Skip to main content

You are here

l
l
Privacy policy

Privacy policy

Part 1: Data protection information regarding our data processing pursuant to Articles (Art.) 13, 14 and 21 of the General Data Protection Regulation (GDPR)

We are very pleased about your interest in our website and our services. The protection of personal data is very important to us.

We have implemented technical and organizational measures to ensure the most comprehensive protection possible of the personal data processed via our websites. Nevertheless, internet-based data transmissions may generally have security gaps, meaning that absolute protection cannot be guaranteed.

With this privacy policy, we inform you how and for what purpose we collect and process your data and which claims and rights you are entitled to under data protection regulations.

1. Name and contact details of the controller responsible for processing

This data protection information applies to data processing carried out by (Controller):

EUROEXPO Messe- und Kongress-GmbH Joseph-Dollinger-Bogen 7 80807 Munich Fax: +49 (0)89 32 391-246 Tel: +49 (0)89 32 391-259 E-mail: management@euroexpo.de Web: www.euroexpo.de

The Data Protection Officer can be reached at the following address:

Werner Hülsmann

Münchener Str. 101 - Building 1 / 1st floor

D-85737 Ismaning

Tel: +49 (0)89 51 30 569-7

E-mail: euroexpo.de@extdsb.org

Web: www.datenschutzwissen.de

2. Scope of the processing of personal data

As a rule, we collect and process our users’ personal data only to the extent necessary to provide a functional website and our content and services.

Personal data are data that can be used to personally identify you. “Processing” means any operation or set of operations in connection with personal data, such as collection, recording, organization, storage, adaptation or alteration, disclosure, or any other form of use.

The collection and processing of our users’ personal data take place in accordance with the provisions set out below. Further details or additions regarding the purposes of data processing can be found in the respective contractual documents, forms, a declaration of consent and/or other information provided to you.

3. Legal basis for the processing of personal data

3.1. If we obtain the data subject’s consent for processing operations involving personal data, Art. 6(1)(a) GDPR serves as the legal basis. You may withdraw your consent at any time. You will be informed separately in the respective consent text about the consequences of withdrawal or of not granting consent.

As a general rule, the withdrawal of consent only takes effect for the future. Processing that took place before the withdrawal is not affected and remains lawful.

Consent: “Consent” means any freely given, specific, informed and unambiguous indication of the data subject’s wishes, by which the data subject, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to them.

3.1.1. In particular, when you subscribe to our newsletters, we use your name and e-mail address to regularly send you our personalized newsletters. Providing an e-mail address is sufficient to receive the newsletter. When you register for the newsletter, we also store the IP address assigned by the Internet Service Provider (ISP) to the computer system used by the data subject at the time of registration, as well as the date and time of registration. Collecting this data is necessary in order to be able to trace (possible) misuse of a data subject’s e-mail address at a later point in time and therefore serves our legal protection.

No further data is collected unless you provide it voluntarily.

Registration takes place using the so-called “double opt-in” procedure. You will receive an e-mail containing a link that you can use to confirm that you are the owner of the e-mail address and wish to be notified via our e-mail service. If your subscription is not confirmed after requesting the confirmation e-mail, your provided personal data will not be processed, but will be automatically deactivated and deleted at the next data review (usually within one week).

After registering, you can unsubscribe from the newsletter by clicking the link contained in each newsletter. The e-mail address and identifying details will be stored until you unsubscribe.

The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7(3) of the German Act Against Unfair Competition (UWG).

3.1.2. If you have questions of any kind, we offer you the opportunity to contact us via a contact form provided on the website. Providing your name and a valid e-mail address is required so that we know who the inquiry is from and can respond to it. The temporary storage of the IP address when submitting the form is required for the secure operation of the website and the underlying IT systems.

Additional information may be provided voluntarily.

Voluntary fields in the form are those fields that are not clearly marked as mandatory fields (red asterisk). We use the provision of address, telephone number or other personal data to be able to get in touch with you—also in case of follow-up questions—to conclude a contract with you, deliver ordered goods to you, or otherwise respond appropriately to your request.

Data processing for the purpose of contacting us is based on your voluntarily given consent, which can be revoked at any time. The data you enter in the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (e.g., after your inquiry has been fully processed). Mandatory statutory provisions—especially retention periods—remain unaffected.

3.1.3. Registration / user account

You can create a password-protected user account with us in which we store your personal data. This serves the purpose of providing you with the greatest possible convenience when processing your orders by enabling easier, faster and more personalized purchasing and by managing your user profile. Creating a user account is not required to use our website or to place orders with us. We offer you the option to complete your order as a guest. In this case, however, you must enter your data again in full for each order.

For your user account, we require the following information:

  • Salutation, first name, last name
  • Address
  • Payment details, unless you pay by invoice, and
  • a valid e-mail address.

In addition, to create a user account you must specify a password of your choice. Together with your e-mail address, this enables access to your user account. In your user account, you can view and change the data stored about you at any time.

To clarify possible follow-up questions more quickly, you may also voluntarily provide your telephone or fax number. In addition, you may voluntarily provide your occupation, company, department and country.

After deletion of your user account, your data will be automatically deleted for further use, unless we are obliged under Art. 6(1) sentence 1(c) GDPR to store it for longer due to tax and commercial retention and documentation obligations (from the German Commercial Code (HGB), German Criminal Code (StGB) or German Fiscal Code (AO)), or you have consented to storage beyond that pursuant to Art. 6(1) sentence 1(a) GDPR.

Those data which are strictly necessary for delivery or order processing are passed on to third-party service providers. As soon as storing your data is no longer necessary or required by law, it will be deleted.

3.1.4. Prize draws:

From participants in our prize draws, we require personal data (name, address, e-mail address, telephone number). We store this personal data by name for conducting and administering the prize draw in order to determine you as a potential winner and/or inform you of a potential prize, and to be able to answer questions from and to participants and winners. If you have won, we need your address to send you your prize.

In addition to the data collected via the participation forms, we store the time of participation as well as information about the browser used, the IP address assigned at the time of participation, and the participant’s last visited website. This information helps us with any necessary troubleshooting and in answering participants’ questions. It also enables us to identify participants who take part not personally but via prize draw services.

By participating, you consent to receiving e-mails (e.g., participation confirmation, prize notification, etc.).

We only pass on the personal data of winners that is required by us or our cooperation partners to hand over or claim the prize.

Subject to statutory retention periods, your personal data will be deleted no later than 1 month after the end of the prize draw. Your personal data will also be deleted if you withdraw consent to processing, unless there are compelling statutory retention periods. For details on your rights, see section 12.

Consent to the use of a photo

By participating in the prize draw, in the event that you win you grant your consent for your photo to be published on our websites. You may withdraw this consent at any time.

This publication is based on our legitimate interest as organizer to publish the prize draw winner, Art. 6(1)(f) GDPR.

3.2. Where the processing of personal data is necessary for the performance of a contract to which the data subject is a party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations necessary to carry out pre-contractual measures, e.g., with interested parties.

In particular, processing serves to provide media services, events held in person or in online format, purchases of products or services, consulting services and activities in the context of market research in accordance with your orders and wishes, and includes the necessary services, measures and activities for this purpose.

The following personal data are collected and processed for orders:

  • Salutation, first name, last name
  • Address
  • Payment details, unless you pay by invoice, and
  • a valid e-mail address.

In addition, you may voluntarily provide further data. This data processing is carried out based on our legitimate economic interest pursuant to Art. 6(1)(f) GDPR for the purpose of ensuring smooth and easy processing of your order and efficient handling of any follow-up questions.

  • Company
  • Title
  • Telephone number
  • Fax number
  • an alternative delivery address

Information on the use of apps

If, in accordance with the applicable terms of use of a third-party provider from which you download an app (such as iTunes, Google, etc.), we become your contractual partner for acquiring the app, we process—within the scope required for contract performance—the data provided to us by the third-party provider, e.g., your device ID, so that you can download the app onto your mobile device.

As a precaution, we point out that when using our products, online offerings and services via so-called mobile devices (smartphones, mobile phones, tablets, etc.), precise location data may be collected, used and disclosed, including the geographic location of your mobile device. In addition, further data may be collected, processed and used under the terms of your respective telecommunications provider.

3.2.1. Events

At our events (trade fairs, congresses, seminars, workshops, etc.), during registration we also collect participants’ data about their company, professional position and industry as mandatory information. This enables us, on the one hand, to determine whether participants have a professional connection to the respective event; on the other hand, we use their personal data record to implement “lead management” offerings. In the context of lead management, participants can have the barcode or QR code printed on their ticket scanned, for example by exhibitors, thereby enabling the exhibitor to access the participant’s data for later contact, possibly including advertising, or for granting discounts and vouchers from exhibitors or sponsors.

We process the collected data pursuant to Art. 6(1)(b) GDPR in order to fulfill the contract with a participant, generally for the purpose of attending the event. This also includes related customer support. Within lead management, the legal basis of Art. 6(1)(a) GDPR applies. By allowing the exhibitor or organizer to scan the QR code, participants give their consent to data processing.

Where permitted by law, we also process and use participants’ data for advertising contact by post or e-mail. Data processing is based on Art. 6(1)(f) GDPR in order to inform participants about our events and related topics.

If participants redeemed an exhibitor’s admission code for a ticket, we pass their personal data on to the inviting exhibitor.

On our websites, interested parties and participants can order programs and catalogs for our events. For this purpose, we require the name, e-mail address, and the desired shipping address of the participant or exhibitor. Further information is voluntary.

The legal basis for processing is Art. 6(1)(f) GDPR (legitimate interest of the controller). The data are processed only to respond to the inquiry and deleted after completion of your request, unless statutory or contractual [requirements apply].

Companies wishing to participate in our events as exhibitors must submit registration documents to us or complete an online registration form. During registration, we record all data necessary for processing the declaration of participation and for preparing, conducting and handling your participation.

Where permitted by law, we also process and use the data for advertising contact by post, e-mail and/or telephone.

We process the collected data pursuant to Art. 6(1)(b) GDPR for the purpose of performing the contract concerning exhibitors’ participation in a trade fair. This also includes related customer support.

3.3. If processing of personal data is necessary to comply with a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis.

Primarily, these are statutory requirements (e.g., commercial and tax laws), but also, where applicable, supervisory or other official requirements. The purposes of processing may include identity and age verification, fraud and anti-money-laundering prevention, the prevention, combating and investigation of criminal offenses endangering assets, compliance with tax control and reporting obligations, and the archiving of data for the purposes of data protection and data security and for audits by tax and other authorities. In addition, the disclosure of personal data in the context of official/court measures for the purposes of taking evidence, criminal prosecution or enforcement of civil law claims may become necessary.

3.4. If processing is necessary to safeguard a legitimate interest of our company or a third party, and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6(1)(f) GDPR serves as the legal basis for processing. According to Recital 47 GDPR, this is the case, for example, where there is a relevant and appropriate relationship between the data subject and the controller, e.g., if the data subject is a customer of the controller. It also applies for the following purposes:

  • Ensuring a smooth connection setup of the websites
  • Ensuring comfortable use of our websites
  • Evaluation of system security and stability
  • for further administrative purposes
  • advertising or market and opinion research, provided you have not objected to the use of your data
  • obtaining information and exchanging data with credit agencies, insofar as this goes beyond our economic risk
  • reviewing and optimizing procedures for needs analysis
  • further development of services and products as well as existing systems and processes
  • statistical evaluations or market analysis
  • assertion of legal claims and defense in legal disputes not directly attributable to the contractual relationship
  • development of scoring systems or automated decision-making processes
  • building and facility security (e.g., through access controls and video surveillance), insofar as going beyond general duties of care.

4. Provision of the websites and creation of log files

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device. The following data are collected:

  1. Information about the browser type and the version used
  2. The user’s operating system
  3. The user’s Internet service provider
  4. The user’s IP address
  5. Date and time of access
  6. Websites from which the user’s system accesses our website
  7. Websites accessed by the user’s system via our websites

The data are also stored in our system’s log files. These data are not stored together with other personal data of the user.

Storage in log files is carried out to ensure the functionality of the websites. In addition, the data serve to optimize the websites and to ensure the security of our information technology systems. In this context, the data are not evaluated for marketing purposes.

The legal basis for the temporary storage of the data and the log files is Art. 6(1)(f) GDPR.

The data are deleted as soon as they are no longer necessary to achieve the purpose for which they were collected, at the latest after 14 days.

Collection of data for providing the websites and storage of data in log files is essential for operating the website. Therefore, the user has no right to object.

5. Categories of data we process where we do not receive the data directly from you, and their source

To the extent necessary for providing our services, we process personal data lawfully received from other companies or other third parties (e.g., credit agencies, address publishers). In addition, we process personal data that we have lawfully obtained, received or acquired from publicly accessible sources (such as telephone directories, commercial and association registers, residents’ registration offices, debtor registers, press, internet and other media) and are permitted to process.

Relevant categories of personal data may include in particular:

  • Personal data (name, occupation/industry and comparable data)
  • Contact data (address, e-mail address, telephone number and comparable data)
  • Address data (registration data and comparable data)
  • Payment/coverage confirmations for bank and credit cards
  • Information about your financial situation (creditworthiness data including scoring, i.e., data for assessing economic risk)
  • Customer history
  • Data about your use of the telemedia we offer (e.g., time of accessing our websites, apps or newsletters, pages/links clicked from us, entries and comparable data)

6. Recipients or categories of recipients of your data

Within our company, only authorized employees receive your data who require it to fulfill our contractual and legal obligations or in the course of processing and implementing our legitimate interests. Your data are only passed on to external parties

  • in connection with contract processing
  • for the purpose of complying with legal requirements that obligate us to provide information, report or disclose data, or where data disclosure is in the public interest
  • insofar as external service providers process data on our behalf as processors or functional transferees (e.g., customer service centers, delivery companies, letter shops, accounting, hosting providers, advertising agencies, external data centers, support/maintenance of IT applications, archiving, document processing, call center services, compliance services, controlling, data validation/plausibility checks, data destruction, purchasing/procurement, customer administration, marketing, media technology, research, risk controlling, billing, telephony, website management, audit services, credit institutions, printers, data disposal companies, courier services, logistics)
  • based on our legitimate interest or the legitimate interest of the third party for the purposes mentioned (e.g., to authorities, credit agencies, debt collection agencies, lawyers, courts, experts, companies of the HUSS Group—addresses are available on our website—and committees and control bodies, etc.)
  • if you have given us your consent to transfer data to third parties.

To provide our services, we use specialized service providers (processors) who may engage subcontractors (sub-processors). An overview of currently used sub-processors can be provided upon request.

Processor: A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

7. Disclosure of data

The collected data are sold or otherwise disclosed to third parties only if you have expressly given us your consent or if there is a statutory authorization for address trading based on a balancing of interests (Art. 6(1)(f) GDPR in conjunction with Recital 47 GDPR). This applies in particular to our address trading with B2B addresses. You can object to the use of your personal data for direct advertising at any time.

Where we engage service providers as part of processing on our behalf, your data are subject to the same security standards there as with us. In other cases, recipients may use the data only for the purposes for which they were transmitted to them.

8. Use of links to and from external providers

Please note that our websites contain links to external third parties (e.g., advertising banners) and links may be mentioned in posts. If you open these links, you will be on the website of third parties, over whose data protection and security measures we have no influence.

We do not monitor these websites and are not responsible for the content and data processing on the respective third-party websites.

9. Data transfer to third countries

In some cases, personal data are transferred to exhibitors and service providers in third countries. Third countries are countries outside the EU and outside the EEA. These third countries also include the USA.

The USA does not have a level of data protection comparable to Europe. In particular, it is possible that government authorities access personal data without us or you becoming aware of it. Legal remedies may not be successful.

The legal basis for such a data transfer is generally your consent (Art. 49(1) sentence 1(a) GDPR) or the performance of a contract in each case (Art. 49(1) sentence 1(b) GDPR).

10. Collection and processing of personal data for applications and in the application process

We collect and process applicants’ personal data for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case if an applicant submits application documents electronically, for example by e-mail or via a web form on the website, to the controller. If the controller concludes an employment contract with an applicant, the transmitted data are stored for the purpose of handling the employment relationship in compliance with statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents will be deleted no later than 6 months after notification of the rejection decision, provided that no other legitimate interests of the controller oppose deletion. Other legitimate interest in this sense is, for example, an obligation to provide evidence in possible proceedings under the General Equal Treatment Act (AGG). The legal basis for processing is Art. 6(1)(b) GDPR.

11. Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place for as long as this is provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject (e.g., retention and documentation obligations under the German Commercial Code (HGB) or the German Fiscal Code (AO), as well as statutory limitation periods under the German Civil Code (BGB)). Data will also be blocked or deleted when a storage period prescribed by the aforementioned provisions expires, unless further storage is necessary for concluding or performing a contract.

12. Your data protection rights

If your personal data are processed, you are a data subject within the meaning of the GDPR and you have the following rights:

  • You have the right to obtain information from us about your personal data stored by us, their origin and recipients and the purpose of data processing in accordance with Art. 15 GDPR (possibly with restrictions pursuant to Section 34 BDSG).
  • Upon your request, we will rectify the data stored about you in accordance with Art. 16 GDPR if they are incorrect or erroneous.
  • If you wish, we will delete your data in accordance with Art. 17 GDPR, unless other legal provisions (e.g., statutory retention obligations or restrictions pursuant to Section 35 BDSG) or an overriding interest on our part (e.g., to defend our rights and claims) prevent this.
  • Taking into account the requirements of Art. 18 GDPR, you can demand that we restrict the processing of your data.
  • You can also object to the processing of your data pursuant to Art. 21 GDPR, as a result of which we must stop processing your data. However, this right to object applies only if there are very special circumstances relating to your personal situation, whereby our rights may conflict with your right to object. Further details below.
  • You also have the right, under the conditions of Art. 20 GDPR, to receive your data in a structured, commonly used and machine-readable format or to have them transmitted to a third party.
  • In addition, you have the right to withdraw at any time any consent you have given for the processing of personal data, with effect for the future.
  • You also have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR). The competent supervisory authority for data protection matters is the Bavarian State Office for Data Protection Supervision (https://www.lda.bayern.de/de/impressum.html). We recommend, however, that you always first address any complaint to our data protection officer.

Your requests to exercise your rights should, if possible, be addressed to our address stated above. An informal notification by e-mail is sufficient. Information about your right to object under Art. 21 GDPR.

You have the right to object at any time to processing of your data that is based on Art. 6(1)(f) GDPR (data processing on the basis of a balancing of interests) if there are reasons arising from your particular situation. This also applies to profiling within the meaning of Art. 4(4) GDPR based on this provision.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the assertion, exercise or defense of legal claims. We may also process your personal data to conduct direct advertising. If you do not wish to receive advertising, you have the right to object at any time; this also applies to profiling insofar as it is associated with such direct advertising. We will honor this objection for the future.

13. Security

For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us, our websites use SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

In addition, we take precautions to protect your personal data against loss, destruction, falsification, manipulation and unauthorized access. The data protection provisions of the Federal Republic of Germany are, of course, complied with.

Please note, however, that data transmission over the internet is never completely secure. We cannot guarantee the security of data entered on our website during transmission over the internet. This is at your own risk.

14. Changes to this privacy policy

Changes in legislation or changes to our internal processes may make it necessary to adapt this privacy policy. We therefore reserve the right to amend this privacy policy in line with updates to our website. This privacy policy was last updated on 28 January 2025.

Part 2: Data protection information on our websites and in the app

1. Cookies

Cookies are small files that make it possible to store specific device-related information on users’ access devices (PC, laptop, smartphone, etc.). Cookies do not cause any damage to your device and do not contain viruses, Trojans or other malware. The cookie stores information that arises in connection with the specific device used. However, this does not mean that we immediately become aware of your identity.

They serve, on the one hand, to make websites more user-friendly for users (e.g., saving login data). For example, we use so-called session cookies to recognize that you have already visited individual pages of our website or for displaying the shopping cart. These are automatically deleted when you leave our site. In addition, we also use temporary cookies to optimize user-friendliness; these are stored on your device for a defined period. If you visit our site again to use our services, it is automatically recognized that you have visited us before and which entries and settings you made, so that you do not have to enter them again.

On the other hand, they serve to statistically record website usage data and to analyze it for the purpose of optimizing our offering. These cookies enable us to automatically recognize when you visit our site again that you have been here before. These cookies are automatically deleted after a defined period in each case.

We have a legitimate interest pursuant to Art. 6(1) sentence 1(f) GDPR in storing cookies for the technically error-free and optimized provision of our services. Insofar as other cookies (e.g., cookies for analyzing your browsing behavior) are stored, these are dealt with separately in this privacy policy under Part 2 section 2.

When accessing our website, users are informed via an information banner about the use of cookies for analysis purposes and referred to this privacy policy. In this context, users are also informed how the storage of cookies can be prevented in the browser settings.

Users can influence the use of cookies. Most browsers have an option that restricts or completely prevents the storage of cookies. However, it is pointed out that use—and in particular ease of use—may be restricted without cookies.

You can manage many online advertising cookies from companies via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/uk/your-ad-choices/.

2. Analysis tools, tracking tools and advertising

We use third-party providers that use cookies and similar technologies if your device settings permit this. This enables an analysis of your use of our websites and applications. The information generated about your use is regularly transmitted to a server of the web analytics service and stored and processed there.

2.1. Google Analytics

For the purpose of designing and continuously optimizing our pages in line with demand, we use Google Analytics, a web analytics service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”). In this context, pseudonymized usage profiles are created and cookies are used. The information generated by the cookie about your use of our websites, such as

  • Browser type/version
  • operating system used
  • referrer URL (the previously visited page)
  • hostname of the accessing computer (IP address)
  • time of the server request

is transmitted to a Google server in the USA and stored there. The information is used to evaluate use of the websites, to compile reports on website activity and to provide further services related to website and internet usage for the purposes of market research and demand-oriented design of these websites. This information may also be transmitted to third parties where required by law or where third parties process these data on behalf of Google. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that they cannot be allocated (IP masking).

You can prevent the installation of cookies by selecting the appropriate settings in your browser software; however, we point out that in this case you may not be able to fully use all functions of our websites.

You can also prevent the collection of the data generated by the cookie and related to your use of the websites (including your IP address) as well as the processing of these data by Google by downloading and installing a browser add-on.

As an alternative to the browser add-on—especially for browsers on mobile devices—you can also prevent tracking by Google Analytics by clicking the following link. An opt-out cookie will be set to prevent future collection of your data when visiting our websites: Disable Google Analytics

The opt-out cookie applies only in this browser and only for our websites and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

For more information on Google’s data usage, settings and objection options, please see Google’s privacy policy (https://policies.google.com/technologies/ads) and the settings for displaying ads by Google (https://adssettings.google.com/authenticated).

2.2. Google Webfonts

Google Web Fonts from provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, are implemented on our websites. These make it possible to display fonts. By using Google Web Fonts, an external server of Google in the USA is accessed when using this offering; i.e., Google may theoretically become aware of the use of the offering. Information on Google Web Fonts’ data protection conditions can be found at: https://developers.google.com/fonts/faq#Privacy

General information on data protection is available in the Google Privacy Center at: http://www.google.com/intl/de-DE/privacy/

2.3. Google Maps

Our website uses maps from the “Google Maps” service. Google Maps is integrated via a server request to Google (usually in the USA). The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. The use of Google Maps is in the interest of an attractive presentation of our online offerings and of making it easy to find the locations specified on our websites. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. For more information on how user data is handled, please see Google’s privacy policy: https://www.google.de/intl/de/policies/privacy/.

Right to object

If you do not want to be tracked by these Google services, you have the option to carry out the opt-out process here: https://adssettings.google.com/authenticated.

2.4. Ticket sales

Our (online) ticket sales and our (online) visitor registration are carried out via the ticket shop of Landesmesse Stuttgart, Messepiazza 1, 70629 Stuttgart, www.messe-stuttgart.de.

Information on the purpose and scope of data collection and its processing by Landesmesse Stuttgart, as well as on the payment systems used for online ticket purchases, can be found in Landesmesse Stuttgart’s privacy policies: https://www.messe-stuttgart.de/datenschutzerklaerung/ under the section: Handling of data when using personalized services.

When purchasing tickets via Landesmesse Stuttgart’s ticket shop, the contracts are concluded directly between Euroexpo GmbH as the organizer and the ticket buyers / event visitors. Landesmesse Stuttgart acts as an intermediary service provider.

Landesmesse Stuttgart is the controller for all processing of personal data in connection with the provision and operation of the platform (in particular registration and use).

We are the controller for all processing of personal data in connection with the performance of the contract (in particular payment processing) and our event (in particular admission control, participant communication, fulfillment of our own legal obligations).

There is no joint controllership within the meaning of Art. 26 GDPR between us and Landesmesse Stuttgart.

The personal data of the ticket buyer transmitted to us by Landesmesse Stuttgart for the processing of an order on the basis of Art. 6(1)(b) or Art. 6(1)(f) GDPR include, insofar as necessary for the event:

    Salutation
    First and last name
    E-mail address
    Address
    Booked ticket type and number of tickets
    Ticket code
    Order number
    Time of purchase
    Time of entry (from the access control system)
    if applicable, information on price and payment status
    if applicable, further voluntary information provided by the ticket buyer that is relevant for the event (e.g., information on accessibility or answers to visitor surveys), insofar as processing is legally permissible.

2.5. Optimizely (formerly Episerver & Optivo)

Newsletters are sent using Optimizely Campaign (Episerver Campaign & formerly optivo® broadmail), an e-mail marketing software from Optimizely GmbH, Wallstraße 59, 10179 Berlin. The e-mail addresses of our newsletter recipients and other data described in these notices are stored on Episerver servers in data centers in Germany and are subject to the GDPR and supplementary German data protection law. Optimizely uses this information to send and evaluate newsletters on our behalf. Furthermore, Optimizely may use these data to optimize or improve its own services, e.g., to technically optimize dispatch and the presentation of newsletters. However, Optimizely does not use the data of our newsletter recipients to contact them itself or pass the data on to third parties. Data security has always been Optimizely’s highest priority. The comprehensive and valid security concept for its omnichannel and e-mail marketing cloud Optimizely Campaign is certified according to ISO 27001, the internationally recognized standard. Further information can be found at https://www.optimizely.com/de/products/campaign/#sicherheit, https://www.optimizely.com/de/trust-center/compliance/ and https://www.optimizely.com/de/legal/datenschutz/.

Statistical analyses for newsletters

The newsletters contain a pixel-sized image (tracking pixel) that is retrieved from the Episerver server when the newsletter is opened. As part of this retrieval, technical information such as information about your browser or system, as well as your IP address and the time of retrieval, are collected. This information is used to technically improve the services. Statistical surveys include determining whether newsletters are opened, when they are opened, and which links are clicked. This serves to recognize our users’ reading habits and to tailor our content to them or send different content according to users’ interests. Your consent to receive a newsletter includes performance measurement. To object to newsletter analysis, send an e-mail to: multimedia@huss-verlag.de

2.6. Web host Minuskel Berlin

The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services, which we use for the purpose of operating this online offering. In doing so, we—or our hosting provider—process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offering on the basis of our legitimate interests in an efficient and secure provision of this online offering pursuant to Art. 6(1)(f) GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).

3. Social media plug-ins

We use social plug-ins of the social network LinkedIn on our websites to make our company better known via this channel. We integrate these plug-ins using a hyperlink displayed as a button in order to best protect visitors to our website.

As part of this solution, the plug-ins do not establish a direct connection from the user’s browser to the providers’ servers. By clicking the respective plug-in, the user is redirected to the provider’s websites. We have no influence on the processing of personal data on third-party websites.

3.1. Shariff

We have integrated the Shariff component on our website. The Shariff component provides social media buttons that comply with data protection requirements. Typically, button solutions provided by social networks transmit personal data to the respective social network as soon as a user visits a website into which a social media button is integrated. By using the Shariff component, personal data are only transmitted to social networks when the visitor to a website actively clicks one of the social media buttons. Further information on Shariff is available at https://www.heise.de/news/Datenschutz-und-Social-Media-Der-c-t-Shariff-i.... The use of the Shariff component serves the purpose of protecting the personal data of visitors to our website while at the same time enabling us to integrate a button solution for social networks on this website. Further information and the applicable data protection provisions of GitHub can be accessed at https://help.github.com/articles/github-privacy-policy/.

3.2. YouTube

From time to time, video files may be made available for playback on our websites in a YouTube frame. If you play the video, you access the website www.youtube.de of Google Inc. via the frame itself.

We have no influence on the scope of the data and how your data are handled by Google Inc. arising from access to the YouTube website. Google Inc. is legally responsible for this. Further information on how Google handles your data can be found at the following link: policies.google.com/privacy.

3.3. LinkedIn

Plugins of the LinkedIn network, LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter “LinkedIn”), are integrated on our websites. You can recognize the LinkedIn plugins by the white “in” on a blue background.

When you access a page of our website, no connection to LinkedIn’s servers is established. If you click the corresponding button, you will be redirected to a LinkedIn website. There you can share our content by clicking again. We have no influence on the processing of personal data on third-party websites. This information is transmitted by your browser directly to a LinkedIn server in the USA and stored there. LinkedIn complies with the data protection provisions of the “US Privacy Shield” and is registered with the “US Privacy Shield” program of the US Department of Commerce. By accessing the LinkedIn website, LinkedIn receives the information that you visited their site with your IP address, along with further log data. This log data includes browser type, operating system, information about the previously accessed website and the pages you accessed, location, your mobile network provider, device information (including device ID and application ID), search terms and cookie information. LinkedIn also uses tracking and targeting tools to optimize the website and adapt it to users’ needs. If you click the LinkedIn button while logged into your LinkedIn account, you can link the content of our pages to your LinkedIn profile. This enables LinkedIn to associate the content of our pages with your user account.

Further information can be found in LinkedIn’s privacy policy.

LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland, https://www.linkedin.com/legal/privacy-policy).

4. Privacy settings

You can obtain an overview of all tools and cookies we use, as well as an option to withdraw consent, by clicking “Cookie settings” on the respective domain page.

You can adjust privacy settings via a link in the website footer or via the shield icon at the bottom left of the respective browser window.

5. Networking feature and functionalities in the app

In particular, the following functionalities of the event app, where available, are also covered by this processing purpose and legal basis:

5.1. Profiles and exhibitor entries

This enables the creation of a personal user profile or a company card for the presentation of exhibitors/companies in order to make new contacts and network with other participants and/or to present the respective company and its products and services and to display job advertisements on the job board. For this purpose, participants may be informed by e-mail about updates within the profile, such as new contact requests.

If exhibitors/companies or participants add URL links to their own content or similar (e.g., social media), participants leave the event platform when clicking on such a link and are redirected to the linked website. The operator of that linked website is the separate controller within the meaning of the GDPR. Further information can be found in the data protection notices and cookie notices of the respective website operator (legal basis: the participant’s consent pursuant to Art. 6(1)(a) GDPR).

5.2. Communication and networking

This enables participants to communicate with other participants (e.g., chats), including using emoticons, to communicate, set up and organize meetings, make notes, and arrange and conduct appointments between different participants (including a notification function). Within the user communication center, contacts can be searched for, recommended, favorited and blocked, and users can indicate their own status and activate or deactivate the networking function.

5.3. Profiling / matchmaking

Search and filter functions within the event app make it possible to filter by various categories such as industries, employee functions/roles, or product groups. These interest filters can be defined by the participant. An automated comparison of the set filters takes place with the aim of optimizing networking. If participants agree, suitable contacts are suggested based on profiles and information. These and other settings can be changed at any time in the personal profile.

5.4. Favorites synchronization

To enable synchronization of favorites created in the app with watchlists on the digital platform, login data as an identifying feature for the user account on the platform are transmitted during synchronization in addition to the favorites. Before the first synchronization, these login data must be entered by the user in the app. The login data are stored in the app in order to simplify subsequent synchronization processes. Synchronization takes place only when the “Synchronize favorites” button is pressed in the app. If favorites synchronization is not used, no data are collected.

5.5. Push notifications

Users of the app can be centrally informed via push notifications with a wide range of information about the event itself or its exhibitors and products by the event team. The push notification service can be switched off individually and the processing of the relevant data can thus be objected to. For push notifications, data are generally deleted as soon as the request has been processed.

5.6. Optional functions

5.6.1. Calendar access

Calendar access offers the option of saving the appointments for planning the trade fair visit in the personal calendar. No personal data are read from the calendar or stored centrally. Access can be revoked at any time in the app settings. To do so, please deactivate access in the app settings on your device. (Legal basis: Art. 6(1)(a) GDPR)

5.6.2. Address book access

Address book access offers the option of saving contacts obtained via the digital business card or exhibitor directory directly in your address book as a contact. It is checked locally on your device whether the contact is already stored in your address book. To store exhibitor contacts, our app requires access to your address book.

Address book access also offers the option of inviting your own contacts to use the app. When searching for a contact in networking who is not yet an app user/networking participant, once access has been granted, the app can check whether the user exists in the local address book in order to then invite them to use the app.

Access occurs only if you have previously agreed to it. The legal basis for this is your consent pursuant to Art. 6(1)(a) GDPR, which you can revoke at any time with effect for the future. To do so, please deactivate access in the app settings on your device.

5.6.3. Camera access

Camera access offers the option to read digital business cards in the form of QR codes. The data are stored on the device. Access can be revoked at any time in the app settings. To do so, please deactivate access in the app settings on your device. (Legal basis: Art. 6(1)(a) GDPR)

5.6.4. Storage access

Storage access offers the option to select the profile photo, to save your own digital business card, and to save the individually created trade fair visit data on the device. Access can be revoked at any time in the app settings. To do so, please deactivate access in the app settings on your device. (Legal basis: Art. 6(1)(a) GDPR)