DATA PROTECTION INFORMATION
We would like to inform you as precisely and comprehensibly as possible about how we implement the special requirements of data protection in our company. For this reason, the following data protection document describes the type, scope and purpose of our collection, processing and use of personal data. The disclosure to third parties is also described here.
Person responsible for data processing.
Your rights as the data subject
Storage period / retention of personal data
Google Web Fonts / Adobe TypeKit
Google Analytics (with anonymization function)
Contact tracing Infection Protection Act (IfSG)
Requirements of providing personal data
Requirements of providing personal data
Requirements of providing personal data
Requirements of providing personal data
Requirements of providing personal data
Legal bases of data processing
Information for applicants who are minors
Which recipients receive the data?
Applicant portal (karriere.messehusum.com)
Person Responsible for Data Processing
Messe Husum & Congress GmbH & Co. KG
Am Messeplatz 12 – 18
25813 Husum, Germany
Represented by the Managing Director: Meike Kern
Data Protection Officer
Our Data Protection Officer is:
Project Privacy Datenschutz- und Projektberatung
Owner: Steven Heyer
Elsterweg 30
24539 Neumuenster, Germany
You can reach him via E-Mail at: datenschutz@messehusum.com
Your rights as the data subject
As the so-called data subject in the sense of data protection, you have various particular rights which we would like to list here:
Right to information
You have the right to request information about your data processed by us. In the case of a request for information that is not made in writing, we may require evidence that you are the person you claim to be in order not to disclose your data to unauthorized persons.
Right to rectification
Of course, you can contact us at any time if we have stored incorrect or old data about you. We will then correct them.
Right to deletion
If you no longer want us to store/process your data in the future, you can request that we delete your data, provided you are entitled to do so by law. If we still need your data for legal reasons (e.g. legal obligations to provide evidence) or for a legitimate interest (e.g. to defend legal claims), we will restrict the processing of your data. This means that we will regulate access in such a way that only certain people with us, and only for important reasons, can access this data.
Right of objection
You have the right to object the processing of your data by us that is based on a legitimate interest in accordance with Art. 6 (1) f) DSGVO. We reserve the right to closely examine and evaluate the particular personal situation described by you for this purpose.
Right to data portability
If you are legally entitled to do so, you have the right to have your data processed by us handed over in a generally machine-readable format in order to transfer it to a comparable service provider. We will only make a direct transfer to another service provider if it is technically feasible for us and the effort involved is proportionate.
Right of revocation
If we process data from you on the basis of your consent in accordance with Art. 6 (1) a) DSGVO, you have the right to revoke this consent at any time, now and in the future. The legality of the data processing carried out on the basis of the consent until the revocation remains unaffected.
Right of complaint
If you are not satisfied with the processing of your data by us, you can contact us at any time (datenschutz@messehusum.com). You also have the right to complain to a data protection supervisory authority.
The websites of the respective German supervisory authorities for data protection can be found here: https://www.datenschutzkonferenz-online.de/datenschutzaufsichtsbehoerden.html
The supervisory authority responsible for us is:
Independent State Center for Data Protection Schleswig-Holstein.
Holstenstrasse 98
24103 Kiel, Germany
Further contact details can be found on the website of the supervisory authority:
www.datenschutzzentrum.de
You can contact us at any time with questions or concerns about data protection or your data subject rights at: datenschutz@messehusum.com. We will respond as quickly as possible, but within 14 days at the latest.
Recipients of personal data
The following list is merely an overview that briefly describes the cases in which we pass on data to other companies. The exact descriptions can be found in the data protection notices of the respective processing operations.
Web host
Our email server as well as our web servers and the server of our (customer) administration system are operated in the data center of our web host, Stormedia Digitalagentur, in Frankfurt, Germany. Stormedia does not directly access our files of personal data, however, the possibility of Stormedia becoming aware of personal data during its work cannot be completely ruled out.
Advertising agencies / web developers / designers (agencies)
The agencies that we hire for our websites have administrative rights to maintain our websites, to develop them further and, last but not least, to ensure IT security on the web servers. They do not directly access our inventories of personal data, however, can not completely rule out the possibility of these parties becoming aware of personal data during the agencies‘ work with us.
Webshops and payment service providers (e.g. Paypal)
If you buy something via one of our online shops or book a room through us during our events, all data required for processing the purchase will be forwarded to the respective online shop provider and the payment service provider you have chosen.
Streaming services
If you take part in one of our virtual events, all data required to enable you to participate will be passed on to the respective streaming service providers.
Trade fair / Event service providers
We may pass on company profiles of exhibitors to selected service providers who support us in setting up and running our trade fairs and events (e.g. ext. stand builders, technicians, etc.). You can view these here: https://www.messehusum.com/dienstleister
Press / Print media
In order to promote our events and in response to press inquiries (e.g. local media reporting), we may pass on photographic material from the events and information on exhibitors and speakers to the press or publish it in print media. Individuals who were at the event at the time the picture was taken may be recognizable on photographic material from events.
However, if we take and share photos in which individuals are in focus, we will ask these individuals for permission beforehand and, if necessary, obtain written consents.
Tracking / Cookies
Information on the collection and transfer of data when visiting our websites can be found in the data protection information for our websites.
Newsletter
For the administration of our newsletter, we transfer data that we process in connection with the newsletter dispatch to our service provider Newsletter2Go.
Online meetings
The information on data processing and transfer in connection with online meetings can be found in our data protection information on the subject of online meetings.
Storage period / retention of personal data
Contract data
We retain data relevant under tax law for 10 years in order to fulfill our legal obligations to provide evidence. All other data (unless required for the fulfillment of legal or contractual retention periods or for the defense of legal claims) will be deleted by us as soon as there is no longer an active customer relationship between you and us, or is no longer to be expected, or if you request us to delete it.
As the event organizer, you are responsible for the proper disposal of personal data that you have created yourself or brought with you (e.g. lists of participants). Should these still remain in our facility after the end of the event, we reserve the right to charge for disposal depending on the effort involved.[JL1]
Business communication and email traffic
Data that we process in connection with business communication is stored both on our e-mail server and on the server of our customer relationship management (CRM) system. The servers are both located in the data center of our service provider Stormedia – Digitalagentur in Frankfurt, Germany. Our service provider has no access to this data. We store your data for the period of communication, or the processing of your request, unless a business relationship is established between you and us. In addition, we archive all of our business email correspondence for up to 5 years, in order to fulfill legal obligations to provide evidence or to defend legal claims.
Job Applications
We store applications and applicant data for the period of the decision-making process. In the event of a rejection, we reserve the right to retain the data for a period of up to 6 months, as we may need you to assert or defend legal claims.
In the event of an acceptance, all data [JL2] required for the establishment, implementation and termination of the respective contractual relationship will be transferred to the personnel department.
If you have agreed to the transfer of your data [JL3] to our applicant pool so that we can consider you for future vacancies, we will store your data for up to 12 months unless you request us to delete it beforehand.
Data storage with service providers
The storage period of data that we pass on to other companies can be found in the data protection notice of the respective scope for processing data.
Privacy notices for websites
Scope
The following data protection information applies to all websites for which Messe Husum und Congress GmbH und Co. KG is responsible.
When you visit our website, our system automatically collects data and information from your computer.
The following data is collected for a limited period of time:
(1) Information about the browser type and version used.
(2) The operating system of the user
(3) The user’s internet service provider
(4) The IP address of the user
(5) Date and time of access
(6) Websites from which the user’s system accesses our website
The data is stored in the log files of our system. This data is only required for the analysis of any malfunctions and is deleted within seven days at the latest. The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session. The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context and no conclusions are drawn about your person. Our web server is hosted in the data center of our partner, Storemedia Digitalagentur in Frankfurt.
The legal basis for this processing is is described under Art. 6 (f) DSGVO. Our legitimate interest for the processing is to ensure a smooth connection, a comfortable use, and the system security and stability of our websites.
Cookies
Our website uses so-called sessions, or flash cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user’s computer system. When a user opens up a website, a cookie may be stored on the user’s operating system. This cookie contains an individual string of characters that enables the browser to be uniquely identified when the website is called up again. The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f) DSGVO. The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. In addition, we also use – with your explicit compliance – so-called persistent cookies that are used beyond the session („cross-session cookies“).
If you agree to the use of persistent cookies, third-party cookies may be stored in your browser, which analyze your usage behavior. We use these cookies to optimize our website and make it more interesting for our visitors.
The use of technically unnecessary cookies only occurs with your consent (in accordance with Art. 6 para. 1 lit. a) DSGVO). You can revoke your consent at any time by making the appropriate settings in your browser or by changing the data protection settings.
Contact form
You have the possibility to contact us via the contact form on our website. In order to process and respond to your request, we need your name and email address.
The legal basis for this processing is described under Art. 6 para. 1 lit. b) DSGVO. Without this data, we cannot process your request.
Newsletter
So that you are always up to date on what is happening with us, we offer you the opportunity to subscribe to our newsletter. To be able to deliver the newsletter, we need a valid email address from you. All other information is voluntary. Your name and gender will only be used for a correct personal salutation in the newsletter. After you have subscribed to the newsletter on our website, your data will be forwarded to our service provider „Newsletter2Go GmbH“. This provides us with a platform with which we can manage the newsletter dispatch. You will then receive an email with a link to confirm that you really want to subscribe to the newsletter (double opt-in). The link is valid for 7 days. If you do not confirm it within these 7 days, your email address will be deleted automatically. The newsletter can be unsubscribed at any time on our website or via an unsubscribe link in the newsletter mail.
The legal basis for this data processing is described under Art. 6 para. 1 lit. a) DSGVO in conjunction with § 7 UWG.
Online shop
You have the opportunity to purchase tickets for our events directly on our websites. We use ticket store systems for this purpose.
Eventbrite
Eventbrite Inc. is a Delaware corporation with its principal place of business at 155 5th Street, Floor 7, San Francisco, CA 94103, Reg. No. 4742147, USA („Eventbrite“). For users located in the European Economic Area („EEA“) or Switzerland, Eventbrite Inc. acts as a controller with respect to personal data collected through the Services. Eventbrite’s agent for purposes of European data protection legislation is Eventbrite NL BV, located at Silodam 402, 1013AW, Amsterdam, The Netherlands.
Please note that it cannot be ruled out that the data you enter when purchasing tickets via Eventbrite will be transmitted to Eventbrite Inc. in the USA.
You can find Eventbrite’s privacy policy here: https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinien-von-eventbrite?lg=de
ticket.io
ticket.io is a platform ticket i/O GmbH based in Cologne, Germany, through which we manage our online ticket sales, appointment bookings, purchasing, booking and payment processing for our trade fairs and events, as well as participant management for our (Corona) test center. Since ticket i/O GmbH administers the platform and also handles payment processing in some cases, it necessarily receives all data collected from you in connection with the aforementioned processing. Please also refer to the data protection information of tickt.io (https://messehusum.ticket.io/privacy/?lang=de).
Virtual events
We use various service providers to carry out our virtual events, i.e. events where you are not on site with us, but where you participate online with your PC, smartphone, tablet or similar.
m&b Hagen: m&b Hagen (Michael Martin & Stephan Borowa GbR) is our partner for the realization of virtual events. The m&b Hagen supports us in the use of the various services and manages the user registration process. For this purpose, we forward your email address, which is required for registration and participation in our online events, to m&b Hagen. There, your data will be stored on their own servers (located in Germany) for the duration of the event. m&b Hagen then transmits your login data accordingly to the service provider WOWZA media systems, LLC.
WOWZA media systems, LLC (WOWZA): WOWZA is a US service provider that manages the streaming of our online events to provide you with a live online broadcast. In order to participate in our virtual online events, it is mandatory that your login data is transmitted to WOWZA, otherwise you will not be able to log into the streaming service. Once logged into the stream, WOWZA may collect certain log data about you (IP address, type of terminal device, the country you are in, etc.) and may also set cookies. You can read more information about the processing of your data by WOWZA here: https://www.wowza.com/legal/privacy
Sli.do s. r. o. (Slido): Slido is an online survey service provider headquartered in Bratislava, Slovakia, with several other locations (including USA and Australia). We use Slido to conduct participant surveys during our online events. The surveys are anonymous and participation is voluntary. If you participate in the surveys during an online event, Slido may also collect log data about you (IP address, type of terminal device, the country in which you are located, etc.) and cookies may also be set. You can read more information about the processing of your data by WOWZA here: https://www.sli.do/terms#pp-personal-data
The legal basis for the transfer to the aforementioned service providers is Art. 6 para. lit. b). Without the transmission of your login data to our service providers, participation in our online events is not possible.
Contests
We may run contests on our websites to increase our visibility or specifically draw attention to our events. The basis for these competitions is usually that you allow us to send you advertising via our email newsletter. The exact conditions of participation can be found in the respective contest.
The personal data collected by us in connection with competitions is required to check your eligibility, to transmit a possible prize and to send you information about the competition and the aforementioned newsletter.
The procedure for our contests is usually as follows:
You enter your data on the respective website. Mandatory data consists of: Full name, email address, and age ,and voluntary data consists of: How you became aware of the contest, and what interest you have in the respective event.
You read our data protection information and the conditions of participation for the respective competition, confirm this and send your information.
Our web server generates an email with your data and sends it to us.
After we have checked whether you are entitled to participate, the winners will be drawn and contacted by us via email.
At the same time your data will be transferred to our newsletter tool „Newsletter2Go“. From then on you will receive our newsletter. You can unsubscribe from this at any time (see section Newsletter above).
After contacting us, your prize will be sent to you (e.g. prize code by email). Should further data be necessary for the transmission of the prize, e.g. an address for the dispatch of prize goods (such as t-shirts or similar physical products), we will collect this data directly from you during the email communication.
Please note the conditions of participation for each competition.
The legal basis for this processing is described under Art. 6 para. lit. b) DSGVO. Without providing the requested data, participation in the contest is not possible.
Google Maps
We use links to Google Maps on our site to show directions or locations.
Please note: By clicking on „Load map“ on the Google map on our website, you give us your consent to the processing of your data by Google.
During this processing, cookies are stored by Google in your browser and personal data such as your IP and, if applicable, your location is transmitted to Google. You can view their privacy policy here: https://www.google.com/policies/privacy/partners/?hl=de.
The legal basis for this processing is described under Art. 6 para. 1 lit. a) DSGVO (consent of the data subject).
Google Web Fonts / Adobe TypeKit
To ensure that our website always displays the same way on different systems and browsers used by our visitors, we use Google Web Fonts and Adobe TypeKit. This means that when you access our site, our web server connects to an Adobe TypeKit or Google Web Fonts (fonts) server and transmits information about you, such as your IP address to Google LLC. and Adobe Systems Software (possibly also outside the EU).
The legal basis for this processing is described under Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the appealing and consistent presentation of our website on different systems and browsers.
DoubleClick
This website continues to use the online marketing tool DoubleClick by Google. DoubleClick uses cookies to serve ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads more than once. With a cookie ID, Google records which ads are displayed in which browser and can thus prevent them from being displayed more than once. In addition, DoubleClick can use cookie IDs to record so-called conversions that relate to ad requests. This is the case, for example, when a user sees a DoubleClick ad and later uses the same browser to visit the advertiser’s website and make a purchase.
Due to the marketing tools used, your browser automatically establishes a direct connection with Google’s server. Through the integration of DoubleClick, Google receives the information that you have called up the relevant part of our website or clicked on an ad from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, there is the possibility that the provider learns your IP address and stores it.
In addition, the DoubleClick floodlight cookies used allow us to understand whether you perform certain actions on our website after you have accessed or clicked on one of our display/video ads on Google or on another platform via DoubleClick (conversion tracking). DoubleClick uses this cookie to track the content you have interacted with on our websites in order to later send you targeted advertising.
For more information about DoubleClick by Google, please visit www.google.de/doubleclick and support.google.com/adsense/answer/2839090, as well as Google’s privacy policy in general: https://policies.google.com/privacy?hl=en&gl=de. Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org.
The legal basis for this processing is described under Art. 6 para. 1 lit. a) DSGVO, you can revoke your consent at any time by making the appropriate setting in our cookie tool (Cookies section).
Google Analytics (with anonymization function)
The controller has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, compilation and analysis of data about the behavior of visitors to websites. A web analysis service collects, among other things, data on which website a data subject came to a website from (so-called referrers), which sub-pages of the website were accessed or how often and for how long a sub-page was viewed. A web analysis is mainly used for the optimization of a website and for the cost-benefit analysis of internet advertising.
The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland.
The controller uses the addition „_gat._anonymizeIp“ for web analysis via Google Analytics. By means of this addition, the IP address of the Internet connection of the data subject is shortened and anonymized by Google if access to our Internet pages is from a member state of the European Union or from another state party to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website.
Google Analytics sets a cookie on the information technology system of the data subject. What the cookies are has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. By each visit of one of the individual pages of this website, which is operated by the controller and on which a Google Analytics component has been integrated, the internet browser on the information technology (IT) system of the data subject is automatically triggered by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which Google uses, among other things, to track the origin of visitors and clicks and subsequently enable commission calculations.
By means of the cookie, personal information, for example the access time, the location from which an access originated and the frequency of visits to our website by the data subject, is stored. Each time the data subject visits our website, this personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the USA. Google may disclose this personal data collected via the technical procedure to third parties.
The data subject can prevent the setting of cookies by our website, as already described above, at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the IT system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.
Furthermore, the data subject has the option to object to the collection of data generated by Google Analytics and related to the use of this website as well as to the processing of this data by Google and to prevent such processing. For this purpose, the data subject must download and install a browser add-on under the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics via JavaScript that no data and information regarding visits to Internet pages may be transmitted to Google Analytics. The installation of the browser add-on is considered by Google as an objection. If the IT system of the data subject is deleted, formatted or reinstalled at a later point in time, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. Provided that the browser add-on is uninstalled or deactivated by the data subject or another person attributable to his or her sphere of control, there is the option of reinstalling or reactivating the browser add-on.
Further information and the applicable Google privacy policy can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.
The legal basis for the use of Google Analytics is described under Art. 6 (1) a) DSGVO (consent of the data subject). You can revoke your consent to data processing by Google Analytics at any time via the privacy settings or corresponding browser settings.
GA Audiences
We also use Google Audiences („GA Audiences“), a web analytics service provided by Google. Through this service, data is collected and stored, from which pseudonymized usage profiles are created. Through this technology, users who have visited our websites can be shown targeted advertising from us on other external sites of the Google Partner Network.
GA Audience uses, among other things, cookies that are stored on your computer as well as other mobile devices (e.g. smartphones, tablets, etc.) and that enable an analysis of the use of the respective devices. In some cases, the data is analyzed across devices. GA Audience receives access to the cookies created in the context of the use of Google Analytics. In the course of use, data, such as in particular the IP address and activities of the user, may be transmitted to a server of the company Google LLC and stored there. Google LLC may transfer this information to third parties where required to do so by law, or where such data is processed by third parties. On our pages, this collection and forwarding of data only takes place with your consent. You can prevent the collection and forwarding of personal data (especially your IP address) and the processing of this data in general by deactivating the execution of JavaScript in your browser or installing a tool such as ‚NoScript‘. You can also prevent the collection of data generated by the Google cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link (https://tools.google.com/dlpage/gaoptout?hl=en). Further information on data protection when using GA Audience can be found at the following link: https://support.google.com/analytics/answer/2700409?hl=en&ref_topic=2611283.
The legal basis for this processing is described under Art. 6 para. 1 lit. a) DSGVO. (Consent of the data subject).
Google Tag Manager
Google Tag Manager is a system that controls when which tags (scripts) are executed on our website. The Tag Manager itself does not process or send any data. In our case, it ensures that cookies and trackers only become active when you have given us your consent.
YouTube
We directly embed videos stored on YouTube on some of our websites / subpages. With this integration (embedding), content from the YouTube website is displayed in parts of a browser window. However, the YouTube videos are only called up by clicking on them separately. If you click on YouTube videos on our website that are embedded in this way, a connection to the YouTube servers is established and the content is displayed on the website by informing your browser.
The integration of YouTube content only takes place in „extended data protection mode“. YouTube itself provides this mode and thus ensures that YouTube does not initially save any cookies on your device. However, the following data is transmitted when you call up the relevant pages:
– IP address
– Date and time of the request
– Time zone difference based on Greenwich Mean Time (GMT)
– Content of the request (specific Internet page)
– Access status/HTTP status code
– Amount of data transferred in each case in bytes
– Web page from which the request comes (link)
– Browser used
– Operating system and its interface
– Language and version of the browser software
If you are logged in or permanently logged in to YouTube or another Google service (e.g. Google+)[JL4] , this information can be assigned to your user profile.
As soon as you start the playback of an embedded video by clicking on it, you give your consent to YouTube storing cookies on your device and to the aforementioned data being transferred to YouTube, also being processed outside the EU and possibly being passed on to third parties by YouTube. Through the enhanced privacy mode, only cookies that do not contain personally identifiable data are stored, unless you are currently logged in to a Google service. These cookies can be prevented by appropriate browser settings and extensions.
Address and link to the privacy policy of the third-party provider:
Google/YouTube: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy policy: https://policies.google.com/privacy
Opt-out: https://adssettings.google.com/authenticated
The legal basis for this processing is described under Art. 6 para. 1 lit. a) DSGVO. You give your consent by playing a YouTube video on our website.
Facebook Connect
We use „Facebook Connect“ of Facebook Inc, 1601 S California Ave, Palo Alto, California 94304, USA (hereinafter referred to as „Facebook“) on some of our websites. With Facebook Connect, you have the option of registering for our services directly with your Facebook user account. An additional registration is therefore not required. To register, you will be redirected to the Facebook page, where you can log in with your Facebook user data. This links your Facebook profile and our services. Through the link, information such as inventory data (e.g., names, addresses) and contact data (e.g., email, telephone numbers) can be automatically transmitted to us by Facebook. However, matching is not always possible, nor does it actually occur in every case. If, for example, your email address changes, you must change it manually in your user account with us.
Furthermore, it may happen that Facebook receives information about your use of our website through the link and stores and processes it for its own purposes. This can be, for example, tickets purchased in our ticket store or similar.
If you decide that you no longer wish to use the link between your Facebook profile and our services, you must remove the link within your Facebook user account. If you wish to delete the data resulting from the link and stored by us, you must cancel your registration with us or request us to delete your data.
The legal basis for this processing is described under Art. 6 para. 1 lit. a) DSGVO (consent of the data subject). You can revoke your consent for the processing of your data by Facebook Connect in connection with our services at any time, as aforementioned, by unlinking within your Facebook account and requesting us to delete it.
Facebook Custom Audience
On our website, we use the analytics tool Facebook Pixel from Facebook Inc, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, D2 Dublin, Ireland („Facebook“). Facebook Custom Audiences works with a JavaScript code snippet that is executed when someone opens a page. We use it to analyze the effectiveness of our advertising. We cannot identify an individual user or specifically address them with ads through our Facebook Business Profile. We can only identify groups of users.
With Facebook Pixel, we want to ensure that ads are displayed to those visitors to our website on Facebook who meet certain characteristics. The groupings of users based on certain characteristics are called „Custom Audiences“ by Facebook. The ads are intended to be shown on Facebook to those potentially interested in our product and not to those who are unlikely to be interested in our product.
Our Custom Audience consists of the „Custom Audience through websites“ feature, which means that the Facebook pixel matches visitors to our website with people on Facebook. The following data is sent to Facebook:
The redirect URL, browser information, and the person’s Facebook user ID (hashed).
Additionally, the pixel helps to statistically track the effectiveness of ads, this is called „conversion“ by Facebook. The Facebook Pixel tells us whether people in the target group have visited our website, searched for a particular product on our website, looked at a particular product or product category, whether a purchase was initiated, whether a purchase was completed. The Facebook Pixel tells us whether people were directed to our site from a paid search engine result and whether people are interested in special offers. We can only tell from the statistics that this has happened – we cannot identify individual people.
The processing by Facebook Custom Audiences (Pixel) is based on Art. 6 lit. a) DSGVO. You can revoke your consent at any time by making the appropriate setting in our cookie tool (Cookies section).
Bugsnag
On some of our websites, we use Bugsnag, a technical error analysis tool from Bugsnag Inc. (hereinafter „Bugsnag“), 939 Harrison St, San Francisco, CA 94107, USA. In case of errors, the tool helps us to analyze, evaluate and categorize them. In order to improve the accessibility and technical stability of our websites by monitoring functionality, system stability and identifying code errors, we may automatically transmit the following information to Bugsnag in the event of a software error occurring:
Device information (operating system, browser version, browser type),
the IP address of the device used,
details of the page visited at the time of the error,
time of the error.
The legal basis for the aforementioned processing is described under Art. 6 para. 1 lit. f) DSGVO. An evaluation for advertising purposes expressly does not take place. The data is collected anonymously and not used for personal purposes, and is subsequently deleted. This analysis helps us to further improve our website and to correct unrecognized code errors. The processing that takes place in this way is in our legitimate interest, as the data is used solely for the purpose of error identification and analysis. You can prevent the installation of the cookie in advance by setting your browser accordingly or object to this processing by deleting the cookies via your browser settings. For more information about the data processing and operation of Bugsnag, please refer to the privacy policy of Bugsnag.
Sourcepoint
In order to obtain and store your consent under data protection law, we use the consent management platform of Sourcepoint (Sourcepoint Technologies, Inc., 228 Park Avenue South, #87903, New York, NY 10003-1502, United States). Sourcepoint sets a technically required cookie in order to query the consent status and thus play out content. In addition, a usage analysis is carried out via the consent request.
The cookie is stored until you revoke it and deleted after 13 months at the latest.
You can find more information about Sourcepoint’s data protection here.
The usage analysis is carried out on the legal basis of Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest is the consent of data protection law consents, their storage (for proof) and the usage analysis of the application.
Cloudflare
Cloudflare is a US service that provides a CDN (Content Delivery Network) and various security functions, among other things. A CDN ensures that the distribution of online media is optimized and thus, for example, loading times when calling up websites are reduced. Various security functions of Cloudflare protect our web servers from hacker attacks and regulate access. For this Cloudflare needs certain user data. As a rule, this is the log file data described under „Web server“.
The legal basis for this processing is described under Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest is to provide the content of our websites as optimally as possible (performance) and to protect our web servers from attacks.
Social Media
Scope
The following data protection information applies to social media profiles, on the respective platforms described, for which Messe Husum und Congress GmbH und Co. KG is responsible.
Facebook / Instagram
As operators of Facebook/Instagram (company) profiles, we use the technical platform and services of Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland for the information services offered here. We would like to point out that you are responsible for how you use this Facebook/Instagram page. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating, following). Alternatively, you can also view the information offered via this page on our website:
Data processing
When you visit our Facebook/Instagram page, the provider collects, among other things, your IP address and other information that is present in the form of cookies on your PC. This information is used to provide us, as the operator of the pages, with statistical information, so-called insights, about the use of the Facebook/Instagram page.
Facebook provides more detailed information on this under the following link: https://www.facebook.com/help/pages/insights.
The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. In general terms, Facebook describes what information it receives and how it is used in its data usage guidelines. There, you will also find information on how to contact Facebook and on the settings options for advertisements.
The data usage guidelines are available at the following link: http://de-de.facebook.com/about/privacy.
Facebook’s full data policy can be found here: https://www.facebook.com/privacy/policy
Information on data processing when using Instagram can be found here: https://www.facebook.com/help/instagram/155833707900388
Detailed information about the type of processing for its own purposes, the exact assignment of user activities to individual users, the storage period and the transfer of data to third parties are not clearly stated by Facebook and are therefore not known to us.
When you access a Facebook/Instagram page, the IP address assigned to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for „German“ IP addresses) and deleted after 90 days. Facebook also stores information about the end devices of its users (e.g. as part of the „login notification“ function). If necessary, Facebook is thus able to assign IP addresses to individual users.
If you are currently logged in to Facebook/Instagram as a user, a cookie with your Facebook ID is located on your end device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons embedded in websites, it is possible for Facebook to record your visits to these website pages and assign them to your Facebook/Instagram profile. Based on this data, content or advertising that is specifically tailored to your profile, can be shown to you. If you want to avoid this, you should log out of Facebook/Instagram or deactivate the „stay logged in“ function, delete the cookies present on your device and exit and restart your browser. This way, information that directly identifies you in Facebook will be deleted. This will allow you to use our Facebook/Instagram page without revealing your Facebook identifier.
When you access interactive features of the site (Like, Comment, Share, Message, Follow, etc.), a Facebook/Instagram login screen will appear. After any login, you will again be recognizable to Facebook as a specific user. Information on how to manage or delete information about you can be found on the following Facebook support pages: https://www.facebook.com/privacy/policy.
As the provider of the information service, we also only collect and process statistical data from your usage of this service.
The legal basis for this processing, in the case that personal data is processed by us, is described under Art. 6 para. 1 lit. f). Our legitimate interest for the use of so-called „Insights“ data is the continuous optimization of our Facebook page.
For the short message service offered here, we make use of the
platform and the services of Twitter Inc., 795 Folsom St., Suite 600, San
Francisco, CA 94107, USA.
We would like to point out that you use the Twitter short message service offered here and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. re-tweeting, rating). Alternatively, you can also access the information offered via this service on our website at https://www.messehusum.com.
The data collected about you when using the service is processed by Twitter Inc. and may be transferred to countries outside the European Union. This includes, among other things, your IP address, the application you use, information about the terminal device you use (including device ID and application ID), information about websites you visit, your location and your IP address), information about websites you have visited, your location and your mobile phone carrier.
This data is assigned to the data of your Twitter account or your Twitter profile. We have no influence on the type and scope of the data processed by Twitter, how it is processed and used, or whether this data is passed on to third parties. Information on what data is processed by Twitter and for what purposes can be found in Twitter’s privacy policy (https://twitter.com/privacy) and on the possibility of viewing your own data at
Twitter (https://support.twitter.com/articles/20172711#). Furthermore, you have the option of using the Twitter data protection form or the archive requests to request information:
As the provider of the information service, we also collect and process statistical data from your use of this service.
The legal basis for we process your personal data, is described under Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest is to publish impressions of our events via Twitter for advertising purposes and to present our offer in an appealing way.
Since Twitter Inc. is a non-European provider, it is not bound by European data protection regulations. For example, this concerns your rights to information, blocking or deletion of data or the possibility to object to the use of usage data for advertising purposes.
You have options to restrict the processing of your data in the general settings of your Twitter account and under the item „Privacy and security“. In addition, you can restrict Twitter’s access to contact and calendar data, photos, location data, etc. on mobile devices (smartphones, tablet computers) in the settings options there. However, this depends on the operating system used. More information on these points is available on the following Twitter support pages:
Through Twitter buttons or widgets embedded in web pages and the use of cookies, it is possible for Twitter to record your visits to these web pages and to your Twitter profile. Based on this data, content or advertising that is specifically tailored to your profile, can be shown to you. Information on this and on the available settings can be found on the following Twitter support pages:
https://support.twitter.com/articles/20171570#
Contests
From time to time, we hold contests to draw attention to our various events and trade shows. In the case of competitions that we organize on our websites or in our social media channels, such as Facebook, Instagram or Twitter, additional data that is required for sending the prize is only collected from the winners. These can be, for example, an email address for the transmission of a win code or the physical address and name for the dispatch of prize goods (e.g. T-shirts). All other data processing is limited to the aforementioned general processing when using social media.
The processing procedure for our contests is as follows:
– A visitor can participate in the contest by fulfilling the requirements described in the contest description (e.g., liking and sharing the contest in his or her own profile or registering on the respective website).
– Winners will be drawn by lot (after verifying that the respective participants are eligible to participate in the contest)
– The winners will be contacted by private message in the respective social medium
– After providing the data required for sending the prize, the winners will receive their prize
Before participating in our contests, please read the respective terms and conditions.
Our contests are intended to draw attention to our events and provide an incentive for participants to receive information about future events. For this reason, participation in our contests is only possible if you have agreed to the described advertising measures.
The legal basis for processing personal data for participation in our contests is described in Art. 6 para. lit. b) DSGVO. Without providing the required data, participation in our contests is not possible.
The legal basis for the use of the data provided for advertising purposes is consent pursuant to Section 7 UWG.
Trade fairs and events
Scope
The following data protection information applies to visits to our trade fairs and on-site events.
Visual materials
During our trade fairs and events, we may take photos and video recordings for public relations and marketing purposes and publish them on our website or in trade fair publications.
Our photographers are instructed not to photograph event visitors directly (single shot) without being asked. However, it cannot be ruled out that individual persons can be recognized as „accessories“.
We have a legitimate interest described in Art. 6 (1) f) DSGVO in the publication of such photographic material. For the purpose of advertising, we would like to convey impressions of our events and attract potential visitors and exhibitors.
Independent data transfer
If you share your personal data (e.g. business cards) to exhibitors, speakers or other visitors and participants at one of our events, they alone are responsible for the security of the processing, as well as for safeguarding your data subject rights and protecting your personal data.
Contact tracing Infection Protection Act (IfSG)
Due to the changes in the Infection Protection Act (IfSG) of November 19, 2020, contact tracking of all contact tracking of all persons present is currently being carried out. All data required for this must be stored in the registration. A daily updated rapid test, vaccination or proof of infection with Covid-19 is required for admission to the exhibition grounds.
The definition for vaccinated, recovered and vaccinated recovered persons is as follows:
Vaccinated persons must show their vaccination card or a comparable document. This must show that the complete vaccination took place at least 14 days ago. Fully vaccinated means that the second dose must also have been administered if two doses are provided for a vaccine (e.g. Biontech, Moderna and Astrazeneca). Only a vaccine approved in the EU is allowed as proof.
Convalescent individuals must have a positive PCR test result that is at least 28 days and no more than six months old. After six months, the convalescent status expires. From that point on, a negative rapid test result or vaccination must be shown.
Convalescent vaccinated individuals are considered fully vaccinated as early as the first vaccination.
As proof, they need a positive PCR test result that must be at least 28 days old, but may be older than six months. They also need an immunization card or equivalent document showing that they were vaccinated once more than two weeks ago.
The contact tracing data will be stored by us for <…days> [JL5] and then deleted.
The legal basis for this processing is described in Art. 6 para. 1 lit. c) DSGVO in conjunction with. § <XX[JL6] > Infection Protection Act (IfSG). Without the verification of your 3G status (vaccinated, recovered, tested) and the storage of your data for tracking purposes, you will not be allowed to enter the exhibition grounds or our premises.
Exhibitor
Scope
The following data protection information is intended for persons and companies who participate as exhibitors at our trade fairs or events.
Data processing purposes
The data requested in the registration form are required to make arrangements regarding the trade fair appearance, and to issue invoices. The processing is carried out in accordance with Art. 6 Para. 1 lit b) DSGVO.
We publish the data specified in the registration form (company profile: company name, address, telephone, fax, email, website) on the website of the respective trade fair or event so that visitors can obtain information about the exhibitors. The publication of the company profiles, insofar as personal data has been provided, is carried out in this respect in accordance with Art. 6 Para. 1 lit. f) DSGVO. The company profile can be adjusted independently by the exhibitor in the online ordering system after receipt of admission.
We also use your specified email address (of the contact person) to send you information about the trade fair or event and the associated newsletter for which you have registered (including follow-up events, e.g. if you register for a current event, you will also receive information for the same event in subsequent years).
This processing is carried out pursuant to Art. 6 para. 1 lit.f) DSGVO in conjunction with. § 7 para. 3 UWG. Our legitimate interest is the acquisition of exhibitors for our future trade fairs and events.
You can object to the sending of the newsletter at any time. You can do this either via the unsubscribe link in the newsletter or by sending an email to info@messehusum.com from the email address concerned.
Requirements of providing personal data
The personal data is necessary to carry out the registration for a trade fair, congress or similar event and to ensure a smooth process for both our company and you as a participant. If you do not provide us with the required data, we cannot conclude a contract with you and thus unfortunately cannot consider you as an exhibitor.
Speakers
Scope
The following data protection information is intended for persons who appear as speakers at our events or trade fairs.
Data processing purposes
The data requested in the registration form is required to make arrangements regarding the trade fair appearance, and for invoicing. The processing is carried out in the sense of Art. 6 para. 1 lit b) DSGVO.
In order to give our visitors an overview of what to expect at our event, we publish your name, a photo of you and a description of your person and activities on our website. The publication of your profile is in accordance with Art. 6 para. 1 lit. f) DSGO. Our legitimate interest in this context is to promote our event.
Microsoft Teams
Speakers who do not give their presentation on our premises will be connected via Microsoft Teams. We will send you an invitation link to your email address. When using Teams, your email address as well as some log data, such as your IP address, access period, browser type, system information, etc. are stored on Microsoft servers (possibly also outside the EU). You can find more information about data protection when using Microsoft Team here: https://docs.microsoft.com/de-de/microsoftteams/teams-privacy.
The legal basis for the transfer and processing of your data by Microsoft Teams is described under Art. 6 para. 1 lit. b). Without the use of Teams, it is not possible for us to film or present your presentation outside our premises.
Recordings / Visual materials
For the purpose of advertising and preparing for current and future events, we publish photos and, where appropriate, short profile descriptions of our speakers and record their presentations. Short excerpts from their presentations are then published on our event websites. This is to give other speakers and potential visitors to our trade shows an impression of the event. Of course, we will not publish full presentations.
The legal basis for this processing is described under Art. 6 para. 1 lit. f) DSGVO. The aforementioned purposes also represent our legitimate interest.
Requirements of providing personal data
The personal data is necessary to carry out the registration for a trade fair, congress or similar event and to ensure a smooth process for both our company and you as a participant. If you do not provide us with the required data, we cannot conclude a contract with you and thus unfortunately cannot consider you as a speaker.
Renting spaces
Scope
The following data protection information is intended for persons or companies who rent spaces for their own events or during trade fairs or events organized by Messe Husum from Messe Husum & Congress GmbH & Co. KG.
Data processing purposes
The data requested as part of the booking process is required to make arrangements regarding the rental of room at our events, and to issue invoices. In order to simplify the booking process for our client and us, we use an online tool of a service provider based in Germany. The processing of this data is in accordance with Art. 6 para. 1 lit b.) DSGVO. Without this data, we cannot conclude a contract with you. A booking is therefore not possible.
Requirements of providing personal data[JL7]
Public WLAN
Scope
The following data protection information is intended for individuals or companies who wish to use the so-called „Public WLAN“ at Messe Husum & Congress GmbH & Co. KG.
Functional data
If you dial into our WLAN with one of your devices, our system records the MAC address (ID) and the name of your end device.
After dialing in, you will be redirected to a website where you must confirm that you have read our terms and conditions and the privacy policy before you can use the WLAN. Our web server stores the IP address assigned by us, the browser type and the operating system of your device, as well as the date and time of access. This data is so-called functional data, without which the service cannot be used. The data is deleted within 7 days.
The legal basis for the processing of the aforementioned data is described under Art. 6 para. 1 lit. b) DSGVO.
Vouchers
Our exhibitors have the option of purchasing a voucher for the guest WLAN, which provides you with a larger bandwidth. For billing purposes, your billing data (company name, first and last name of the user, company address) will be collected in addition to the above-mentioned functional data. We need this data for billing purposes and to fulfill our legal obligations to store and provide proof of data. Data required by tax law will be deleted after 10 years.
The legal basis for this processing is described under Art. 6 para. 1 b) DSGVO.
Requirements of providing personal data
The personal data is required to set up and bill the registration for our „Public WLAN“. If you do not provide us with the required data, you will not be able to use our WLAN.
Contact data
Scope
The following data protection information is intended for all persons and companies with whom Messe Husum & Congress GmbH & Co. KG communicates for business purposes.
Initial contact and CRM
When you first contact us (e.g. by telephone, email, contact form, etc.), whether on your own initiative or on ours, e.g. as a potential customer, exhibitor, visitor, service provider or similar, we store your data both in our email address book and in our customer management system (CRM), provided that we assume that further communication will take place between you and us. Our CRM is „CentralStationCRM“ from „42he GmbH“ (Markstr. 10, Building E8, 50968 Cologne, Germany). CentralStationCRM is operated (hosted) on the servers of the provider 42he GmbH and administered by them. 42he GmbH only accesses our data records in exceptional cases (e.g. support cases). The servers on which our data is stored are located in the EU or EEA.
Categories of stored data
Depending on the nature of the business communication, we record the following data in our systems:
Company contacts
– Company name
– Company address
– Company email address
– Company phone number
– Contact person name
– Contact person extension
– Contact person email address (business)
– Data from registration form (exhibitor)
Contacts with private customers (event visitors)
– Name
– email address
– Telephone number and address (only if these data are necessary for further processing)
Requirements of providing personal data
If there is not yet a business relationship between you and Messe Husum, we will use the aforementioned data only for the purpose of communication and acquisition, or processing your inquiries.
If there is an active contractual relationship between you and us, we will use your data for customer communication, fulfillment of contractual content, coordination, billing and to inform you about current or future events.
The legal basis for this processing, insofar as we use your data for the initiation, execution or termination of contracts, is described under Art. 6 para. 1 lit. b) or c) DSGVO. Without the storage of your data, communication between you and us, especially electronically, is not possible or only possible to a limited extent. Thus, under certain circumstances, no contract can be concluded between you and us. If there is not yet an active customer relationship between you and us, the legal basis is described under Art. 6 para. 1 lit. f) DSGVO in conjunction with. § 7 para. 2 no. 2 UWG. Our legitimate interest in this case is the acquisition of suitable customers and exhibitors for our trade fairs and events.
Online Meetings
Scope
The following data protection information is intended for all persons or companies who participate in so-called „online meetings“ of Messe Husum & Congress GmbH & Co. KG for business or contractual purposes.
Zoom
We use Zoom to conduct conference calls, online meetings, video conferences and/or webinars (hereinafter: „Online Meetings“). Zoom is a service of Zoom Video Communications, Inc. which is based in the USA.
When using Zoom, various types of data are processed. The scope of the data also depends on the data you provide before or during participation in an „online meeting“.
The following personal data may be subject to processing:
User details
First name, last name, telephone (optional), email address, password (if „single sign-on“ is not used), profile picture (optional), department (optional).
Meeting metadata
Topic, description (optional), attendee IP addresses, device/hardware information.
For recordings (optional)
MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
In case of dial-in with telephone
Information on incoming and outgoing phone number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be stored.
Text, audio and video data
You may have the option of using the chat, question or survey function in an „online meeting“. In this respect, the text entries you make will be processed in order to display them in the „online meeting“ and, if necessary, to log them. In order to enable the display of video and the playback of audio, the data from the microphone and the video camera of your terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the Zoom applications.
In order to participate in an „online meeting“ or to enter the „meeting room“, you must at least provide information about your name.
If we want to record „online meetings“, we will transparently inform you in advance and – if necessary – ask for your consent. The fact of the recording will also be displayed to you in the Zoom app.
If it is necessary for the purposes of logging the results of an online meeting, we will log the chat content. However, this will not usually be the case.
In the case of webinars, we may also process questions asked by webinar participants for the purpose of recording and following up on webinars.
If you are registered as a user with Zoom, then reports of „online meetings“ (meeting metadata, phone dial-in data, questions and answers in webinars, polling function in webinars) may be stored by Zoom for up to one month.
Personal data processed in connection with participation in „Online Meetings“ will generally not be disclosed to third parties unless it is specifically intended for disclosure. Please note that content from „online meetings“, as well as from face-to-face meetings, is often used to communicate information with customers, prospects or third parties and is therefore intended for disclosure.
Further recipients
The provider of Zoom necessarily obtains knowledge of the above data to the extent provided for in our order processing agreement with Zoom.
Zoom is a communications service platform with headquarters in the USA. A processing of personal data therefore also takes place in a third country. We have concluded an order processing agreement with the provider of Zoom that complies with the requirements of Art. 28 DSGVO.
An adequate level of data protection is guaranteed, among other things, by the conclusion of the so-called EU standard contractual clauses. As a supplementary protective measure, we have also configured our Zoom so that only data centers in the EU, the EEA, or secure third countries such as Canada or Japan are used to conduct „online meetings“.
Legal basis for processing
To the extent that personal data is processed by employees of Messe Husum & Congress GmbH & Co. KG, § 26 BDSG is the legal basis for data processing. If, in connection with the use of Zoom, personal data is not required for the establishment, implementation or termination of employment relationships, but is nevertheless an elementary component in the use of Zoom, the legal basis for data processing is described under Article 6 (1) f) DSGVO. Our legitimate interest in these cases is the effective conduct of „online meetings“.
For the rest, the legal basis for data processing when conducting „online meetings“ is described under Art. 6 (1) lit. b) DSGVO, insofar as the meetings are conducted in the context of contractual relationships.
Should no contractual relationship exist, the legal basis is described under Art. 6 para. 1 lit. f) DSGVO. Here, too, our interest is in the effective implementation of „online meetings“.
GoToMeeting
Purposes of the processing
We use the „GoToMeeting“ tool to conduct conference calls, online meetings, video conferences and/or webinars (hereinafter: „Online Meetings“). „GoToMeeting“ is a service provided by LogMeIn, Inc. which is based in the USA.
Person responsible
The person responsible for data processing directly related to the implementation of „Online Meetings“ is Messe Husum & Congress GmbH & Co. KG.
Note: If you visit the „GoToMeeting“ Internet site, the provider of „GoToMeeting“ is responsible for data processing. However, calling up the Internet site is only necessary for the use of „GoToMeeting“ in order to download the software for the use of „GoToMeeting“.
You can also use „GoToMeeting“ if you enter the respective meeting ID and, if applicable, further access data for the meeting directly in the „GoToMeeting“ app.
If you do not want to or cannot use the „GoToMeeting“ app, then the basic functions can also be used via a browser version, which you can also find on the „GoToMeeting“ website.
What data is processed?
When using „GoToMeeting“, various types of data are processed. In this context, the scope of the data also depends on the information on the data you provide before or when participating in an „Online Meeting“.
The following personal data are subject to processing:
User details: first name, last name, telephone (optional), email address, password (if „single sign-on“ is not used), profile picture (optional),
Department (optional)
Meeting metadata: Topic, description (optional), attendee IP addresses, device/hardware information.
For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
For dial-in with the telephone: information about the incoming and outgoing call number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be stored.
Text, audio and video data: You may have the opportunity to use the chat, question or survey functions in an „online meeting“. To this extent, the text entries you make are processed in order to display them in the „online meeting“ and, if necessary, to log them. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the „GoToMeeting“ applications.
To participate in an „online meeting“ or to enter the „meeting room“, you must at least provide information about your name.
Scope of processing
We use „GoToMeeting“ to conduct „online meetings“. If we want to record „Online Meetings“, we will transparently inform you in advance and – if necessary – ask for consent. The fact of the recording will also be displayed to you in the „GoToMeeting“ app.
If it is necessary for the purposes of logging the results of an online meeting, we will log the chat content. However, this will generally not be the case.
In the case of webinars, we may also process questions asked by webinar participants for purposes of recording and following up on webinars.
If you are registered as a user with „GoToMeeting“, then reports on „online meetings“ (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) can be stored for up to one month at „GoToMeeting“.
Legal basis for data processing
To the extent that personal data is processed by employees of Messe Husum & Congress GmbH & Co. KG, § 26 BDSG is the legal basis for data processing. If, in connection with the use of „GoToMeeting“, personal data is not required for the establishment, implementation or termination of the employment relationship, but is nevertheless an elementary component of the use of „GoToMeeting“, Article 6 (1) (f) DSGVO is the legal basis for data processing. In these cases, our interest is in the effective implementation of „Online Meetings“.
For the rest, the legal basis for data processing when conducting „online meetings“ is described under Art. 6 (1) lit. b) DSGVO, insofar as the meetings are conducted in the context of contractual relationships.
Should no contractual relationship exist, the legal basis is described under Art. 6 para. 1 lit. f) DSGVO. Here, too, our interest is in the effective implementation of „online meetings“.
Recipients / disclosure of data
Personal data processed in connection with participation in „online meetings“ are generally not passed on to third parties unless they are intended to be passed on. Please note that content from „online meetings“ as well as from face-to-face meetings is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on.
Other recipients: The provider of „GoToMeeting“ necessarily receives knowledge of the above data, insofar as this is provided for in the context of our order processing contract with „GoToMeeting“.
Data processing outside the European Union
„GoToMeeting“ is a service provided by a provider based in the United States. Processing of the personal data also takes place in a third country. We have concluded an order processing contract with the provider of “GoToMeeting”, which meets the requirements of Art. 28 GDPR.
An appropriate level of data protection is guaranteed by the conclusion of the so-called EU standard contractual clauses.
Job Applications
Scope
The following data protection information is aimed at all persons who apply to Messe Husum & Congress GmbH & Co. KG (permanent employment, temporary work, trade fair hostesses, internships, training).
Data processing purposes
We process the data that you send us in connection with your application in order to check your suitability for the position (or any other open positions in our company) and to carry out the application process.
These are the following categories of data (depending on which position you are applying for):
– Name and address of the applicant, if necessary with photo
– Contact details: telephone, mobile, email
– Personal data: date of birth, place of birth, nationality, language skills, marital status, driver’s license, hobbies, gender, knowledge relevant to trade fairs
– School education and knowledge/skills: school leaving certificate, training, studies, further education and training, certificates
– Employment at Messe Husum & Congress in the past
– Previous employers and experiences related to the job
– Type of employment and general availability
– Motivation letter
Legal bases of data processing
The legal basis for the processing of your personal data in this application process is primarily § 26 BDSG. According to this, the processing of the data required in connection with the decision on the establishment of an employment relationship is permitted.
Should the data be required for legal prosecution after completion of the application process, data processing can take place on the basis of the requirements of Article 6 GDPR, in particular to safeguard legitimate interests according to Article 6 Paragraph 1 lit. f) GDPR. Our interest then lies in the assertion or defense of claims.
Information for applicants who are minors
If you are not yet 16 years old, we need a signature from your legal guardian for the temporary job for which you have applied. We also need a signature from your legal guardian on the necessary consents.
If you are between 16 and 18 years old, in addition to your own signature, we also need a signature from your legal guardian for the temporary job for which you have applied. In addition to your own signature, we also need an additional signature from your legal guardian for the required consent.
Storage period / Retention
If you have applied for a specific job advertisement or are sending an initiative application, and and received a rejection letter, the data will be deleted no later than 6 months after the end of the application process. If an employment relationship is established, the parts of the application required for the employment relationship will be included in the personnel file.
In the event that you were not intended for a position in this application process, but you have consented in writing to the further storage of your personal data for future application processes, we will transfer your data to our applicant pool. This data will ultimately be deleted there after a further 12 months have elapsed, provided that no employment relationship has been established.
If you have given us your consent, you have the right to revoke your data protection declaration of consent at any time. Please send your revocation by email to bewerbung@messehusum.com or by post to Messe Husum & Congress GmbH & Co. KG, Am Messeplatz 12-18, 25813 Husum, Germany. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the point of revocation.
Which recipients receive the data?
Your application data will be viewed by the Human Resources department after your application has been received. Suitable applications are then forwarded internally to the department heads for the open position. Then the further process is coordinated. In principle, only those people in the company who need it for the proper running of our application process have access to your data.
Where is the data processed?
If you have applied via the employment agency, StepStone or jobs.sh, the information on data protection of the respective provider applies accordingly. Your application will be accepted by them and sent to us for use. The information on the application process of the respective portals can be found at:
– Germany’s employment agency: https://www.arbeitsagentur.de/datenschutz
– StepStone: https://www.stepstone.com/en/privacy-statement/
– jobs.shz: https://jobs.shz.de/datenschutz
– moinneuerjob.de: https://moinneuerjob.de/datenschutz/ [JL8]
– ebay classifieds: https://themen.ebay-kleinwerbung.de/datenschutzerklaerung/
If you apply by post or email, the data will be stored and processed on our own server systems. Otherwise, the data will not be transmitted to any third party or disclosed to any third party.
Applicant portal (karriere.messehusum.com)
Temporary workers for certain events or trade fairs have the opportunity to apply for one or more temporary jobs via our applicant portal. We need the information requested there in part to check the suitability of the applicant or for assignment to a suitable position and on the other hand for equipment (e.g. trade fair clothing). The data will be processed by us in accordance with the above description of the application process. However, we would like to point out that our applicant portal is hosted by our provider Stormedia (see section “Recipients of personal data / web host”) and therefore Stormedia cannot rule out the possibility of viewing personal data from the applicant portal.
Changes to the privacy notice
We revise this data protection notice on various occasions that make this necessary, e.g. in the event of changes to this website. You can find the current version here.
These data protection notices were specially prepared for us by our external data protection officer.
Project Privacy – Datenschutz- und Projektberatung
Owner Steven Heyer
Elsterweg 30
24539 Neumuenster, Germany
Updated: March 2, 2023