innogy SE (referred to as “the Company” hereinafter), Opernplatz 1, 45128 Essen, Germany, T 0800 9944009, F 0800 9944099, e-mail firstname.lastname@example.org is responsible for processing personal information.
To enable the shareholders to attend and exercise their rights at the Annual General Meeting, the Company must process personal information made available to it either by the shareholder directly (e.g. when filing motions) or via the depositary banks indirectly. Personal information primarily consists of the name, domicile and possibly further contact information of the shareholder, the number of shares held, the type of share ownership and the admission ticket number. The legal basis for this data processing is Article 6, Paragraph 1 (c) of the General Data Protection Regulation in conjunction with national regulations, in particular in connection with the German Stock Corporation Act.
Personal information is generally anonymised or deleted as soon as it is no longer needed for the aforementioned purpose and as long as it is not subject to statutory evidencetaking or archiving requirements (in particular arising from the German Stock Corporation Act, the German Commercial Code and the German Fiscal Code) mandating continued storage – as a rule for a maximum of three years – and barring legal reasons for storing it thereafter. To safeguard the Company’s justified interests, it may even be justifiable to archive this information through to the end of the 11th year following its collection or – in individual cases – even longer.
Some personal information is also processed by external companies involved in the conduct of the Annual General Meeting on commission from the Company (referred to as “Order Processors” hereinafter; above all IT service providers and other AGM service providers) and – in individual cases such as the legally required voting right notifications – by publication media and public authorities. Moreover, the personal information of the attending shareholders included in the list of attendees in accordance with Section 129 of the German Stock Corporation Act can be viewed by co-shareholders.
Based on statutory regulations, shareholders have the right to be informed of the personal information, have it corrected or deleted and to limit its processing as well as to objecting to its processing and transfer.
These rights can be exercised vis-à-vis the Company by contacting it using aforementioned contact information. Furthermore, shareholders are entitled to file an appeal before a regulatory authority, in particular in the member state of their whereabouts, their place of work or the place of the alleged violation. The public authority responsible for the Company is the Office of Information Security and Data Privacy of the State of North Rhine-Westphalia.
Moreover, shareholders can contact the Company’s Data Privacy Officer via the e-mail address email@example.com.
Additional information on data privacy can be found on the Company’s website at iam.innogy.com (footnote: “Data privacy”).
Last updated: March 2019