X X X X X X X X
Data of customers, ex-customers, prospects and other contacts in Marketing Systems (Eloqua, STACK, HubSpot, ChurnZero, Qualtrics, 6Sense, Zoominfo, Capture, Creative Services, Wrike, Alteryx, Hotjar, Lucky Orange, Tableau,
Squadcast, Transperfect )

Name, contact details (address, email, phone number)

3 years (for ex customers and prospects/contacts older than 3 years who haven’t engaged with Eloqua emails/forms in the past 24 months) or
< 1 month in case of opt-out.
X X X X X X X X X X
Contract data in Contract Management Systems
Name, contact details (address, email, phone number)
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X X X X X X X
Event data in Event Management Software (Webex, Teams, Cvent, Capture, Creative Services, Transperfect, Smartsheet, Chur)
Name (first name and last name), contact details (address, email, phone number – addresses may be private addresses from farmers and land owners), event related information e.g. function, diner arrangements, gifts, creditcard details
via Cvent)
3 years or
< 1 month in case of opt-out.
X X X X X X X X X X
Customer data in our Production Systems (such as PPF Weather Room, RMI Platform Data Provisioning, Energy platform, Armorhead, RBS,  Microsoft Access Scripts, RoadMaster, JMS, Meteofeed etc.)
Name and contact details (email address, fax and telephone numbers), FTP credentials
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Personal data in our Partner Insights EDI tool for Energy customers US
Drivers documents and qualifications (expiry dates of drivers licenses, certificates/qualifications of truck drivers and uploaded documents e.g. drivers licenses)
No longer than necessary for the performance of the service X                  
Personal data in Guardian Host Support module
business email addresses, telephone numbers, contact details, information needed for bug fixing, connectivity problems, repairs and data exchange  
No longer than necessary for the performance of the service X                  
Personal data in our Energy products US (TABS, Guardian, messaging tools)
business email addresses, telephone numbers, contact details, User ID and password, Terminal addresses (always related to a business).
No longer than necessary for the performance of the service X                  
Customer data in WSO Weather Sentry Online
Name and contact details (recipient / account information) first name and last name, email address, IP address, client ID and Secret (username/password) encrypted, geo location(s) including user location, (company) address, telephone
number
No longer than necessary for the performance of the service or use of the product. X X                
Customer data in Authentication Management Tool of Weather API and Marine Content Services (Marine Weather API, Vessel Routing API, Vessel Insights API, Vessel Analytics Weather Factor API)
Name and contact details (email address, (company) address, telephone numbers), client ID and Secret (encrypted)
No longer than necessary for the performance of the service. Client secret (password) is sent once and not stored.
 
  X X X            
Customer data in User Authentication System Auth0 (AuthZero)
login credentials, customer login rules, passwords
 
No longer than necessary for the performance of the service. Client secret (password) is sent once and not stored.
 
X X X X X X X X X X
Personal data in Weather API and Marine Content Service logs:
Personal data long logs: parameters, endpoint, client ID, geo location (coordinates), request time stamp, request. Purpose: Generate automated usage reports, prepare data for potential load test scenarios (more accurate simulation of
production load to optimize product), issue discovery and problem solving, understanding of user cases.
Personal data 2 week logs: parameters, endpoint, client/user ID, IP address, geo location (coordinates), request time stamp, request. Purpose: Generate additional information about requests that failed for any reason, used for debugging
and problem solving.
Long logs: for the duration of the service, anonymized after service end. 
 
Two (2) week logs: 2 weeks
X X X X            
Customer data in SPOS, RBS SPOS and Informix Database
Name, email addresses and passwords of ship captains
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in RouteGuard, FleetGuard, RBS, Armorhead and Informix Database
Name, email addresses and passwords of ship captains and customer operators
 
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in RBS Offshore dataset for PDF forecasts and OCW (Offshore Customer Website), Informix Database
Name, email addresses and passwords of operators
 
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in WWP Weather Window Planner Admin, MySQL Database, webapp.nowcastingint.com 
Name, email addresses, usernames and passwords of operators
 
 
 
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in Nowcasting Pro Administration, MySQL Database
Name, email addresses, usernames and passwords of operators
 
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in MetOceanPro Admin / MetOcean Data Server
Name, email addresses, usernames and passwords of operators
 
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data MeteoPower.com, Weather Sentry (e.g. Weather Sentry Utility Edition Europe), World Climate Service, Energy Datafeeds and Energy MetOps Weather Room Consultation Service
Name of contact person or user, contact details e.g. email address, phone number (in Salesforce and Eloqua), username and password, hashed/encrypted in product application
Contact details necessary for support and issues (collected via Customer Support and processed in tickets e.g. Jira or ServiceDesk tickets).
Location details (geo location): location of assets e.g. wind turbines (for providing the up height wind data of specific wind turbine location), or powerlines. This cannot be related to the geo location of an individual person.
During the contract period if data has financial impact: 7 years after approval of Financial Statement / Annual Report (Tax Law) – global retention period therefore is 10 years X X X X            
Customer data in Weather Rooms and Weather Room Apps for forecaster discussion, Presentation Creator and FOD Creator, Churada, ClearPath
Email addresses of operators
No longer than necessary for the performance of the service. X X X X            
Social media export functionalities via Social Media Platform H4
Facebook, Twitter and YouTube accounts of customers/prospects of Weather Presenter (only when manually provided by user)
Data is not stored locally. API/Plugin provided by Social Media platforms used. X X   X            
Customer data for HydroMaster trials
Name (first and last name), address, email addresses, phone numbers (including mobile), Twitter account
No longer than necessary for the performance of the service. X X X X            
User data in Zima / Glaette 24 (KDM)
Name, email addresses, usernames, passwords, phone numbers
No longer than necessary for the performance of the service. X X   X            
Customer data in RoadMaster Action Log Distribution List (RMP MongoDB, AWS Ireland)
Email addresses
No longer than necessary for the performance of the service. X X X X            
User data in RoadMaster Mobile App CSC Database
Email addresses
No longer than necessary for the performance of the service. X X X X            
Customer data in Transport customer contacts (Gladheid.nl, RoadMaster, RunwayMaster, Aircraft IceGuard, RBS Informix, UCS MySQL, AWS Ireland, ClearPath)
Names, email addresses, phone numbers
No longer than necessary for the performance of the service. X X X X            
Customer data in Transport Email Distribution List (RBS Informix UCS MySQL, AWS Ireland)
Email addresses
No longer than necessary for the performance of the service. X X X X            
User data in Transport website users Gladheid.nl, RoadMaster, RunwayMaster, Aircraft Iceguard (RBS Informix UCS MySQL, AWS Ireland
Names, email addresses, usernames and passwords
No longer than necessary for the performance of the service. X X X X            
Customer data in MeteoFeed (Telehouse DB)
Names, email addresses, client ID, FTP credentials
No longer than necessary for the performance of the service. X X X X            
Customer data in KUBE (cluster DB)
Names, email addresses, client ID, FTP credentials
No longer than necessary for the performance of the service. X X X X            
Customer data in Lightning Tracker
Names, email addresses
No longer than necessary for the performance of the service. X X X X            
Customer data for severe weather warning services
Names, email addresses, phone numbers
No longer than necessary for the performance of the service. X X X X            
Personal data from contracting partners and station operators of Measurement Network Germany and Switzerland (Messnetz, Metrilog, KUBE, Excel, Confluence), including mailing lists
Names, email addresses, telephone numbers, WhatsApp, geolocation and coordinates of weather stations, photographs (this may include private properties)
No longer than necessary for the performance of the service. X X X X            
Facilities access data and images from surveillance cameras (CCTV)
Key card (“badge”) number and CCTV recordings which may be associated with the building(s) and carpark(s) to which you have access to each location, the reason(s) for which you were given access, “access data”
(including the time you entered and exited security checkpoints using your badge or as a recording on CCTV), or similar information, all in accordance with applicable law.
 
Facility access data:
Within 1 month after your visit.
 
CCTV: 1 month, unless those images can contribute to prove an offense, damage, incivility
or allow to identity a perpetrator, a disruptor of the public order, a witness or a victim.
X X X X X X X X X X
Visitor data in our online visitor registration system
Name, contact details, geo location in our Utrecht office
30 days   X                
Photographs and video images for company use and commercial use DTN has a legitimate interest for publishing photographs on website and commercial material, however will only do this with prior consent of your organization. X X X X X X X X X X
Personal data in business emails
DTN has a legitimate interest to have litigation hold (set in MS Office 365) and retention time on email and will not need active consent of the data subject for this.
7 years X X X X X X X X X X
Telephone call recordings
Name and surname, contact details (if provided during call), date/time of recording
 
No longer than necessary for the purpose of use, however with a maximum of 6 months X X X X X X X X X X
Personal data of landowners, farm owners, farm operators, growers and networks of decision makers, influencers and stakeholders (e.g. family) located in the US (FMiD)
Name and contact details (recipient / account information) first name and last name, email address, device information, IP address, account name, geo location(s) including user location, (company) address, telephone number, personal
characteristics such as race*, marital status, or gender*, various farm information such as land ownership, crop and soil data, household information (e.g. number of people, age of persons in a household)
* special category data
No longer than necessary for the performance of the service or use of the product. X             X    
Personal data of landowners, farm owners, farm operators, growers and networks of decision makers, influencers and stakeholders located in the US (North America) and Canada – Progressive Farmer
Name and contact details (recipient / account information) first name and last name, email address, cell phone numbers, business demographics, livestock, acres, crop information
No longer than necessary for the performance of the service or use of the product. X           X      
Personal data Online Fuel:
Name and contact details, job title, profession, IP addresses, web browser and type, version, operating system, username and password  
No longer than necessary for the performance of the service or use of the product. X               X