For the purposes of this Privacy Statement, the controller is FSC Global Development GmbH. For contact details of FSC GD and our Data Protection Officer, please see Section 11.

FSC GD conducts sustainability programs (hereinafter ‘Programs’) in cooperation with the Marketplaces/Platforms. Marketplaces/Platforms are online platforms enabling third-party sellers to sell new or used products. The purpose of the Programs is to increase the formal recognition of the legitimate FSC-certified products offered or sold on the Marketplaces/Platforms as part of the Marketplace/Platform support approach (hereinafter ‘Purpose’).

For the Programs, we need to collect and/or store some business and/or personal data, which can include the following:

• Company name
• FSC certificate code (format XX-COC/FM-xxxxxx)
• FSC License code applicable to this product
• Names of users of FSC Certified Products Portal
• Email addresses of users of FSC Certified Products Portal
• Primary phone number
• Marketplace (where the product is sold in terms of region)
• Product Identification Type
• Product Identification Number
• Product name, id
• FSC Label Type
• Brand
• Manufacturer SKU 
• Hyperlink to the product (where it is sold)
• An image of label associated with the product 
• Supporting documentation (e.g., supplier invoice, sales documentation, CB label approval email etc.) if applicable 
• Supplier name and supplier’s CoC certification code/licence code (if applicable) 
• Review & Rejection reasons (if applicable)
• Supplier name and supplier’s CoC certification code/license code if applicable
• The reasons (e.g., records of online usages of the FSC Certified Products Portal) why certain companies are being entered into a blocklist and their accesses to the FSC Certified Products Portal are deactivated thereafter
   

We process business and/or personal data provided to us directly by you or follow-up communication. By ticking the consent box, you provide us with your consent to the processing in accordance with Art. 6 para 1 lit. a GDPR to process your personal data for the purposes indicated in this Privacy Statement. Your consent serves as legal basis for the processing. 

If the business and/or personal data you provided needs to be corrected, please, make the changes via FSC Certified Products Portal by logging in.

In the event the business and/or personal data is not updated or reconfirmed after a period of one (1) year after its submission, the business and/or personal data may be removed automatically from Marketplace/Platform it was shared with.

We are not using your personal data for anything else beyond:

1. The Programs or the processing described in this Privacy Statement.
2. Informing you about the business or technical changes that have/may be affected in the working of the Programs and/or the FSC Certified Products Portal.
3. Storing your information in our CRM system.
4. Sending you marketing information regarding products/services/solutions that FSC has built in accordance with applicable legal provisions.

The data that you provide will be captured in a designated format and stored into the database of FSC Certified Products Portal. The data will be transferred to the Marketplace/Platform strictly in accordance with the Purposes of the processing described above.

The reasons (e.g., records of online usage of the FSC Certified Products Portal) why certain companies are being entered into a blocklist will be only accessible and used by the authorized staff of the organization.
 

All business and/or personal data we process in the Programs is processed by FSC GD staff, staff from the FSC Trademark Service Providers responsible which may include FSC Network Partners and FSC Regional Offices (Local FSC Teams | fsc.org) or FSC Certified Products Portal for the purpose of conducting the Programs and is shared with Marketplaces/Platforms or its affiliates.

The information and/or data shared will be treated within the Purpose of the Programs with a data sharing agreement in place with the Marketplace/Platform. In the course of the Programs, we provide business and/or personal data to our data processor Novi Connect, Inc., a service provider which distributes the business and/or personal data to the Marketplaces/Platforms. 

If the personal data that we collect from you needs to be transferred to, and processed by another processor based outside of the European Economic Area (EEA), we will take steps, such as including contractual clauses into our contracts with such processors or controllers, that would ensure that your personal data is safe and treated securely and in accordance with this Privacy Statement. Other than that, we do not share the personal data with other third parties, unless described in this Privacy Statement or is required to do so by law. Please contact FSC GD to obtain a copy of transfer mechanisms; for contact details, please see Section 11.
 

We will keep your data for 10 years following the termination of your user account on our FSC Certified Products Portal. Upon your request, we provide you with information about the personal data we hold about you. Furthermore, upon request we rectify or delete your personal data, as far as no statutory storage requirements apply. For details on your rights, please see the respective section below.

We are committed to ensuring the privacy of your personal data. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the personal data we collect online.

We would like to make sure you are fully aware of all your data protection rights. You are entitled to the following:

• The right to access enables you to receive information on whether we process your personal data as well as a copy of the personal data we process about you. 
• The right to rectification enables you to have any incomplete or inaccurate personal data we hold about you corrected, though we may need to verify the accuracy of the new personal data you provide to us.
• The right to erasure enables you to ask us to delete or remove personal data where there is not a good reason or legitimate interest for us to continue to process it.
• The right to restrict processing enables you to ask us to suspend the processing of your personal data under specific circumstances.
• The right to data portability enables you to request that we provide you or a third party of your choosing with the personal data which you have provided to us (in a structured, commonly used, machine-readable format).
• The right to object enables you to object to our processing of your personal data where we rely on our legitimate interest as legal basis. In some cases, we may demonstrate that we have compelling legitimate grounds to process your personal data which override your rights and freedoms.
• The right to make a complaint to the competent data protection authority. We would, however, appreciate the chance to deal with your concerns so if you have any questions or concerns regarding our processing of your personal data please contact us at privacy@fsc.org.

If you would like to exercise one of your data protection rights, please do not hesitate to contact us at privacy@fsc.org or our Data Protection Officer at the contact details set out below.
 

What are cookies?
Like many other websites, we also use "cookies". Cookies are text files placed on your computer, to help the website analyse how users use the site. This automatically gives us certain personal data, such as IP address, browser used, operating system from your computer and your connection to the Internet.

How do we use cookies?
This website uses cookies in order to improve the use experience and provide additional functionality. In the following user experiences, cookies are used to optimize the functionality: 1) you can be kept signed-in based on your choice across different browsers; 2) you can be protected from allowing an attacker to induce users to perform actions that they do not intend to perform; 3) during the browsing journey, the cookie will help to maintain the stability among different user actions and requests at the portal; 4) during the browsing journey, the cookie will help to maintain the stability of the webpages. 5) your cookie preference will be saved after the first acceptance to ensure smooth log-in.

Cookie information
 

We only use the necessary cookies which are needed to make the FSC Certified Products Portal function in a proper way. We do not analyse the collected information for trends and statistics. 
Only the people from within the FSC Group which may include affiliates of FSC who need the data to approach you or to respond to your communication will use your personal data.
 

If you have questions about this Privacy Statement, the personal data we hold off you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us:
Email us at: privacy@fsc.org

Postal Address and further company details:

FSC Global Development GmbH
Adenauerallee 134, 53113 Bonn, Germany 
Phone: 0049 (0) 228 36766 0
Fax: 0049 (0) 228 36766 30
Managing Directors: Dr. Subhra Bhattacharjee, Marion Barriskell, Marc Jessel and Ria Stout

Commercial register: Bonn HRB 15990
VAT-Ident-No: DE258067376

If you have a complaint about our use of your personal data, please contact our Data Protection Officer to address your complaint:

Scheja & Partners GmbH & Co. KG
Mr. Boris Reibach
Adenauerallee 136, 53113 Bonn 
Tel.: +49 (0) 228-227 226-0 
Fax: +49 (0) 228-227 226-26 
E-mail: info@scheja-partner.de 
Contact form: http://www.scheja-partner.de/kontakt/kontakt.html 
Website: www.scheja-partner.de 
 

We reserve the right to unilaterally change this Privacy Statement from time to time to ensure that it complies with current legal requirements or to implement changes to our Services in the Privacy Statement, for example, when introducing new services. In this case FSC GD will send a notification regarding any changes to your email address which is known to FSC GD. 

This Privacy Statement was last updated on 27 January 2026.