We thank you for visiting our website and for your interest in our company. We are very serious about protecting your personal data. We process your data in accordance with the laws and regulations applicable to the protection of personal data, particularly including the EU General Data Protection Regulation (EU-GDPR) and the country-specific implementing laws applicable to us. In this data protection policy, we provide you with comprehensive information about the processing of your data by NürnbergMesse GmbH and your rights in this respect.
Personal data is information that makes it possible to identify a natural person, particularly including the name, date of birth, address, telephone number, e-mail address and IP address.
Anonymous data is data from which no one can establish a personal connection to the user.
1. Controller and Data Protection Officer
The controller according to the definition of the General Data Protection Act and other national data protection laws of the EU member states and other data protection regulations is:
Tel.: +49 9 11 86 06-0
Contact information of the Data Protection Officer:
2. Your rights as a data subject
First, we would like to inform you of your rights as a data subject. These rights are codified in Art. 15 - 22 EU-GDPR. They are:
- The right of access (Art. 15 EU-GDPR),
- The right to erasure (Art. 17 EU-GDPR),
- The right to rectification (Art. 16 EU-GDPR),
- The right to data portability (Art. 20 EU-DSGVO),
- The right to restriction of data processing (Art. 18 EU-GDPR),
- The right to object to data processing (Art. 21 EU-GDPR).
To assert these rights, please contact: firstname.lastname@example.org. Any questions about data processing in our company should be directed to the same e-mail address. You are also entitled to complain to the data protection supervisory authority.
3. Rights of objection
Please note the following with respect to the rights of objection:
When we process your personal data for purposes of direct advertising, you have the right to object to such data processing at any time without indication of reasons. The same applies to profiling to the extent that it is related to direct advertising.
When you object to processing for purposes of direct advertising, we will no longer process your personal data for these purposes. You can notify you objection free of charge and without observing requirements of form, ideally at: email@example.com.
In the event that we process your data for the sake of legitimate interests, you can object to such processing at any time for reasons having to do with your particular situation; the same applies to any profiling on the basis of these provisions.
We will no longer process your personal data unless we can demonstrate compelling, legitimate reasons for the processing that override your interests, rights and freedoms, or when the processing serves the purpose of asserting, exercising or defending against legal claims.
4. Purposes and legal grounds of data processing
In processing your personal data, we comply with the provisions of the EU-GDPR and all other applicable provisions of data protection law. The legal grounds for data processing are particularly set out in Art. 6 EU-GDPR.
We use your data for business initiation, the fulfilment of contractual and statutory obligations, the performance of the contractual relationship, the offering of products and services and the strengthening of customer relationships, which can also include analyses for marketing and direct advertising purposes. This particularly includes the organisation of trade fairs, exhibitions, congresses and similar events and the operation of the Exhibition Centre Nuremberg. Specifically, we use data for the following purposes, although this list is not exhaustive:
- Purchase of tickets
- Redemption of coupons. Coupons can be redeemed online and an e-ticket can be printed out. That saves you wait times.
- Registration of future tickets “with a click”. For some trade visitor exhibitions, log-in data is sent by e-mail or letter (legitimation of trade visitors), which makes it easier to purchase tickets repeatedly.
- Delivery and payment of trade fair directories and catalogues.
- Verification of a person’s status as a trade visitor.
- Planning your trade fair visit on the basis of announcements sent by e-mail and targeted trade information.
- Smooth execution of your trade fair participation as an exhibitor by providing targeted information about service offers and services.
Your consent is also required under data protection laws. In asking for your consent, we inform you about the purposes of data processing and your right to object. If the consent also refers to the processing of special categories of personal data, we will expressly inform you of this in the consent declaration (Art. 88 para. 1 EU-GDPR).
Processing of special categories of personal data within the meaning of Art. 9 para. 1 EU-GDPR is only done when required by statutory regulations and there is no reason to assume that your legitimate interests in preventing such processing are overriding (Art. 88 para. 1 EU-GDPR).
5. Transfer to third parties
We will transfer your data only within the limits of the statutory provisions or when you have granted your consent. Otherwise, your personal data will not be transferred to third parties unless we are obligated to do so by virtue of binding statutory regulations (transfer to external entities such as supervisory authorities or criminal prosecution authorities).
6. Recipients of data / categories of recipients
Within our enterprise, we ensure that only those persons who need your personal data to fulfil our contractual and statutory obligations receive it. Because NürnbergMesse GmbH operates all over the world, we may possibly send your data to subsidiaries or international representatives of the NürnbergMesse Group, and specifically to the subsidiary or international representative that is located in your country or is responsible for your territory in order to process your order or request.
In many cases, our departments are assisted in the performance of their duties by service providers and service partners. All service providers and service partners have been carefully selected and the necessary data protection agreements have been concluded with all service providers and service partners. Personal data is processed by our service providers and service partners in compliance with the applicable data protection regulations for the provision of support and information to customers and interested parties and to provide the offered services.
7. Transmission of data/ Intent to transmit data to third countries
The transmission of data to third countries (outside of the European Union or the European Economic Area) is only done when this is necessary to fulfil our obligations or is legally required or when you have granted us your consent to do this.
We may potentially transmit your personal data to subsidiaries or international representatives of NürnbergMesse GmbH outside of the European Economic Area: India, China, Brazil, United States. The international representatives of NürnbergMesse can be found on our website at www.nuernbergmesse.de/auslandsvertretungen. Standard EU contractual clauses ensure an appropriate level of data protection.
8. Duration of data storage
We will store your data for as long as needed for the given processing purpose. Please note that numerous retention periods require that data continues to be stored. We are particularly required to do this by retention obligations under commercial law or tax law (e.g. German Commercial Code, Tax Code, etc.). Data is routinely erased as soon as no further retention obligations are in effect.
Furthermore, we may store your data when you have granted us your consent to do this or in the event of legal disputes, when we use the data as evidence for purposes of statutory limitation periods, which can last up to three years; the regular limitation period is three years.
9. Secure transmission of your data
We employ appropriate technical and organisational safeguards to protect the data stored with us as well as possible against accidental or intentional manipulations, loss, destruction or access by unauthorised persons. The level of security is continually reviewed and adapted to meet new security standards in collaboration with security experts.
Data transfers from and to our website are always encrypted. As the transmission protocol for our websites, we offer HTTPS and we always use the latest encryption protocols. It is also possible to use alternative communication channels (e.g. postal service).
10. Obligation to provide data
Some personal data is necessary for the establishment, performance and termination of the obligation and the fulfilment of the related contractual and statutory obligations. The same applies to the use of our website and the various functions it provides.
We summarised the details in the section above. In certain cases, data must also be collected and/or provided due to statutory provisions. Please note that it is not possible to process your request or perform the underlying contractual obligations without having this data provided to us.
11. Categories, sources and origin of data
The data we process is determined by the context: This depends, for example, on whether you place an order online or make a request to send us a job application or submit a complaint in our contact form.
Please note that we may also separately provide information for special processing situations in an appropriate place, as when uploading job application documents or making a contact request, for example.
When you visit our website and web shops, we collect and process the following data:
- Name of the Internet service provider
- Information about the website you visited before visiting us
- Web browser and operating system used
- The IP address assigned by your Internet service provider
- Requested files, transmitted data quantity, downloads/ file exports
- Information about the web pages you access on our websites, including dates and times
- For technical security reasons (particularly to defend against attempted attacks on our web server), this data is stored in accordance with Art. 6 para. 1 letter F EU-GDPR. After 7 days at the latest, the data is anonymised by shortening the IP address so that no link to the user can be established.
When you make a contact request, we collect and process the following data:
- Last name, first name
- Contact data
- Indications of desired information
When you place an order, we process the following data:
- Last name, first name
- Date of birth
- Shipping address
- Billing address
- E-mail address
- Data that may be permissibly processed from other sources
When you file online job applications, we collect and process the following data:
- Last name, first name
- Contact data
- We also use data that we have permissibly obtained from publicly available directories (e.g. professional networks).
For newsletters, we collect and process the following data:
- Last name, first name
- E-mail address
12. Contact form/ Contact by e-mail (Art. 6 para. 1 letter a, b EU-GDPR)
A contact form that can be used for contacting us electronically is available on our website. When you write to us using the contact form, we will process the data you enter into the contact form to contact you and answer your questions and wishes.
In this respect, we observe the principle of data minimisation and data avoidance in that you only need to enter the data that we absolutely need to contact you. That includes your e-mail address and the message field itself. In addition, your IP address is also processed as a matter of technical necessity and for legal protection. All other data is requested in optional fields and can be provided optionally (e.g. to answer your questions more specifically in relation to you).
If you contact us by e-mail, we process the personal data communicated in the e-mail only for the purpose of processing your request.
13. Newsletter (Art. 6 para. 1 letter a EU-GDPR)
You can also subscribe to a free newsletter on our website. The e-mail address indicated in the newsletter application and your name will be used for sending you the personalised newsletter.
In this respect, we observe the principle of data minimisation and data avoidance in that the only mandatory field is your e-mail address (and potentially your name, in the case of a personalised newsletter). As a matter of technical necessity and for legal protection, your IP address is also processed when you order the newsletter.
Naturally, you can always terminate the subscription by exercising the cancellation option provided in the newsletter, thereby revoking your consent. It is also possible to cancel your newsletter subscription directly in our website.
14. Exhibitors’ shop/ web shop (Art. 6 para. 1 letter b EU-GDPR)
If you do not consent to further use, we will process the data you entered into the order form only for the purpose of performing or executing the contractual relationship.
The principle of data minimisation and data avoidance is observed in that you only need to enter the data that we absolutely need to perform the contract and fulfil our contractual obligations (thus, your name, address, e-mail address and the payment data required for the chosen form of payment), or data that we are legally required to collect.
As a matter of technical necessity and for legal protection, your IP address will also be processed. Without this data, we would unfortunately have to refuse the contract or terminate an existing contract because we would not be able to perform it. Naturally, you can provide more data if you wish.
We offer exhibitors the option of registering with us by providing personal data. A particular advantage of registration is that you can view your order history and store the data you have entered into the order from so that when you place another order, you will not need to enter it again. Registration is therefore possible either to perform a contract with you (via our online shop) or to take pre-contractual measures. When the registration process is completed, your data will be stored with us so that you can use the protected customer section. As soon as you log in to our website with your e-mail address as your user name and password, this data will be provided for the actions you perform on our website (e.g. orders in our online shop). Orders that have been filled can be viewed in the order history. You can enter changes to the billing or shipping address here.
Registered persons are at liberty to make their own changes or corrections to the billing or shipping address in the order history. Our Customer Service will also gladly make such changes or corrections when you contact them. Naturally, you can always cancel the registration and delete your customer account.
15. Advertising purposes with established customers (Art. 6 para. 1 letter f EU-GDPR)
We have an interest in cultivating customer relationships with our exhibitors and visitors and providing you with information and offers about our own similar events and services. Therefore, the data transmitted upon submitting the application (company name, address, telephone/ fax number and e-mail address) is processed by us and possibly by our service partners so that we can send you event-related information and offers by e-mail, in accordance with Art. 6 para. 1 letter f EU-GDPR.
If you do not want this, you can object to the use of your personal data for direct advertising purposes at any time; the same applies to profiling to the extent that it is related to direct advertising. When you notify your objection, we will no longer process your data for this purpose.
The objection can be notified without observing formal requirements and without indication of reasons and without incurring separate costs aside from customary transmission costs at standard rates. It should be directed to NürnbergMesse GmbH, Exhibition Centre, 90471 Nuremberg, or firstname.lastname@example.org.
16. Job application portal (Art. 6 para. 1 letter a, b EU-GDPR)
We are pleased with your interest in working for NürnbergMesse GmbH. We are well aware of the importance of your data and will process the personal data you provide in the application form only for the purpose of effectively and correctly handling the application process and communicating with you in connection with the application process. Your data will not be transferred to third parties without your consent.
When filling out the application form, you will be asked to submit personal data. In this respect, we observe the principle of data minimisation and data avoidance in that you only need to indicate the data we need to completely review your application materials, such as your curriculum vitae for example, or data which we are legally required to collect. This mandatory information is marked with an asterisk (*). As a matter of technical necessity and for legal protection, your IP address will also be processed.
Without this data, we will unfortunately not be able to review your application materials and for this reason our application system will not permit you to upload your application materials. Naturally, you are at liberty to provide the voluntary information in the application form.
We employ appropriate safeguards to protect the security and confidentiality of your data as well as possible. Our application system will transmit your application documents to us in encrypted form.
We will store your data for the aforementioned purpose until the application process is completed and the related time periods have expired, and at the latest six months after you are notified of our decision. However, you will have the option of storing your application materials with us for a longer period of time and checking them against other vacant positions that match your profile.
You can provide the consent we need for this purpose by checking the box before uploading your application materials. In this case, we will store your data for 12 months. Naturally, you can always revoke your consent with future effect without indication of reasons by calling us at +49 9 11 86 06-0, sending us an e-mail at email@example.com or mailing us a letter to NürnbergMesse GmbH, Messezentrum, 90471 Nuremberg.
17. Automated decision-making
We do not employ purely automated processing procedures in making our decision.
18. Cookies (Art. 6 para. 1 letter f EU-GDPR / Art. 6 para. 1 letter a EU-GDPR with consent)
Our web pages use so-called “cookies” in several places. They serve the purpose of making our offering more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and stored by your browser (locally on your hard drive).
These cookies make it possible for us to analyse how users use our websites. They allow us to design the website contents to meet the needs of users, for example. Cookies also enable us to measure the effectiveness of a given advertisement and place it in accordance with the user’s topical interests, for example.
Most of the cookies we use are so-called “session cookies.” These are automatically deleted after your visit. Permanent cookies are automatically deleted by your computer when the corresponding period of validity has expired (usually after six months) or when you delete them yourself before the expiration of the period of validity.
Most web browsers accept cookies automatically. Usually, however, you can also change your browser settings if you would rather not send us the information. In this case, you will still be able to use the offerings of our website without restrictions (exception: configurators).
Please note that when you deactivate cookies, all the functions of our website may not be fully usable.
19. User profiles / Web tracking processes
This website uses the Piwik web analysis service in order to evaluate the volume of user access to the site.
For the purposes of this evaluation cookies are saved on your computer. The information gathered in this process is stored by the provider exclusively on his server in Germany. If you prevent the saving of cookies, we would like to point out that you may then be unable to make full use of this website.
It is possible to prevent cookies being saved by using the setting in your browser or by removing the following tick and thus activating the Opt-Out-Plug-in: [Piwik iFrame]
This website uses Piwik with the “AnonymizeIP” extension. This enables IP addresses to be further processed in shortened form thus excluding any direct personal reference. The IP address relayed from your browser using Piwik is not combined with other data we have gathered.
The Piwik program is an open-source project. You can obtain information from the third-party provider on data protection at http://piwik.org/privacy/policy.
NürnbergMesse GmbH uses the ad server of the company ADITION technologies AG, Am Gatherhof 44, 40472 Düsseldorf.
How does ADITION handle data protection?
In all its data collection processes, ADITION operates in strict compliance with German data protection laws. All stored data is stored on servers located in the territory of Germany. ADITION also meets all P3P (Privacy Preferences Project) standards.
In addition, ADITION points out that all ADITION employees are bound to uphold data secrecy. ADITION’s customers are similarly bound by clauses in its General Terms and Conditions (GTCs) and separate data protection clauses.
Cookie opt-out / How can I deactivate the collection of anonymised data by ADITION?
The collection of anonymised data can be stopped by clicking on the following link. When you do this, ADITION will replace the current cookie with a new opt-out cookie. This opt-out cookie will delete all information stored to date, including the IP address, and prevent the further collection of anonymised information.
IMPORTANT NOTE: If this opt-out cookie is deleted, ADITION will no longer be able to tell that an opt-out has been performed. In this case, you will have to repeat the opt-out process.
How can cookies be completely deactivated?
Commonly used Internet browsers are set by default to accept cookies as a rule. This setting can be changed in the browser’s Internet options.
Retargeting by Oliro GmbH
Cookies are used on our website to allow the placement of the retargeting campaigns of Oliro GmbH (Nuremberg, Germany). The data stored within the cookies only consists of anonymised visit data that does not allow for any personal identification. The ad-serving technology uses IP addresses to analyse the geographical region, access speed and the Internet provider. IP data is only stored for the purpose of anonymised generation of visitor statistics and the attribution of transactions. It is not possible at any time to identify specific persons, exact addresses, locations or any other personal data.
IP data is not transferred to third parties. Furthermore, all information has an expiration date of no more than 90 days, after which your browser automatically deletes the stored data. You can prevent the storage of cookies by changing the corresponding setting in your browser software. You can also prevent the collection of data generated by the cookie and related to your use of the website by activating the opt-out function at the following link:
Further information about the retargeting and the data protection policy of Oliro GmbH can be found at: www.oliro.com/privacy-policy.
Use of Google Adwords
We use the offering of Google Adwords to bring attention to our attractive offerings with the aid of advertisements (so-called Google Adwords) on external websites. Based on data from advertising campaigns, we can determine the success of individual advertising measures. We do this in the interest of showing you ads that are of interest to you, making our website more interesting for you and ensuring the fair charging of advertising costs.
Google delivers these ads via so-called “ad servers”. To this end, we use ad server cookies with which certain parameters of success measurements, such as the placement of ads or clicks by the user. If you come to our website from a Google ad, Google Adwords stores a cookie on your PC. These cookies usually lose their validity after 30 days and are not meant to identify you personally. Analysis values such as the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (indication that the user no longer wants to be targeted) are generally stored in this cookie.
These cookies allow Google to recognise your Internet browser again. If a user visits certain pages of the website of an Adwords customer and the cookie stored on his computer has not yet expired, Google and the customer can tell that the user clicked on the ad and was redirected to this page. A different cookie is assigned to every Adwords customer. Therefore, the cookies cannot be traced back to the web sites of Adwords customers. We ourselves do not collect or process any personal data in the aforementioned advertisement measures. We only receive statistical analyses from Google. Based on these analyses, we can determine which of our advertising measures are especially effective. We do not receive any data from the use of advertisements and in particular, we are unable to identify users on the basis of this data.
Due to the marketing tools in use, your browser automatically establishes a direct connection with the Google’s server. We have no influence over the scope and further use of data collected from Google’s use of this tool and therefore the following information reflects our current knowledge: Due to the integration of AdWords Conversion, Google receives the information that you have visited the corresponding part of our website or clicked on one of our ads. If you are registered for a Google service, Google can attribute the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the vendor may find out and store your IP address.
You can prevent your participation in this tracking process in different ways: a) by changing the corresponding setting of your browser software; in particular, the suppression of third-party cookies means that you will no longer receive ads from third-party vendors; b) by deactivating the cookies for conversion tracking by setting your browser in such a way that cookies from the domain “www.googleadservices.com” are blocked, https://www.google.de/settings/ads, this setting being deleted when you delete your cookies; c) by deactivating the vendor’s interest-themed ads that are part of the self-regulation campaign “About Ads” at the link http://www.aboutads.info/choices, this setting being deleted when you delete your cookies; d) by means of permanent deactivation in the browsers Firefox, Internet explorer or Google Chrome at the link http://www.google.com/settings/ads/plugin. Please note that if you do this, you may not be able to fully use all the functions of this offering.
The legal basis for processing your data is Art. 6 para. 1 S. 1 letter f DS-GVO. You can find additional information about Google’s data protection policies here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org. Google has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Use of Google Remarketing
Besides Adwords Conversion, we also use the Google Remarketing application. This is a process by which we would like to address you again. By means of this application, we can place our advertisements in other websites after you visit our website. This is done by means of cookies stored in your browser that enables Google to collect and analyse information about your usage behaviour when visiting different websites. For example, Google can determine your previous visit to our website. According to its own statements, Google does not combine the data collected within the scope of remarketing with any personal data that Google may have stored. In particular, pseudonymisation is employed for remarketing, according to Google.
or deactivate Aumago’s cookies at
Aumago uses this data to analyse the use of the website by visitors and for purposes of usage-based online advertising (online behavioural targeting, OBA).
20. Social media plug-ins of social networks
We have no influence on the data collected and the data processing procedures and we also do not know the full extent of data collection, the purposes of processing or the storage periods. We also have no information about the deletion of collected data by the plug-in provider.
The plug-in provider stores the data collected on you in the form of usage profiles and uses them for purposes of advertising, market research and/or designing its websites to meet the needs of users. Such analysis is particularly performed (also for users who are not logged in) to present relevant advertisements and to inform other users of the social network about your activities on our website. You have the right to object to the formation of these user profiles, for which purpose you must contact each plug-in provider. With these plug-ins, we give you the opportunity to interact with the social networks and other users so that we can improve our offering and make it more interesting for you as the user. The legal basis for the use of plug-ins is Art. 6 para. 1 sentence 1 letter f DS-GVO.
Data is transferred regardless of whether you have an account with the plug-in provider and are logged in to it. When you are logged in to the plug-in provider, your data that is collected by us is directly attributed to your account with the plug-in provider. If you activate the button and link to the page (for example), the plug-in provider will also store this information in your user account and publicly share it with your contacts. We recommend that you always log out after using a social network, but especially before activating the button because this way you can prevent the attribution of information to your profile with the plug-in provider.
You can find additional information about the purpose and scope of data collection and processing by the plug-in provider in the data protection policies of these providers, which are shared in the following. There you will also find additional information about your rights and setting options to protect your privacy.
Addresses of plug-in providers and URLs with their data protection policies:
- Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; additional information on the subject of data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
- Google Inc., 1600 Amphitheater Parkway, Mountain View, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
- Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy. Twitter has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
- Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy.
- LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy. LinkedIn has subjected itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
- Instagram, LLC Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA; http://instagram.com/about/legal/privacy/#.
21. Links to other providers
Our website contains clearly recognisable links to the websites of other companies. When we link to the websites of other providers, we have no influence on their content. Therefore, we also assume no responsibility and liability for this content. Each provider or website operator is responsible for the content of these web pages.
The linked pages were checked for potential legal violations and discernible infringements at the time when the links were placed. No unlawful content was discernible at the time of placing the links. However, we cannot be reasonably expected to permanently review the content of linked websites without concrete indications of a legal infringement. Such links are removed immediately when we become aware of legal infringements.