External Privacy Statement DTN

Version 4.0 Effective 1 April 2025

1. Introduction
   1. This Privacy Statement (“Statement”) is published and used by the different legal entities which ultimately fall under TBG Holdings (DTN) B.V., which include DTN LLC, the DTN Europe group of companies, the DTN Weather Systems group of companies, and their respective affiliates (referred to as “DTN”, “DTN Companies“, “we” or “us”). It applies to all our websites that we make this Statement available to you from, including dtn.com, dtnpf.com, mydtn.com, and all other DTN related websites, which we refer to as “Sites”. The Statement also applies to services provided by the DTN companies and on which a link to this Statement is displayed are referred, which refer to as “Services” in this Statement. More information on the DTN companies can be found in the below paragraph on ‘Data controllers’
   2. We respect privacy and value the confidence of our customers, employees, business partners, and others. We strive to collect, process, and disclose personal information in a manner consistent with the laws of the countries in which we do business and have a tradition of upholding the highest ethical standards in our business practices. We comply with the applicable laws and legislations, such as but not limited to the EU General Data Protection Regulation and UK General Data Protection Regulation (each referred to in this Statement as the “GDPR”, as applicable).
   3. We work with the following definition of “Personal Data”: all information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
   4. This Statement applies to the processing of Personal Data in connection to all business-to-business and consumer activities of DTN.
   5. This Statement describes the personal data that we collect on or through our Services, how we process and disclose such information during and after our relationship with us, the steps we take to protect your Personal Data, and the rights you may have related to our Personal Data collection and use practices.
2. Data controller
   1. A ‘data controller’ is understood to be the entity that determines the purposes and means of processing Personal Data. This definition is derived from the GDPR. However, the terminology will vary across applicable data protection laws in different countries.
   2. For the processing of Personal Data in the context of the activities of an establishment of DTN within the European Union, the data controller is DTN International B.V.
   3. For all other processing of Personal Data, the DTN entity engaging with you may act as a data controller, in particular DTN LLC is the controller in respect of personal data processed for users of DTN services based in the USA.
   4. Where a customer engages a DTN Company to provide professional services in accordance with section 4.12 (below), the respective DTN Company will act as a processor, processing on behalf of the customer who will act as the controller.
   5. Should you have any questions on this, please contact us via the details in this Statement at section 23.
3. Data Protection Officer and representatives

   1. DTN has appointed a contact person to direct your questions on privacy or the rights you may have to:

      DTN International B.V.
      Att. Sylvia van Zijderveld
      P.O. Box 24092,
      3502 MB Utrecht

   2. Please note that the Legal Department also receives a copy of privacy-related communications. We aim to respond within 30 days from the date we receive privacy-related communications.
   3. For the DTN Companies established within the European Union and the United Kingdom, this contact person is formally appointed as “Data Protection Officer”.
   4. For DTN Companies not established in the EEA and/or the UK, but are subject to the GDPR, the designated representative(s) are:

      • EU: DTN International BV, Orteliuslaan 1000 3528 BD, Utrecht Netherlands].
      • UK: DTN Europe UK Limited, 46 Chancery Lane, London, England, WC2A 1JE.

4. How and What Personal Data and information we process

   1. We may process, store and use the following categories of Personal Data where such is necessary:

      1. Name;
      2. Company details (registered name, address, registration number, etc.);
      3. Telephone number;
      4. E-mail address;
      5. Banking details;
      6. IP addresses, user/client ID’s and secrets;
      7. CCTV camera images, video recordings and voice recordings;
      8. Photographs or videos;
      9. All further Personal Data that might be necessary to adhere to this Statement;
      10. All further Personal Data you choose to provide to us and for which we have determined the purposes and means. You can find more detailed information in Table 2.
   2. Personal Data and further information is collected via the following sources.

   3. User-Provided Information. We collect Personal Data voluntarily provided by users or visitors of our Services (also referred to as “Users” or “you” in this Statement), including when you visit the Sites, use the Services, register an account, fill out forms on the Sites, when you provide us with your business card, when you subscribe to our newsletters, register for trainings or seminars, attend meetings or events we organise or visit our offices. We may also collect Personal Data from you when we are establishing a business relationship, performing professional services or you otherwise contact us. The Personal Data that we collect on or through our Services may include:

      1. your first and last name;
      2. email address and mailing address;
      3. telephone number(s);
      4. organizational affiliation and further company details;
      5. billing / financial information;
      6. and any other information you choose to provide when you use the Services or otherwise interact with us.

   4. Location Information. For some of our services, API’s, Sites and mobile apps we also collect geo-location information. We use your location information to provide requested location-specific services, including local weather forecasts, local farm information and asset tracking. By default, permission to use your location information must be granted by you. You may at any time opt-out from further allowing us to have access to your location data by turning off the location services in your mobile phone or browser settings. Please be aware that certain features of the mobile apps will not perform as expected if location services are turned off.

      We may only collect data regarding your location if you turn on such location services. The data regarding your location will be anonymised after your request. This anonymous data will be analysed to optimise our services as well as for marketing purposes. This does not identify your device or you. However, we may process your location data together with your personal information if you have given the appropriate consent.

   5. Public sources. Personal Data may be obtained from public registers (such as the Companies House or the Chamber of Commerce), public databases, government agencies, news articles and internet searches. Examples of data obtained from these sources are: satellite imagery, real estate and land records.
   6. Social and professional networking. If you register or login to our Websites or Services using social media (e.g. LinkedIn Twitter or Google) to authenticate your identity and connect your social media login information with us, we will collect Personal Data or content needed for the registration or login that you permitted your social media provider to share with us. Such Personal Data and content may include your name and e-mail address and depending on your privacy settings, additional details about you. Please review the privacy controls on the applicable social media service to set which Personal Data you want to share with us. For further details please be referred to the DTN Cookie statement.

   7. Automatically Collected Information. As is true of most websites and mobile applications, we or our third party service providers and partners (discussed below) collect information from you over time using automated means such as cookies, beacons, or online data analytics tools. We also automatically collect Personal Data via our security systems. This “automatically collected” information may include:

      1. CCTV camera images, photographs, voice recordings and video recordings.
      2. internet protocol (IP) addresses;
      3. MAC addresses;
      4. device IDs, device and browser type(s);
      5. referring/exit pages;
      6. device operating system, device version, platform version, date/time stamp, or clickstream data;
      7. and other information about the way you use the Services.
   8. For the automatically collected Personal Data via cookies and similar techniques, please be referred to the DTN Cookie statement.
   9. Depending on the jurisdiction in which you reside and the laws and legislations applicable to your situation, this automatically collected information may or may not be considered Personal Data. In the case it is considered Personal Data, we will obtain the proper consent and opt-out opportunity. We also use these technologies to collect information regarding your interaction with DTN-related links appearing on third-party websites or in a DTN-generated email, such as whether you click on or forward a link or message. We may link this automatically collected data to other information you provide, or we collect from you. We also may include Personal Data in our customer relationship management records to better understand and serve you.
   10. Do Not Track. DTN does not directly track you when you visit other websites or engage in other activities online, so we do not register Do Not Track (DNT) signals from your browser. However, you should review the privacy policies of other third parties that may be operating on our Sites (discussed below) to determine whether they honour DNT signals. For more information on “do not track” options, please see: http://donottrack.us/.
   11. Analytics. We automatically collect Personal Data to make use of analytics tools such as Google Analytics, Eloqua and Pendo to analyse trends, administer and improve our Services, and track Users’ movements around the Services and on the Internet, and to gather demographic information about our user base as a whole. These third party analytics companies do not seek to identify individual users or to receive personally identifiable information except as may occur when they use your IP address. This information helps us to improve our Services and deliver a better and more personalized service. Many of these companies, such as Google Analytics and Pendo, collect and use information under their own privacy policies, which we encourage you to review. For more information about Google Analytics, Eloqua and Pendo analytics and their privacy policies, please visit the Google Analytics privacy page (Privacy controls in Google Analytics – Analytics Help) and/or the Google Partners’ Page, (Who are Google’s partners? – Privacy & Terms – Google), the Eloqua privacy page (Data privacy and security features (oracle.com)) and the Pendo privacy page (Security at Pendo (trust.page). You may opt-out of Google Analytics or Eloqua web monitoring by following the instructions on the Google Analytics Web Monitoring Opt-Out page or the Eloqua Web Monitoring Opt-Out page. For further details please be referred to the DTN Cookie statement. Pendo is not placing any tracking technology on user devices.
   12. Clients. DTN may enter into an agreement with a customer that engages us to perform professional weather services. When performing these activities, these customers may share Personal Data with DTN for which these customers are data controllers.
   13. DTN has taken great care in setting out which Personal Data is processed by us. It may however be necessary for us to process additional Personal Data. When such happens, DTN will adhere to the safeguards as set out in this Statement.
   14. If you fail to provide mandatory Personal Data when requested, we may not be able to perform the contract we have entered into with you or the company you work for, or we may be prevented from complying with our legal obligations. Certain information is necessary to enter into an agreement with us and if not provided, we may not be able to enter into such agreement with you.
5. Special categories of Personal Data
   1. DTN collects “special category” data for use in its Services as that term is defined by the GDPR. We collect this data from our partner companies only if such data was disclosed voluntarily and with the necessary consents from the data subject. For more information on the data we collect, please see Table 2 of this Statement.
   2. When we do need to process such Personal Data, we may request your consent to do so. Examples of special categories of Personal Data we may obtain are dietary restrictions or physical health access requirements e.g. when registering for events or trainings or consumer demographic data and personal characteristics for our US agriculture services like race or gender.
6. E-mail
   1. If you receive commercial emails from us, you may unsubscribe at any time by following the instructions contained within the email or by sending an email to the address provided in the “Questions” at section 23. Please be aware that if you opt-out of receiving commercial email from us, it may take up to ten (10) business days for us to process your request. Additionally, even after you opt-out from receiving commercial messages from us, you will continue to receive otherwise permitted administrative messages from us regarding the Services.
7. Financial partners
   1. At times DTN may allow a customer to purchase or lease products or equipment and/or to make payments through the Services. In such event, DTN may use a third-party shipping company, such as UPS or FedEX, to fulfil customer orders through the Sites, and may also use a credit card processing company to bill you for goods or services that you request. The current credit card processing company that DTN uses is called CyberSource®, and more information about this company can be found at: www.cybersource.com. DTN takes all reasonable measures to select third-party agents for fulfilment and financial processing that agree to not retain, share, store, or use your personal or financial information for any other purposes than fulfilling orders or enforcing customer agreements.
8. Advertising
   1. We may also partner with a third party, including our current partner AdRoll, to display advertising on our Services and/or to manage our advertising on other websites and platforms. For further details please be referred to the DTN Cookie statement.
9. How We Use Personal Data – purposes of processing

   1. DTN processes Personal Data for the following purposes:

      1. As is necessary for the performance of contracts we have with you, or at your request prior to you entering into a contract with us (e.g., to send you product or billing information);
      2. Allowing DTN to provide, promote and improve products and services;
      3. To solicit, service and communicate with you;
      4. To allow you to set language, currency and other preferences in platforms;
      5. Organizing events for prospects and customers;
      6. Providing prospects and customers access to our products and services (including by means of verification of your identity and login data);
      7. Allowing DTN to manage our business operations and complying with internal procedures and policies (for example, monitoring of compliance to rules, procedures and policies such as e.g. internal and external audits or
         investigations);
      8. Allowing DTN to purchase products and services and communicate with the (representatives of the) companies that supply such (for example, (personally owned) weather stations);
      9. Allowing DTN to support suppliers (for example, owners of weather stations);
      10. Allowing DTN to secure its property (for example, by conducting CCTV for security reasons for the various DTN offices);
      11. Allowing DTN to use productivity and coaching tools to optimize its sales and customer service operations and ensure internal alignment and execution on company goals;
      12. Participation in DTN’s marketing initiatives or branding activities;
      13. Allow DTN to show advertisements;
      14. To comply with our legal obligations.
   2. DTN does not use Personal Data to make solely automated decisions about you or to make decisions about you that are likely to produce legal or similarly significant effects.
   3. We will only use Personal Data for the purposes for which we collected it. It may however be possible that we reasonably consider that we need to use it for another purpose, which is compatible with the initial purpose. If we need to use your Personal Data for an unrelated purpose, we will notify you.
   4. DTN does not sell or rent your Personal Data to third parties with the exception of the categories of personal information identified in paragraph 17.2 of this Statement. When you give us Personal Data, DTN will not share that information with third parties without your permission, other than for the limited exceptions and purposes described in this Statement or as otherwise permitted by applicable law.
10. Legal grounds
    1. We may rely on the following legal grounds when we process your Personal Data:
    2. Contract: we may process Personal Data as the processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.
    3. Consent: we may rely on your consent for the processing of Personal Data for one or more specific purposes.

    4. Legitimate interests of DTN: we may process Personal Data as the processing is necessary for the purposes of the legitimate interests pursued by DTN or a third party, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of Personal Data, in particular where you are a child. Such legitimate interests include:

       1. Our products and services: to provide, promote and improve products and services;
       2. Interaction: to interact and communicate with prospects, customers, suppliers and other third parties;
       3. Events: to organise events for you;
       4. Access: to you with access to our products and services (including by means of verification of your identity and login data);
       5. Business operations: to manage DTN’s business operations and complying with internal procedures and policies;
       6. Procurement: to purchase products and services and communicate with the (representatives of the) companies that supply such;
       7. Support: supporting suppliers;
       8. Security: to secure the DTN property;
       9. (Direct) marketing: to deliver information about our products and services, market insights and specialty knowledge we believe is welcomed by our business clients, subscribers and individuals who have interacted
          with us;
       10. Changes in our business and organization: we may restructure, expand or reduce our business and this may involve the sale and/or transfer of control of all or part of our business. Any Personal Data that you have provided will, where it is relevant to any part of our business that is being transferred, be transferred along with that part and the new owner or newly controlling party will, under the terms of this Privacy Statement, be permitted to use that Personal Data only for the same purposes for which it was originally collected.
    5. Legal obligations: we may process Personal Data as this is necessary for compliance with a legal obligation to which DTN is subject.
11. Recipients of Personal Data

    1. The following (categories of) third-party service providers receive Personal Data:

       1. The companies providing software;
       2. The companies providing product development services;
       3. The party providing financial services;
       4. Our IT system support company;
       5. The marketing services providers;
       6. Our financial partners;
       7. Other parties that support us in providing our services e.g. providers of telecommunication systems, archiving services, data management and cloud-based software services (e.g. our online marketing and sales tools).
    2. All third party service providers and other entities in the group are required to take appropriate security measures to protect Personal Data as set out in our policies. We do not allow our third-party service providers to use Personal Data for their own purposes.
    3. We may share Personal Data with other third parties, for example in the context of a possible sale or restructuring of the business. We may also need to share Personal Data with a supervising authority or a regulatory body, or to otherwise comply with the law or the legal obligations that DTN is subject to.
12. Instagroup sharing of Personal Data
    1. Where necessary, Personal Data may be shared with the DTN Companies for administrative purposes, for business restructuring purposes and to provide professional services to our customers, as part of our regular reporting activities on company performance, for system maintenance support and hosting of data.
    2. The DTN Companies are located around the world. We may share Personal Data with DTN Companies not located within the European Economic Area (hereinafter: “EEA“), Switzerland, nor the UK. To safeguard the transfer, the principal DTN Companies have entered into an Intragroup Personal Data Transfer Agreement. This agreement includes the European Commission standard contractual clauses alongside, where applicable, those adaptations necessary to UK and Swiss law. Where such transfer is made to a DTN Company that is yet to join the Intragroup Personal Data Transfer Agreement, such transfer will be made in accordance with section 13. Should you wish to review such safeguards, please contact us via the details as included in this Statement.
13. Transfer of Personal Data outside the EEA, Switzerland and the UK.
    1. Our partners are located throughout the world. Depending on the scope of your interactions with DTN, your Personal Data may be stored in or accessed from multiple countries, including those with data protection laws that are not deemed by the European Commission, UK Secretary of State, nor the Swiss Federal Data Protection and Information Commissioner to provide an adequate level of data protection, such as the United States. Whenever we transfer Personal Data or make it available outside of the jurisdiction where we collected it, we will ensure that the information is transferred in accordance with this Privacy Statement and as permitted by applicable data protection laws, such as but not limited to the GDPR (e.g., by implementing standard contractual clauses and appropriate security measures where we deem this necessary). If applicable, you may obtain a copy of the applicable safeguards. An overview of transfers is provided in table 1 as attached to this Statement.
14. Retention
    1. DTN will retain your Personal Data for as long as necessary for the purposes we collected it for. Specific retention times can be found in table 2 as attached to this Statement. Please note that these retention times apply under the condition that should DTN be required to store the Personal Data for a longer period of time, DTN may do so.
15. Security Measures
    1. DTN strives to protect and secure Personal Data in the most optimal way. ISO-certifications form a large part of our endeavours in this respect and we are constantly working on improving our standards throughout the DTN Companies. The DTN Companies comply with the security standards as reflected in the applicable laws and legislation in this respect such as but not limited to the GDPR.
    2. DTN holds a wide range of international certifications, based on globally recognized standards such as ISO 9001, ISO 27001, ISO 22301, ISO 45001 and ISO 14001. These certifications are unique to each DTN company* and are an independent endorsement to the superior level of quality with which we operate and enables us to make certain that the services we deliver to our clients are of consistent high quality, secure, compliant and fit for purpose. *Please note that ‘DTN’ in this provision refers to DTN generic branding, however the entity names may differ. The exact certified entity is indicated on each certificate.
    3. To learn more about the ISO 27001 certificate, click here to download.
16. Your Obligations and Rights
    1. It is important that your Personal Data is accurate and up to date. Please therefore keep us informed via the means we provide to you.

    2. Upon a reasonable request, Users of which the processing of Personal Data is covered by the GDPR, or other applicable law may have the following rights:

       1. Request access to your Personal Data (known as a ‘data subject access request’);
       2. Request correction of the Personal Data that we hold about you;
       3. Request erasure of your Personal Data;
       4. Object to processing of your Personal Data;
       5. Request the restriction of processing of your Personal Data;
       6. Request the transfer of your Personal Data to another party;
       7. Withdrawal of consent that you have previously provided. This will not affect the lawfulness of any processing carried out before you withdraw your consent. It may mean we are not able to provide certain products or Services to you and we will advise you if this is the case;
       8. File a complaint with the appropriate data protection authority. If you are based in the EEA, you can find your supervisory authority here: https://edpb.europa.eu/about-edpb/about-edpb/members_en. If you are based in the UK, your supervisory authority is the Information Commissioner. If you are based in Switzerland, your supervisory authority is the Swiss Federal Data Protection and Information Commissioner.
    3. To invoke your rights, you may contact us by using the information provided in this Statement using the Data Rights Exercise Request form on our website. In order to comply with these requests, we may ask you to verify your identity. Please note that your rights may be limited in certain cases – for example, if fulfilling your request would reveal information about another person, or if you ask to delete Personal Data which we are permitted by law or have compelling legitimate interests to keep. Permissible changes will be reflected in our databases within a reasonable period of time.
17. California Residents
    1. The California Consumer Privacy Act of 2018 (the “CCPA”) and California Privacy Rights Act of 2023 requires DTN to make certain disclosures that already are covered in this Statement. This section provides an overview of the information required by the CCPA/CPRA and an includes a description of how California residents can exercise the rights available under the CCPA/CPRA. Any terms defined in the CCPA/CPRA have the same meaning when used in this Section 18.

    2. 1.1 In order to operate the Application and to maximize your experience, we have collected and used in the past 12 months the Personal Data described in Section 5 of this Statement, which includes the following categories of information as defined by the CCPA/CPRA: identifiers, internet or other similar network activity, and location data. The sources from which we collect your Personal Data are also provided in Section 5 and further details regarding the business purposes for our collection are set forth in Section 10. The following table summarizes what categories of personal information DTN or one of its entities has collected, disclosed, or sold within the last twelve (12) months.

       As per section 1798.100(a)(2) of the CPRA, DTN also collects information that is classified as “Sensitive Personal Information” (SPI): credit card numbers (through third party for financial transactions), data on religion, ethnicity, or race and geolocation data. This SPI is not disclosed or sold.

       Category	Examples	Collected	Disclosed	Sold
       A. Identifiers.	A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, or other similar identifiers.	YES	YES	YES
       B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).	A name, address, telephone number, education, employment, real estate financial information. Some personal information included in this category may overlap with other categories.	YES	YES	YES
       C. Protected classification characteristics under California or federal law.	Age (40 years or older), race, ancestry, national origin, religion or creed, marital status, sex (including gender, gender identity, gender expression, gender, veteran or military status.	YES	NO	NO
       D. Commercial information.	Records of personal property, products or service interests.	YES	NO	YES
       F. Internet or other similar network activity.	Browsing history, search history, information on a consumer’s interaction with our Platforms.	YES	NO	NO
       G. Geolocation data.	Physical location or movements.	YES	NO	NO
       K. Inferences drawn from other personal information.	Modelled tendencies, preferences, and interests.NO	NO	NO	YES

    3. We may share your personal information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the personal information confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, DTN has disclosed personal information for a business purpose to the categories of third parties indicated in the chart below as “disclosed”.
    4. We may also share your personal information by selling it as part of our Services, subject to your right to opt-out of those sales as set forth within Section 17.7. We collect data that includes whether a child is present within a household and the general age range of children within the household. Outside of the information described in this paragraph, we do not knowingly sell information about individuals we know are under age 18. In the preceding twelve (12) months DTN has sold the categories of personal information to the categories of third parties indicated in the chart above as “sold”. DTN does not collect data directly from individuals for use in our Services. More information regarding your personal information sale rights is included below.

    5. The personal and other information we collect is collected from the following categories of sources:

       1. Public Record and Publicly Available Information. We collect the following types of data from public record and publicly available information: Real property recorder information, and crop, pesticide, and soil information.

       2. Information from Data Brokers. We collect the following types of data from data brokers: Demographic marketing information, farmer contact information (such as phone number and physical and email address), farmer contact information quality checks to ensure information is still relevant and accurate (e.g. USPS National Change of Address and active email confirmation via ISPs), geospatial and infrastructure data.

    6. How We Share Personal Information.

       1. As part of the Services, DTN discloses or sells the personal information identified in
          the chart in Section 17.2 as “sold” to the following categories of entities:

          • Providers of products and services to farmers (directly or indirectly)
          • Purchasers of products and services from farmers
          • General sales and marketing companies

    7. Under the CCPA/CPRA, California consumers have certain rights similar to those set forth in Section 16. The following information further explains these rights, provides instructions for submitting CCPA requests, and generally describes the process DTN will use to verify and respond to CCPA requests:

       1. You may request twice within a 12 month period that DTN disclose the categories of Personal Data collected about you in the 12 months preceding your request, the categories of sources from which the Personal Data was collected, the business or commercial purposes for which Personal Data was collected, and the categories of third parties with whom DTN shared your Personal Data. You may also make a request for the specific pieces of Personal Data that we have collected about you. If we are able to provide this information electronically, we will do so in a portable format.
       2. Additionally, you have the right to request that DTN delete your Personal Data from our systems, and you have the right to limit use and disclosure of Sensitive Personal Information. DTN will take reasonable steps to fulfil your request, however, in certain circumstances we will be unable to delete all of your Personal Data as DTN is lawfully authorized to retain certain categorizes of your Personal Data for legitimate business and regulatory purposes. In instances where DTN is not required to delete of your Personal Data, DTN will notify you of those categories of Personal Data that we did not delete and will provide an explanation as to why the information could not be deleted.
       3. Please note that DTN must be able to verify your identity in order to comply with your requests under this section. Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your Personal Data. To do so, DTN will seek to associate the information provided by you when making a request with Personal Data we have collected about you previously. If we are unable to appropriately verify your identity, we may ask you to contact us to provide additional information or explain why we are unable to complete your request. If you are requesting specific pieces of Personal Data as the authorized agent of a California consumer, we will ask you also to submit reliable proof that you have been authorized in writing by the consumer to act on such consumer’s behalf.
       4. California residents may submit any of the requests described in this section by using the Data Rights Exercise Request form on our website, calling 1-800-485-4000, or by writing a request to the address provided in Section 24 of this Statement. Please include with your request your full name, preferred contact information and the nature of your request. Making a verifiable consumer request does not require you to create an account with us.
       5. We endeavor to respond to verifiable consumer requests within 45 days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

    8. To exercise the right to opt-out, you (or your authorized representative) may submit a request to us by visiting the following Internet Web page link:

       to opt-out of sale or sharing of PI and limit the use or disclosure of SPI

       If you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize selling or sharing of personal information. However, you may change your mind and opt back in at any time. You do not need to create an account with us to exercise your opt-out rights. We will only use personal information provided in an opt-out request to review and comply with the request.

    9. DTN may not and will not discriminate against any California consumer for exercising any of the rights described in this section, including in terms of price or services that we offer.
    10. California Civil Code Section 1798.83, also known as California’s “Shine the Light” law, also allows California residents to request certain information regarding our disclosures in the prior calendar year, if any, of Personal Data to third parties for their own direct marketing purposes. If applicable, you may be able to opt-out of our sharing of your Personal Data with unaffiliated third parties for the third parties’ direct marketing purposes. Please send your request under Section 1798.83 (along with your full name, email address, postal address “>using the Data Rights Exercise Request form on our website. We will attempt to provide you with the requested information within 30 days of receipt. Please note that not all Personal Data sharing is covered by Section 1798.83’s requirements.
    11. DTN will collect and report the following information on:

        • The number of consumer requests described below that we received, complied with in whole or in part, and denied during the previous calendar year:

        ◦ Requests to delete personal information;
        ◦ Requests to know or access what personal information the data broker was collecting;
        ◦ Requests to know what personal information the data broker was selling or sharing and to whom;
        ◦ Requests to opt out of sale or sharing of personal information; and
        ◦ Requests to limit the data broker’s use and disclosure of sensitive personal information.

        • The median and the mean number of days within which DTN substantively responded to the above requests in the previous calendar year.

        You can find this information on our Privacy web page under the following link: https://www.dtn.com/subscription-agreement-addendums/

18. Nevada Residents
    1. Nevada residents who wish to exercise their sale opt-out rights under Nevada Revised Statutes Chapter 603A may submit a request by calling us at 1-800-485-4000 or by “>using the Data Rights Exercise Request form on our website.
19. Links and Third Party Websites
    1. The Sites may contain links to other websites. Please be aware that we are not responsible for the privacy practices or the content of such other websites. We encourage our Users to read the privacy statements of each and every website they visit. This Statement applies solely to information collected by us through the Sites and does not apply to these third-party websites. The ability to access information of third parties from the Services, or links to other websites or locations, is for your convenience and does not signify our endorsement of such third parties, their products, their services, other websites, locations, or their content.
    2. Also, DTN may allow select third parties to offer subscription services or fee-based products through the Sites. DTN makes no guarantees in regards to the policies of these parties, so you should investigate each site’s privacy Statement before providing Personal Data to third parties.
20. Children Should Not Provide Information to Us
    1. None of our Services are intended for use by children, and we have no desire to collect Personal Data from those under the age of 13 (“Children”). DTN requests that Children DO NOT provide Personal Data to us. In an instance where such Personal Data was collected it would be purely accidental and unintentional. If we become aware that Personal Data has been submitted by a Child, the information will be deleted from the DTN databases. DTN encourages parents to discuss the Internet with their Children and monitor Personal Data that a Child may provide via the Internet.
21. Change in Ownership
    1. In the event of a change in ownership of DTN as a result of a sale, merger, acquisition or bankruptcy, then DTN reserves the right to, subject to this Statement, transfer all of your Personal Data to a separate entity. DTN will use commercially reasonable efforts to notify you (e.g., by posting on its Sites, issuing a press release, or notification by e-mail) of any change in ownership.
22. Statement Changes & Updating Information
    1. DTN reserves the right to modify this Statement whenever the need arises. Updates to this Statement will be posted to the Services in a timely manner. When such updates are made, the “last updated” date at the top of this Statement will be modified. This Statement is not a contractual agreement and does not provide you with any legal right. Unless otherwise specified, the Sites, its content, and its domain name and URLs are the sole property of DTN.
23. Questions

    1. Should you have any questions, you may contact us via the following details:

       EU / EEA citizens:
       DTN International B.V.
       ATTN: Sylvia van Zijderveld
       P.O. Box 24092,
       3502 MB Utrecht
       The Netherlands
       Phone: +31 30 8082000 or 8082063

       UK citizens:
       DTN Europe UK Ltd
       ATTN: Sylvia van Zijderveld
       46 Chancery Lane,
       London, WC2A 1JE
       United Kingdom

       Swiss citizens:
       DTN Schweiz AG
       ATTN: Sylvia van Zijderveld
       Gaiserstrasse 47,
       9050 Appenzell
       Switzerland

       All other citizens:
       DTN, LLC
       ATTN: Privacy/Marketing
       2131 Lindau Lane, Suite 700
       Bloomington MN, 55425
       USA
       Phone: 1-800-485-4000

    2. DTN will investigate and attempt to resolve complaints and disputes regarding use and disclosure of Personal Data by reference to the principles contained in this Statement.

Table 1

Table 2

*Note:
DTN will delete or anonymize personal data when no longer necessary for the provision of the service (or the performance of the contract). In case personal data are necessary for accounting or validation purposes, DTN can archive data for a longer period of time (7 years).