Data protection

Name and Address of the Responsible Authority

The responsible authority within the meaning of the basic data protection regulation and other national data protection laws of the member states as well as other data protection regulations is:

Karlsruher Messe- und Kongress GmbH
Festplatz 9
D-76137 Karlsruhe
Germany
Tel.: +49 (0)721 3720-0
Email: info@messe-karlsruhe.de
Website: www.messe-karlsruhe.de

Name and Address of the Data Protection Officer

The data protection officer of the responsible authority is:

Torsten-Harald Scholz
Festplatz 9
D-76137 Karlsruhe
Germany
Tel.: +49 (0)721 3720-2000
Email: datenschutzbeauftragter@messe-karlsruhe.de

General Information about Data Processing

1. Scope of Processing of Personal Data

In principal, we collect and use personal data of our users only to the extent necessary to provide a functional website, our contents and our services. Collection and utilization of personal data regularly occurs only with the consent of the user. An exception applies to cases in which prior consent cannot be obtained for reasons of fact and the processing of the data is permitted by law.

2. Legal Basis for the Processing of Personal Data

Art. 6 Abs. 1 lit. a EU General Data Protection Regulation (DSGVO) serves as the legal basis insofar as we obtain the consent of the affected person for the purposes of processing personal data.

Art. 6 Abs. 1 lit. b DSGVO serves as the legal basis for the processing of personal data necessary for the performance of a contract to which the affected person is a party. This also applies to processing operations which are necessary to carry out pre-contractual actions.

Art. 6 Abs. 1 lit. c DSGVO serves as the legal basis insofar as processing of personal data is required to fulfil a legal obligation to which our company is subject.

Art. 6 Abs. 1 lit. d DSGVO serves as the legal basis in the event that vital interests of the affected person or another natural person require the processing of personal data.

Art. 6 Abs. 1 lit. f DSGVO serves as the legal basis for the processing if the processing is necessary to safeguard a legal interest of our company or of a third party, and if the interests, fundamental rights and fundamental freedoms of the affected person prevail over the first-mentioned interest.

3. Deletion of Data and Duration of Storage

The personal data of the affected person will be deleted or blocked as soon as the purpose of the storage ceases to exist. In addition, storage may also occur if this storage is intended by the European or national legislator in EU regulations, laws or other guidelines to which the responsible authority is subject. Blocking or deletion of the data also occurs upon the expiration of a storage period prescribed by the aforementioned standards, unless there is a need for further storage of the data for conclusion or fulfilment of a contract.

4. SSL Encryption

We utilize state-of-the-art encryption techniques (e.g. SSL) via HTTPS to protect the security of your data during transmission

Provision of the Website and Creation of Log Files

1. Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the calling computer.

The following data are collected in this context:

  • (1) The IP address of the user
  • (2) The date and the time of the access
  • (3) Websites which the user’s system accesses via our website

These data are also stored in our system’s log files. The anonymization of the IP address does not lead to the storage of data which could facilitate their correlation with a specific user. Storage of these data does not occur together with other personal data of the user.

2. Legal Basis for the Data Processing

Art. 6 Abs. 1 lit. f DSGVO is the legal basis for the temporary storage of data and log files.

3. Purpose of the Data Processing

The system temporarily stores the IP address because this storage is necessary to enable delivery of the website to the user’s computer. To accomplish this delivery, the user’s IP address must remain stored for the duration of the session.

Storage in log files is undertaken to ensure the functionality of the website. In addition, the data enable us to optimize the website and to ensure the security of our IT systems. An evaluation of the data for marketing purposes does not occur in this context.

These purposes also involve our legitimate interest in the processing of data pursuant to Art. 6 Abs. 1 lit. f DSGVO.

4. Duration of Storage

The data will be deleted as soon as they are no longer needed to accomplish the purpose for which they were collected. In the case of collecting the data in order to provide the website, this deletion occurs when the respective session is ended.

In the case of data stored in log files, this deletion occurs no later than 14 days after the date of initial storage. Storage beyond this date is possible.

5. Possibility for Objection and Removal

The collection of data for provision of the website and the storage of data in log files are essential for the operation of the website. There is consequently no possibility for the user to object to it.

Use of Cookies

1. Description and Scope of Data Processing

Our website uses cookies. Cookies are text files that are stored either in, or by, the internet browser of the user’s computer system. When a user accesses a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the same browser accesses the website again.

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can also be identified when the caller returns to the website.

The following data are stored in, and transmitted by, the cookies:

  • Login information

In addition, on our website we use cookies that allow an analysis of users’ surfing behaviour. Analysis cookies are used for the purpose of improving the quality of our website and its contents. Through the analysis cookies, we learn how the website is used, thus enabling us to continually optimize our offer.

You can read additional information in the sectioned titled “Google Analytics und Google Tag Manager”.

Technical precautionary arrangements pseudonymize users’ data which are collected in this way. This pseudonymization assures that the data can no longer be assigned to the calling user. The data are not stored together with other personal data of the users.

When users access our website, an information banner notifies them about the use of cookies and calls their attention to this Data Protection Declaration. In this context, a notification also appears explaining how users can modify their browser settings to prevent the storage of cookies.

2. Legal Basis for the Data Processing

Art. 6 Abs. 1 lit. f DSGVO is the legal basis for the use of cookies in the processing of personal data.

3. Purpose of the Data Processing

The purpose of the use of technically necessary cookies is to make it simpler for the user to utilize websites. Some features of our website cannot be offered without the use of cookies. For these features, it is necessary for the browser to recognize the user when the user returns to the website.

We need cookies for the following applications:

  • Language settings

User data collected via technically necessary cookies will not be used to create user profiles.

These purposes also involve our legitimate interest in the processing of data pursuant to Art. 6 Abs. 1 lit. f DSGVO.

4. Duration of Storage, Objection and Deletion Options

Cookies are stored on the user’s computer, which transmits them to our website. Therefore you, as the user, have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your internet browser. Please use the help features of your internet browser to learn how you can change these settings. Previously stored cookies can be deleted at any time. This can also be done automatically. If cookies for our website are deactivated, it may not be possible to use all of our website’s functions to their full extent.

Consent management by Usercentrics

Description and scope of data processing

We use the Usercentrics Consent Management Platform as a consent management tool as part of the analytics activities on our website.

The Usercentrics Consent Management Platform collects log file and consent data using JavaScript. This JavaScript enables us to inform users about their consent to certain tags on our website and to obtain, manage and document this consent.

We process the following data in the process:

(1) Consent data (anonymised logbook data (Consent ID, Processor ID, Controller ID), Consent Status, Timestamp).

2. (2) Device data or data of the devices used (including shortened IP addresses (IP v4, IP v6), device information, timestamp).

3. (3) User data (e.g. email, ID, browser information, SettingIDs, changelog).

The ConsentID (contains the above-mentioned data), the Consent status incl. timestamp are stored in the local memory of your browser and simultaneously on the cloud servers used. Further processing only takes place if you submit a request for information or revoke your consent. In this case, the relevant information is provided to the responsible person (FIELD M) in a compact data format in an easily readable text form for the purpose of data exchange (JSON file).

No user information is stored for the statistics on the use of consent given or not given. Only the frequency and locations of clicks are stored.

Personal data is stored on a Google Cloud server located in the EU (Brussels, Frankfurt am Main).

Purpose of data processing

The purpose of the data processing is the analysis and management of the consents granted in order to comply with our obligation of a DSGVO-compliant consent management. The use of Usercentrics serves the purpose of proving granted and non-granted consents as well as their management.

The specific processing purposes of the personal data named under 5.1 are:

4. (1) obtaining and providing consents

5. (2) Providing evidence of which device you used to provide consent and when you did so

6. (3) Legitimisation of access to the settings and documentation of changes

Legal basis for data processing

The legal basis for the management of your consents for the processing of your personal data is Art. 6 (1) lit. f DSGVO. Our legitimate interest lies in the legally secure documentation and verifiability of consents, the control of marketing measures on the basis of the consent granted and the optimisation of consent rates.

Duration of storage

The data is deleted as soon as it is no longer required. The associated cookie has a duration of 60 days. The revocation document of a previously granted consent is stored for a period of three years. The retention is based on the one hand on our accountability pursuant to Art. 5 (2) DSGVO. This obliges us to comply with the processing of personal data in accordance with the General Data Protection Regulation. On the other hand, retention is based on the regular limitation period of three years pursuant to Section 195 of the German Civil Code (BGB). This limitation period begins with the end of the year in which the claim arose (§ 199 BGB). Consequently, the three-year limitation period begins at the end of 31 December and ends three years later at midnight on 31 December.

Possibility of objection and removal

The function can be switched on and off in our "Privacy settings" by marking the checkbox.

Participation in surveys & chats via Slido

During the event, you can optionally participate in surveys via the interaction tool Slido or send questions and impulses to the plenum via the chat function.

a. Scope of data processing and storage period

When using Slido, the following personal data is processed:

  • Participant profile data (name, e-mail address, company)
  • Text data and content shared by participants at the event (questions, answers to surveys, ideas, chats, etc.)
  • Information about the device used (IP address, hardware model, operating software used, hardware settings, language settings)
  • Meeting metadata (date, time, meeting name, duration of communication, IP address, country name)
  • TSL protocol, TSL certificates
  • Information about any system crashes of the interaction tool,
  • Query of pre-installed cookies to identify the browser or any Slido account (if installed on the device used).

With the exception of the IP address, personal data can be anonymized by a setting in the interaction tool.

Information on the storage period when using Slido can be found at www.sli.do/terms#privacy-policy.

b. Purpose and legal basis of data processing

The use of Slido is optional, i.e. the event can also be followed without Slido. If the interaction tool is used, this requires your consent to the use of data by sli.do s. r. o.. Before using the interaction tool, you will be made aware of Slido's privacy policy (https://www.sli.do/terms#privacy-policy) and you can give your consent to data use by clicking on it. Subsequently, the interaction tool can be used. A data transfer takes place only after your consent. In the settings of Slido you can anonymize your data (with the exception of the IP address). This is explicitly recommended. With regard to the optional use of the Slido interaction tool, your consent is based on Art. 49 para. 1 p.1 lit. a) DSGVO.

c. Data recipient

If you use the interaction tool, sli.do s.r.o. supports us in the processing of your data as a processor within the meaning of Art. 28 DSGVO. Slido is a service of Cisco Systems Inc. which is based in the USA. We cannot exclude the transfer of your personal data to the USA. In its decision of July 16, 2020, Case C-311/18 ("Schrems II"), the European Court of Justice (ECJ) declared the European Commission's adequacy decision on the EU-US Privacy Shield (Privacy Shield Decision 2016/1250) invalid. A level of data protection essentially comparable to European data protection standards does not exist for the USA.

Accordingly, a valid adequacy decision of the European Commission with regard to a transfer of personal data to the U.S. within the meaning of Article 45 (1), (3) of the GDPR does not exist. Furthermore, so-called appropriate safeguards within the meaning of Art. 46 (2), (3) of the GDPR do not exist. Possible risks of such data transfers without an adequacy decision and without appropriate safeguards result in particular from the fact that an adequate level of data protection cannot be guaranteed. The provider may have to grant government agencies access to the personal data processed. Personal data may therefore be passed on to third parties who process or use the data for their own purposes. Data subject rights may not be enforced.

Special Applications

Google Analytics and Google Tag Manager

This website uses Google Analytics and Google Tag Manager. These are web-analytics services provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, hereinafter referred to as “Google”). The use includes the “Universal Analytics” operating mode, which makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID, thus analyzing the activities of a user across devices.

Google Analytics uses so-called “cookies”, i.e. text files that are stored on your computer and that make it possible to analyze your use of the website. The data which the cookie generates about your use of this website are usually transmitted to, and stored by, a Google server in the USA. However, in the event of activation of IP anonymization on this website, Google will shorten your IP address beforehand within member states of the European Union or in contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to, and shortened by, a Google server in the USA. The IP address transmitted by your browser in the context of Google Analytics will not be merged with other Google data. On behalf of the operator of this website, Google will use these data to evaluate your use of the website, to compile reports on website activities, and to provide the website’s operator with other services related to website usage and internet usage. These purposes also involve our legitimate interest in the processing of data. § 15 Abs.3 TMG or Art. 6 Abs. 1 lit. f DSGVO is the legal basis for the use of Google Analytics. Sessions and campaigns will be ended after a specific interval has elapsed. By default, sessions will be ended after 30 minutes have elapsed without any activity, and campaigns will be ended after six months have elapsed. The time limit for campaigns can be maximally two years. You can find further information about terms of use and data protection at https://www.google.com/analytics/terms/us.html or under https://policies.google.com/?hl=en.

You can prevent the storage of cookies by setting your browser’s software accordingly; however, please note that if you do this, you may not be able to use all of this website’s features to the fullest extent possible. Moreover, you can prevent Google from collecting the data generated by the cookie related to your use of the website (including your IP address) and you can prevent Google from processing these data. You can accomplish this prevention by downloading and installing the following browser add-on: http://tools.google.com/dlpage/gaoptout?hl=en .

You can find further information from Google about terms of use and data protection at the following links:

http://www.google.com/analytics/terms/us.html

https://www.google.de/intl/en/policies/

Google Analytics 4

This website uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which can be used to analyze the use of websites.

When using Google Analytics 4, so-called "cookies" are used as standard. Cookies are text files that are stored on your terminal device and enable an analysis of your use of a website. The information collected by cookies about your use of the website (including the IP address transmitted by your terminal device, shortened by the last digits, see below) is usually transmitted to a Google server and stored and processed there. This may also result in the transmission of information to the servers of Google LLC, a company based in the USA, where the information is further processed.

When using Google Analytics 4, the IP address transmitted by your terminal device when you use the website is always collected and processed by default and automatically only in an anonymized manner, so that a direct personal reference of the collected information is excluded. This automatic anonymization is carried out by shortening the IP address transmitted by your terminal device by Google within member states of the European Union (EU) or other contracting states of the Agreement on the European Economic Area (EEA) by the last digits.

On our behalf, Google uses this and other information to evaluate your use of the website, to compile reports (reports) on your website activities or your usage behavior and to provide us with other services related to your website usage and internet usage. In this context, the IP address transmitted and shortened by your terminal device within the scope of Google Analytics 4 will not be merged with other data from Google. The data collected in the context of the use of Google Analytics 4 will be retained for 2 months and then deleted.

Google Analytics 4 also enables the creation of statistics with statements about age, gender and interests of website users on the basis of an evaluation of interest-based advertising and with the involvement of third-party information via a special function, the so-called "demographic characteristics". This makes it possible to determine and distinguish between groups of website users for the purpose of targeting marketing measures. However, data collected via the "demographic characteristics" cannot be assigned to a specific person and thus not to you personally. This data collected via the "demographic characteristics" function is retained for two months and then deleted.

All processing described above, in particular the setting of Google Analytics cookies for the storage and reading of information on the terminal device used by you to use the website, will only take place if you have given us your express consent for this in accordance with Art. 6 (1) a DSGVO. Without your consent, Google Analytics 4 will not be used during your use of the website. You can revoke your consent once given at any time with effect for the future. To exercise your revocation, please deactivate this service via the "Cookie Consent Tool" provided on the website.

We have concluded a so-called order processing agreement with Google for our use of Google Analytics 4, by which Google is obliged to protect the data of our website users and not to pass it on to third parties.

To ensure compliance with the European level of data protection, even in the event of any transfer of data from the EU or EEA to the USA and possible further processing there, Google refers to the so-called standard contractual clauses of the European Commission, which we have contractually agreed with Google.

Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at the following link: https://policies.google.com/privacy?hl=de&gl=de

Details on the processing triggered by Google Analytics 4 and Google's handling of data from websites can be found here: https://policies.google.com/technologies/partner-sites

Google Signals

This is a web analytics service. This service enables cross-device tracking.

Processing Company
Google Ireland Limited
Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

Data processing purposes
Analysis
Optimization
Remarketing

Technologies used
Cookies

Collected data
This list contains all (personal) data collected during or through the use of the Service.

Data is only collected if the user has activated the "Personalized Display" function.

Anonymized IP address
Search terms
Usage data
Device information
Browser information
Viewed content
Geographic location

Legal basis

The following is the required legal basis for the processing of data
Art. 6 para. 1 s. 1 lit. a DSGVO

Place of processing
European Union

Data recipient
Google Ireland Limited
Google LLC
Alphabet Inc

Disclosure to third countries
Worldwide

Data protection officer of the processing company
Below you will find the email address of the data protection officer of the processing company.
https://support.google.com/policies/contact/general_privacy_form

Further information and opt-out
Click here to read the data processor's privacy policy https://policies.google.com/privacy?hl=en

Cookie Policy URL
https://policies.google.com/technologies/cookies?hl=en

Google Maps

This website uses Google Maps API for the visual display of geographic information. When visitors use Google Maps, Google also collects, processes and uses data about the visitors’ utilization of the map features. For more information about Google’s data processing, please refer to Google’s Privacy Policy at http://www.google.com/privacypolicy.html. You can also change your personal privacy settings in the privacy centre there.

For detailed instructions on how to manage your own data related to Google products, click here: http://www.dataliberation.org/

Script Libraries (Google WebFonts)

We use script libraries such as Google WebFonts (https://www.google.com/webfonts/) on this website in order to display our contents across browsers correctly and in a visually appealing form. Accessing script libraries automatically triggers a connection to the library’s operator. In such instances, it is possible that the operators of such libraries might collect data.

Google WebFonts is a service of Google Inc. (“Google”). Google WebFonts are transferred to your browser’s cache to prevent multiple loading.

If the browser does not support Google WebFonts or prohibits access, contents will be displayed in a standard font.

The integration of these web fonts occurs via a call to a server, which is usually a Google server in the USA. This call tells the server which of our websites you have visited. Google also stores the IP address of the browser of the terminal of the visitor of these websites. You can find more detailed information in Google’s Privacy Policy, which you can access here:

www.google.com/fonts#AboutPlace:about

www.google.com/policies/privacy/

Embedded YouTube Videos

We embed YouTube videos on some of our websites. The operator of the corresponding plug-ins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit a page with the YouTube plug-in, it will connect to YouTube’s servers. This will tell YouTube which pages you visit. If you are logged in to your YouTube account, YouTube can assign your surfing behaviour to you personally. You can prevent this by logging out of your YouTube account beforehand.

When a YouTube video is started, the provider utilizes cookies that collect information about user behaviour.

Anyone who has deactivated the storage of cookies for the Google Ad programme will not have to expect such cookies, also when viewing YouTube videos. However, YouTube does store non-personal usage information in other cookies. If you want to prevent this, you must block the storage of cookies in the browser.

You can find more detailed information about data protection at YouTube in the provider’s data protection declaration at: https://www.google.de/intl/en/policies/privacy/

Use of Vimeo

We use the provider Vimeo for the integration of videos. Vimeo is operated by Vimeo, LLC with headquarters at 555 West 18th Street, New York, New York 10011.

When you call up the Internet pages of our website that are provided with such a plugin, a connection is established to the Vimeo servers and the plugin is displayed. This transmits to the Vimeo server which of our Internet pages you have visited. If you are logged in as a member of Vimeo, Vimeo assigns this information to your personal user account. When using the plugin, such as clicking on the start button of a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your Vimeo user account before using our website and deleting the corresponding cookies from Vimeo.

For the purpose and scope of the data collection and the further processing and use of the data by Vimeo, as well as your rights in this regard and setting options for protecting your privacy, please refer to the privacy policy of Vimeo: https://vimeo.com/privacy

Newsletter

If you subscribe to our newsletter, we will use the information that you provide solely for this purpose or to notify you about circumstances relevant to this service or the subscription. We will not share these data with third parties.

A valid email address is required in order to receive the newsletter. In addition to this email address, we also save the IP address that you used to sign up for the newsletter and the date on which you ordered the newsletter. These data serve us as proof of misuse if a foreign email address is registered for the newsletter. To further ensure that third parties do not misuse an email address in our mailing list, we also work, in accordance with the law, with the so-called “double opt-in” procedure. In the context of this procedure, a record is kept of the order of the newsletter, the sending of the confirmation email, and the receipt of the confirmation of registration.

Art. 6 Abs. 1 lit. a DSGVO is the legal basis for the processing of data after the user has subscribed to the newsletter and after the user has consented to such processing.

You have the option to revoke, at any time, your consent to the storage of data, to the storage of your email address, and to its utilization for sending the newsletter. To facilitate your cancellation, we include a corresponding link in each edition of the newsletter. You also have the option to notify us of your desire to cancel your subscription via the contact options mentioned in this document.

talque

We would like to inform you about the processing of personal data that takes place within the framework of the use of the Talque platform for the display of the trade fair, congress and framework programme. of the use of the Talque platform for displaying the trade fair, congress and framework as well as exhibitor programme by Real Life Interaction GmbH, with registered office at Richard-Ermisch-Str. 69, 10247 Berlin.

The data collected is used exclusively for the purpose of displaying the event programme and is processed with the aid of session IDs and local storage. processed. No personal data is collected.

The data is processed in accordance with the provisions of the General Data Protection Regulation (DSGVO) and exclusively in Germany.

Data will not be passed on to third parties unless required by law or necessary for the performance of the contract.

If you have any questions about the processing of your personal data, you can contact us at the above address. We are at your disposal.

Responsible party:

Dr. Volker Braun

talque / Real Life Interaction GmbH

Warschauer Straße 58a

10243 Berlin

Tel: +49 30 120885220

E-Mail: volker.braun@real-life-interaction.de

Nature and purpose of personal data processing

Your data processed by us will be used for the purpose of participation and execution of the LEARNTEC xChange online. This considers the possibilities of exchanging information between participants, speakers and exhibitors.

The event of the Karlsruher Messe-und Kongress GmbH will be powered by the digital event platform talque of Real Life Interaction GmbH as a virtual event, participation in it is only possible after registration at talque.

The Karlsruher Messe und Kongress GmbH and the Real Life Interaction GmbH are in accordance with Article 26 GDPR jointly responsible for the protection of your personal data. The contollers share the data processing steps as follows:

  Processing responsible
Process step 1 Sending of a list of participants
to Real Life lnteraction GmbH
for the invitation (or from
Karlsruher Messe-und
Kongress GmbH Ticketshop)
Karlsruher Messe- und Kongress GmbH
Process step 2 Sending personalized
registration link by e-mail to the
participants
Real Life Interaction GmbH
Process step 3 Registration of personal master
data through creation of a
talque account by the
participants
Real Life Interaction GmbH
Process step 4 Collection of matchmaking data
from participants during
registration or creation of the
talque account
Real Life Interaction GmbH
Process step 5 Implementation of the event
and activities accompanying
the event
Karlsruher Messe- und Kongress GmbH
Process step 6 Transfer of event specific data
to Karlsruher Messe-und
Kongress GmbH
Real Life Interaction GmbH

Data subjects may exercise the rights to which they are entitled under Article 15 to 22 GDPR against each of the joint controllers.The responsible parties agree that the party responsible, with whom the rights are asserted, is obliged to provide information to the person concerned, as well as forwarding any requirements with regard to changing, deletion or other of the person concerned tothe other responsible party without delay. The data processing is carried out on the basis of Article 6 Sect. 1 lit b GDPR.

The data collected will be deleted once the purpose has been fulfilled where the data is not subject to any other statutory retention and documentation obligations, pursuant to Article 6(1)(c) of the GDPR, unless you have given your consent to the retention of your data for other purposes, pursuant to Article 6(1)(a) of the GDPR. The talque chat data and personal master data are only deleted if the user account is explicitly deleted by the user, or if the user orders the account to be deleted by authenticating oneself accordingly.

Disclosure of data to third parties

Your data will only be passed on to other event participants in two cases:

  1. A button labeled (Request more information) is displayed in connection with the individual exhibitor profiles. If you click on this button as a user, your data will be passed on to the respective exhibitor for the purpose of establishing contact. For more information, especially about data protection of an individual exhibitor, please contact the respective exhibitor, or check their website.
    The legal basis for this data processing is Art. 6 I lit. a GDPR (Data processing for the fulfillment of contracts) and Art. 6 I lit. b GDPR (Data processing on the basis of a balance of interests).
  2. As part of the online event, you have the opportunity to get in touch with individual exhibitors by means of a video call, a video meeting or (text) chat. In case of a direct video call or a 1: 1 video meeting with one of the exhibitors, your contact details, which you have provided in your profile, will be passed on to the respective exhibitor. The same applies if a chat contact is established between you and one of the exhibitors. A chat contact is active communication between an event participant and the exhibitor or one of his employees. The exhibitor must either have been actively contacted by you via chat message or an exhibitor has contacted a participant and an exchange between the two is established, i.e. at least one message is exchanged from both parties.
    The purpose of the event, which is free of charge for “visitors”, is networking and establishing new business relationships. This is not possible without exchanging contact details. This data exchange is considered necessary to achieve the purpose of the entire event. Further information, especially about data protection of the respective exhibitor, is best obtained directly from the respective exhibitor or can be found on their website. The legal basis for this data processing is Art. 6 I lit. a GDPR (Data processing for the fulfillment of contracts) and Art. 6 I lit.f GDPR (Data processing on the basis of a balance of interests).

If you do not request any further information from exhibitors and do not take part in direct video calls, 1: 1 video meetings or text chats, personal contact data will not be passed on to exhibitors.

We provide a list of exhibitors as an exhibitor directory. Beyond this, no transfer of your personal data to third parties has been envisioned.

Rights of the data subject

You have the following rights:

  • The right to withdrawal: You have the right to withdraw the consent you have provided at any time, pursuant to Article 7(3) of the GDPR. In consequence, we will cease the data processing based on this consent with future effect.
  • The right of access: You have the right to obtain information from us about the personal data of yours that we process, pursuant to Article 15 of the GDPR. In particular, you have the right to obtain information about the purposes of the processing; the categories of personal data concerned; the categories of recipient to whom your personal data have been or will be disclosed; the envisaged period for which your personal data will be stored; the existence of the right to rectification, erasure, restriction of processing or to object to such processing; the right to lodge a complaint; the source of your personal data where these are not collected from you; the existence of automated decision-making, including profiling, and, if applicable, meaningful information concerning the details of such processing.
  • The right to rectification: You have the right to obtain from us without due delay the rectification of inaccurate personal data of yours we store or the right to have incomplete personal data of yours completed, pursuant to Article 16 of the GDPR.
  • The right to erasure: You have the right to obtain from us the erasure of personal data of yours we store, pursuant to Article 17 of the GDPR, unless processing is necessary for exercising the right of freedom of expression and information; for compliance with a legal obligation; for reasons of public interest; or for the establishment, exercise or defence of legal claims.
  • The right to restrict processing: You have the right to obtain restriction of processing of your personal data, pursuant to Article 18 of the GDPR, where you contest the accuracy of the personal data; the processing is unlawful and you oppose the erasure of the personal data; we no longer need the personal data for the purposes of the processing, but we need the data for the establishment, exercise or defence of legal claims; or you have objected to processing pursuant to Article 21 of the GDPR.
  • The right to data portability: You have the right to receive the personal data of yours which you have provided to us in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller, pursuant to Article 20 of the GDPR.
  • The right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority pursuant to Article 77 of the GDPR.

Right to object

Unless the processing of your personal data is necessary for the purposes of the legitimate interests pursuant to Article 6(1)(f) of the GDPR, you have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data, pursuant to Article 21(1) of the GDPR. Where personal data are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such purposes, pursuant to Article 21(2) of the GDPR.

You can address your objection to ds-abmelder@messe-karlsruhe.de , for example.

Social Plug-ins

We offer you the opportunity to use the so-called “Social Media Buttons” on our website. To protect your data in the implementation, we rely on the “Shariff” solution. This assures that the buttons are integrated on the website only as a graphic which contains a link to the corresponding website of the button’s provider. When you click on the graphic, you will be redirected to the services of the respective provider. Only then will your data be sent to the respective provider. If you do not click on the graphic, no exchange of data occurs between you and the providers of the Social Media Buttons. For more detailed information about the collection and usage of your data in the social networks, please refer to the terms of use the respective providers. You can find additional information about the Shariff solution here: http://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html

We have integrated the Social Media Buttons of the following companies on our website:

  • Facebook Inc. (1601 S. California Ave., Palo Alto, CA 94304, USA)
  • Twitter Inc. (795 Folsom St., Suite 600, San Francisco, CA 94107, USA)
  • Google Plus/Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)
  • XING AG (Gänsemarkt 43, D-20354 Hamburg, Germany)
  • LinkedIn Corporation (2029 Stierlin Court, Mountain View, CA 94043, USA)

Google Ads Conversion

We use the offer of Google Ads Conversion to draw attention to our attractive offers with the help of advertising media (so-called Google Ads) on external websites. In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. In this way, we pursue the interest of displaying advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs.

These advertisements are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, through which certain parameters for measuring success, such as display of the ads or clicks by users, can be measured. If you access our website via a Google ad, Google Ads will store a cookie on your end device. These cookies usually lose their validity after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that a user no longer wishes to be addressed) are usually stored as analysis values for this cookie.

These cookies enable Google to recognize your internet browser. If a user visits certain pages of the website of Ads customers and the cookie stored on his computer has not yet expired, Google and the customers can recognize that a user has clicked on the ad and was redirected to this page. Each Ads customer is assigned a different cookie. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools; in particular, we cannot identify users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Ads Conversion, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is a possibility that Google will learn and store your IP address.

Conversion Linker

Through Google Conversion Linker, ad click information is automatically captured in conversion page URLs and stored in custom cookies in your domain for web pages. The data is then redirected into URLs for AMP pages. We use Google Conversion Linker with other Google Marketing Platform products. This way, unique IDs can also be stored in these cookies.

Google Ads Remarketing

We use the remarketing function within the Google Ads service. With the remarketing function, we can present users of our website with advertisements based on their interests on other websites within the Google advertising network (in Google Search or on YouTube, so-called "Google Ads" or on other websites). For this purpose, the interaction of users on our website is analyzed, e.g. which offers a user was interested in, in order to be able to display targeted advertising to users on other sites even after they have visited our website. For this purpose, Google stores cookies on the end devices of users who visit certain Google services or websites in the Google display network. These cookies are used to record the visits of these users. The cookies are used to uniquely identify a web browser on a particular end device and not to identify a person.

Receiving:

Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.

Transfers to third countries are possible. So-called standard contractual clauses pursuant to Art. 46 DSGVO have been concluded as suitable guarantees. Further information can be found here: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu_de.

Cancellation/Revocation:

You can prevent participation in this tracking procedure in various ways. We would like to point out that in this case you may not be able to use all functions of this offer in full.

Lifetime of cookies: up to 180 days (this only applies to cookies set via this website).

Legal basis:

Art. 6 (1) a DSGVO (consent)

Facebook pixel

Our website uses the so-called “Facebook pixel” of the Facebook social network for analysis, optimization and the economical operation of our online offer. When the website is accessed, a tracking pixel is set and data is transmitted to Facebook and assigned to the user’s account. The pixel enable us to provide users with advertisements (“Facebook ads”) that are relevant to their specific interests.

The legal basis of the data processing is art. 6, para. 1, lit. f DSGVO.

Facebook’s data policy can be accessed at www.facebook.com/about/privacy.

LinkedIn Analytics

Our website uses the “LinkedIn Insight Tag” (a conversion tool), as well as the retargeting function of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.

This tool enables us to provide visitors with personalized advertisements on LinkedIn. In addition, LinkedIn provides us with anonymous reports containing information about advertising activity and your interaction with our website.

The legal basis of the data processing is art. 6, para. 1, lit. f DSGVO.

Please refer to LinkedIn’s privacy policy at https://www.linkedin.com/legal/privacy-policy for more information on data collection and use, as well for possibilities and rights to protect your privacy. If you are logged in to LinkedIn, you can deactivate the data collection at any time under the following link: https://www.linkedin.com/psettings/enhanced-advertising.

LinkedIn Insight Tag

DATA COLLECTED:

We use the LinkedIn Insight Tag of LinkedIn Corporation Gardner House, Wilton Plaza, Wilton Place, Dublin 2, Ireland for this website. The LinkedIn Insight Tag creates a LinkedIn "browser cookie" which collects the following data:

- IP address,

- timestamp,

- page activity,

- LinkedIn demographic data if the user is an active LinkedIn member.

This technology allows us to generate reports on the performance of our advertisements as well as information on website interaction. For this purpose, the LinkedIn Insight tag is embedded on this website. When you visit this website and are logged into your LinkedIn account at the same time, a connection to the LinkedIn server is established.

PURPOSES OF DATA PROCESSING:

We process their data to evaluate campaigns and collect information about website visitors who may have reached us through our campaigns on LinkedIn.

LEGAL BASIS:

We process your data because we have a legitimate interest in doing so pursuant to Art. 6 para. 1 p. 1 lit. f. DSGVO.

STORAGE PERIOD AND CONTROL OPTIONS:

We store your data as long as we need it for the respective purpose (campaign evaluation) or you have not objected to the storage of your data, which is possible at any time. The collected data is encrypted. You can find more information here. Here you can find the LinkedIn privacy policy and the LinkedIn opt-out.

Sleeknote

In order to provide user-friendly access to specific content (such as downloads, feedback options, and registration for newsletters and promotions) that is appropriate to your use of our website and quick, we use the Sleeknote service on this website if you consent to it. This service is operated by Sleeknote ApS, Jens Baggesens Vej 90A, 8200 Aarhus, Denmark, ("Sleeknote").

Through the Sleeknote service, certain additional content is displayed to you as a visitor, depending on what content on our website you access and how you use our website, in order to make your visit as pleasant and efficient as possible for you. In this context, Sleeknote collects and stores data on the use of our website, from which user profiles are created using pseudonyms, in order to evaluate the acceptance of the displayed content and to be able to continuously improve and display the individual displayed contents in an optimized manner based on user needs. For this purpose, the Sleeknote service also sets cookies on your computer. These are small text files that are stored locally on your computer. The cookies remain stored on your computer for a maximum of 2 years. The pseudonymized usage profiles are not merged with other personal data without the explicit consent of the person concerned. Your personal data will also not be passed on to third parties. Sleeknote generally stores the data collected via the Sleeknote service for up to 3 months and then deletes it.

We have concluded an order processing contract with Sleeknote. The transfer of personal data concerning you is therefore based on Art. 28 DSGVO.

For more information on the protection of your personal data by Sleeknote, please also refer to Sleeknote's privacy notice: https://sleeknote.com/privacy-policy.

We use the Sleeknote service with your consent. The legal basis for the use of the Sleeknote service is therefore Art. 6 para. 1 p. 1 lit. a) DSGVO.

Twitter Conversion Tracking

We use the remarketing function of Twitter Inc., 1355 Market St, San Francisco, California 94103, USA, ("Twitter") on our website. With the Twitter remarketing function, we can address you with advertising based on your interests on the Twitter platform. Twitter uses so-called "tags" for this purpose. This tag is used to record visits to our website as well as data on usage in pseudonymous, non-personal form. If you subsequently visit Twitter, you will be shown advertisements based on your interests.

Twitter thereby receives the information from your browser that our website was called up from your end device. We would like to point out that we have no influence on the scope of the transmitted data and its further use by Twitter and therefore inform you according to our state of knowledge: Through the integration of tags, Twitter receives the information that you have called up the corresponding website. If you are registered with a Twitter service, Twitter can assign the visit to your account. Even if you are not registered with Twitter or have not logged in, it is possible that the provider will learn and store your IP address and other identifying features. The information generated by the tags about your use of our services is transmitted to a Twitter server in the USA and stored there.

If you still do not wish to use the Twitter remarketing function, you can deactivate this function on Twitter at the following address: https://support.twitter.com/articles/20171528.

Further information on Twitter Remarketing and Twitter's privacy policy can be found at https://business.twitter.com/de/help/troubleshooting/how-twitter-ads-work.html.

walls.io

Our website is embedding social media plugins or widgets which are provided by Walls.io. When loading these widgets, your IP-address and cookie information is transferred to Walls.io. Walls.io is operated by "Walls.io GmbH, based in Vienna, Austria.

B2B Media Group EMEA GmbH

This offer uses selfcampaign, a service for embedding advertisements from B2B Media Group EMEA GmbH ("B2BMG"). B2BMG uses so-called cookies, a text file that is stored in the computer's browser and collects/retains usage data on an anonymous basis. Selfcampaign also uses so-called web beacons (invisible graphics). These web beacons allow evaluations to be made of information such as visitor traffic on the pages of this offer. Information generated via cookies and web beacons regarding the use of this website and the delivery of advertising formats is transmitted to a B2BMG server in Germany and is stored there. B2BMG is permitted to pass this information on to its contractual partners. This data can be used to create user profiles under a pseudonym. However, no personal details are collected without a declaration of consent from the person concerned. B2BMG uses this information to evaluate visitors’ use of the website and for online behavioural advertising (OBA) purposes. In as much as IP addresses are collected, these are stored anonymously by deleting the last number block. Cookies are those placed by either B2BMG or by service providers used by B2BMG who are obliged in the same manner to adhere to data protection regulations. These include krux digital Inc. and Google Inc., for example. Selfcampaign also uses certain functions provided by TradeDesk (https://www.thetradedesk.com/general/privacy-policy) und AdEx (http://www.theadex.com/#privacy), and is technically connected to these services. You can block the installation of the cookies by setting your browser software to do so; we would point out, however, that this may prevent you from using certain functions of this offer to their fullest possible extent.

Furthermore, you can exercise your rights to the correction or deletion of data, your right to restrict the processing of data, as well as your right to object to the processing of data and your right to data portability. Email address: datenschutz@b2bmg.de; Postal address: B2B Media Group EMEA, Bahnhofstraße 5, 91245 Simmelsdorf, Germany. https://b2bmg.net/index.php/datenschutz

PayPal

One payment method possible in our webshop is PayPal.

PayPal is operated by PayPal (Europe) S.à r.l. & Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg as the responsible party. If you have selected PayPal Express as the payment method, it is necessary for the further processing of your payment by PayPal to transmit the following personal data to PayPal (Europe) S.á.r.l. & Cie, S.C.A.:

  • Customer number
  • Order number
  • Ticket numbers
  • Total amount
  • The store from which the ticket was ordered (ticket store, mobile store, ...) is also sent.

If you have registered your PayPal account with Messe Karlsruhe, you will also have access (via PayPal/Braintree) to your PayPal account e-mail address. PayPal will then send the following data about your order back to Messe Karlsruhe so that the order can be processed:

  • Encrypted PayPal account number
  • E-mail address
  • First and last name
  • Delivery address

You can find more information about PayPal's data protection at www.paypal.com/de/webapps/mpp/ua/privacy-full. Otherwise, you can also contact PayPal (Europe) S.à r.l. & Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg directly.

Rights of the Affected Person

If your personal data is processed, you are the “affected person” within the meaning of the DSGVO and you have the following rights vis-à-vis the responsible individual or authority:

Right to Information

You can demand that the responsible individual or authority confirm or deny whether we process personal data that apply to you.

If such processing exists, you can demand that the responsible individual or authority provide you with the following information:

  • (1) the purposes for which the personal data are processed;
  • (2) the categories of personal data which are being processed;
  • (3) the recipients or the categories of recipients to whom the personal data were disclosed or are still being disclosed;
  • (4) the planned duration of the storage of the personal data that apply to you or, if specific information about this is not available, the criteria for determining the duration of storage;
  • (5) the existence of the right to rectification or deletion of personal data that apply to you, the right to restrict their processing by the responsible individual or authority, or the right to object to this processing;
  • (6) the existence of a right to appeal to a supervisory authority;
  • (7) all available information about the source of the data if the personal data were not obtained directly from the affected person;
  • (8) the existence of automated decision-making, including profiling in accordance with Art. 22 Abs. 1 and 4 DSGVO and – at least in these cases – meaningful information about the logic involved, as well as about the scope of such processing and its intended consequences for the affected person.

You have the right to demand information about whether your personal data will be shared with a third country or an international organization. In this context, you can demand notification about the appropriate guarantees related to the transmission of the data in accordance with Art. 46 DSGVO.

Right to Rectification

You have the right to rectify and/or augment the data vis-à-vis the responsible individual or authority, insofar as the processed personal data that apply to you are incorrect or incomplete. The responsible individual or authority must make the correction(s) without delay.

Right to Restriction of Processing

Under the following conditions, you can demand the restriction of the processing of the personal data that apply to you:

  • (1) if you contest the accuracy of the personal data that apply to you for a period of time that enables the responsible individual or authority to verify the correctness of the personal data;
  • (2) the processing is unlawful and you refuse the deletion of the personal data, demanding instead that the use of the personal data be restricted;
  • (3) the responsible individual or authority no longer needs the data for processing purposes, but you need the data to assert, exercise or defend legal claims; or
  • (4) if you have objected to the processing pursuant to Art. 21 Abs. 1 DSGVO and it has not yet been determined whether the legitimate needs of the responsible individual or authority outweigh your reasons.

If the processing of personal data that apply to you has been restricted, these data – with the exception of their storage – may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or one of its member states.

If the restriction of the processing according to the abovementioned conditions is curtailed, you will be notified by the responsible individual or authority before the restriction is lifted.

Right to Deletion

a) Obligation to Delete

If one of the following reasons exists, then you can demand that the responsible individual or authority immediately delete the personal data which apply to you and the responsible individual or authority is obliged to delete these data without delay:

  • (1) The personal data that apply to you are no longer necessary for the purposes for which they were collected or otherwise processed.
  • (2) You revoke your consent, under Art. 6 Abs. 1 lit. a or Art. 9 Abs. 2 lit. a DSGVO, upon which the processing is based, and no other legal basis exists for the processing.
  • (3) You object to the processing under Art. 21 Abs. 1 DSGVO and no superseding legal reasons exist for the processing, or you object to the processing pursuant to Art. 21 Abs. 2 DSGVO.
  • (4) The personal data that apply to you were unlawfully processed.
  • (5) The deletion of the personal data that apply to you is necessary to fulfil a legal obligation according to the law of the European Union or the law of the member states to which the responsible individual or authority is subject.
  • (6) The personal data that apply to you were collected in relation to services offered by the information company according to Art. 8 Abs. 1 DSGVO.

b) Information to Third Parties

If the responsible individual or authority has made public personal data that apply to you, and if the responsible individual or authority is obliged to delete these data pursuant to Art. 17 Abs. 1 DSGVO, then the responsible individual or authority shall undertake appropriate activities, including activities of a technical nature, taking into consideration the available technology and the cost of implementation, to notify the individuals or authorities responsible for processing the personal data, that you, as the affected person, have demanded the deletion of all links to these personal data or to copies or replications of these personal data.

c) Exceptions

The right to deletion does not exist if the processing is necessary for one or more of the following purposes:

  • (1) to exercise the right of freedom of expression and information;
  • (2) to fulfil a legal obligation required by the law of the European Union or the law of the member states to which the responsible individual or authority is subject, or to perform a task of public interest or to exercise official powers which have been conferred upon the responsible individual or authority;
  • (3) for reasons of public interest in the field of public health pursuant to Art. 9 Abs. 2 lit. h and i and Art. 9 Abs. 3 DSGVO;
  • (4) for archival purposes of public interest, for purposes of scientific or historical research, or for statistical purposes pursuant to Art. 89 Abs. 1 DSGVO, insofar as the law referred to under Subparagraph a) is likely to render impossible, or to exert a serious deleterious influence on, the achievement of the purposes of this processing; or
  • (5) to assert, exercise or defend legal claims.

Right to Notification

If you have exercised the right to rectification, deletion or restriction vis-à-vis the responsible individual or authority, this person or authority is obliged to notify all recipients to whom the personal data that apply to you have been disclosed about this rectification or deletion of the data and about the restriction in the data’s processing, unless such notification proves to be impossible or would involve a disproportionately great effort.

You have the right to demand that the responsible individual or authority inform you about these recipients.

Right to Data Portability

You have the right to receive the personal data that apply to you and that you have provided to the responsible individual or authority in a structured, commonplace and machine-readable format. In addition, you have the right to transmit these data to another responsible individual or authority, without hindrance by the individual or authority to whom or to which the personal data were originally provided, insofar as:

  • (1) the processing is based on consent pursuant to Art. 6 Abs. 1 lit. a DSGVO or Art. 9 Abs. 2 lit. a DSGVO or on a contract pursuant to Art. 6 Abs. 1 lit. b DSGVO and
  • (2) the processing is done by automated means.

In exercising this right, you also have the right to demand that the personal data which apply to you are transmitted directly from one responsible individual or authority to another responsible individual or authority, insofar as this is technically feasible. This must not infringe upon the freedoms and rights of other persons.

The right to data portability does not apply to the processing of personal data which are necessary for the performance of a task that lies in the public interest or that occurs in the exercise of official authority which was conferred upon the responsible individual or authority.

Right of Objection

You have the right at any time, for reasons arising from your particular situation, to object to the processing of the personal data that apply to you and which occurs on pursuant to Art. 6 Abs. 1 lit. e or f DSGVO; this right also applies to profiling based on these provisions.

The responsible individual or authority will no longer process the personal data that apply to you unless this responsible individual or authority can prove that there exist urgent reasons, worthy of protection, for such processing and that these reasons outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If the personal data that apply to you are processed for the purpose of conducting direct advertising, you have the right at any time to object to the processing of these personal data for purposes of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.

If you object to the processing for the purposes of direct advertising, the personal data that apply to you will no longer be processed for these purposes.

Regardless of Directive 2002/58/EG, you have the option, in the context of the use of services provided by the information company, to exercise your right of objection via automated means in which technical specifications are utilized.

Right to Revoke the Data Protection Consent Declaration

You have the right at any time to revoke your Data Protection Consent Declaration. Your revocation of consent does not affect the legality of processing which occurred based on your consent prior to your revocation of same.

Automated Decision on a Case-by-Case Basis, Including Profiling

You have the right to not be subjected to a decision based exclusively upon automated processing, including profiling, which will have a legal effect or which exerts significantly deleterious effects on you in a similar manner. This does not apply if the decision:

  • (1) is necessary for the conclusion or fulfilment of a contract between you and the responsible individual or authority;
  • (2) is permitted by European Union legislation or legal provisions of member states to which the responsible individual or authority is subject, and these legal provisions contain appropriate measures to safeguard your rights and freedoms and your legitimate interests; or
  • (3) occurs with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Art. 9 Abs. 1 DSGVO, insofar as Art. 9 Abs. 2 lit. a or g DSGVO does not apply and suitable measures have been taken to safeguard the rights and freedoms and your legitimate interests.

With regard to the cases referred to in (1) and (3), the responsible individual or authority shall take appropriate measures to safeguard the rights and freedoms and your legitimate interests, which include at least the right to obtain the intervention of a person by the responsible individual or authority, to express one’s own position, and to challenge the decision.

Right to Complain to a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, especially to an authority in the member state in which you reside, in which you work, or which contains the location of the alleged infringement, if you believe that the processing of the personal data that apply to you violates the DSGVO.

The supervisory authority to which the complaint was submitted shall notify the complainant about the status and the results of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 DSGVO.

Changes of Our Data Protection Declaration

We reserve the right to make changes in this Declaration at any time in order to ensure that our Data Protection Declaration always remains in compliance with current legal requirements. This also applies in the event that the Data Protection Declaration requires modification due to the introduction of new or revised services, for example, the provision of new services. The new Data Protection Declaration will then take effect upon your next visit to our offer.