Privacy Policy

You can find our Data Security Enquiry Form here, at the bottom of the page.

Contents

Section A: General Information

This section of the Privacy Policy contains information on the scope of validity, the person responsible for data processing (controller), the data protection officer and data security. It also begins with a list of definitions of important terms used in the Privacy Policy.

I. Definition of Main Terms

Browser: Computer program used to display websites (e.g., Chrome, Firefox, Safari).

Cookies: Text files placed on the user’s computer by the web server by means of the browser which is used. The stored cookie information may contain both an identifier (cookie ID) for recognition purposes and content data, such as login status or information about websites visited. The browser sends the cookie information back to the web server with each new request upon subsequent repeat visits to these sites. Most browsers accept cookies automatically. Cookies can be managed using the browser functions (usually under “Options” or “Settings”). The storage of cookies may be disabled in this way or it may be made dependent on the user’s approval in any given case or otherwise restricted. Cookies may also be deleted at any time.

Third countries: Countries outside the European Union (EU)

GDPR: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), available here.

Personal data: Any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Profiling: Any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.

Services: Our offers to which this data Privacy Policy applies (cf. Scope of validity).

Tracking: The collection of data and their evaluation regarding the behaviour of visitors in response to our services.

Tracking technologies: Actions can be tracked either via the activity records stored on our web servers (log files) or by collecting data from end devices via pixels, cookies or similar tracking technologies.

Processing: Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Pixel: Pixels are also called tracking pixels, web beacons or web bugs. These are small, invisible graphics in HTML emails or on websites. When a document is opened, this small image is downloaded from a server on the Internet and the download is registered there. This allows the operator of the server to see if and when an email has been opened or a website has been visited. This function is usually carried out by calling up a small program (JavaScript). Certain types of information can be detected on your computer system in this way and shared, such as the content of cookies, the time and date of the visit, and a description of the page on which the tracking pixel is located.

II. Scope of Validity

This Privacy Policy applies to the following offers:

  • Our online offering “Webpage dld-conference.com” (website), mainly available at www.dld-conference.com
  • Our online offering “Webpage dldnews.com” (website), mainly available at https://dldnews.com/
  • Whenever reference is made to this Privacy Policy from one of our further offers (e.g. websites, subdomains, mobile applications, web services or links to third-party sites), regardless of the way in which it is accessed or used.

All these offers are also collectively referred to as “services”.

III. Controller

The following party is responsible for the processing of data in relation to the services, i.e. the role of controller which involves determining the purposes and means of processing personal data:

DLD Media GmbH
Arabellastr. 23
81925 Munich
Germany

Phone: +49-899250-1111 or -3549
E-mail: info@dld-conference.com

IV. Data Protection Officer

You can contact our data protection officer via the Privacy Request Form at the bottom of this page.

The contact details of our data protection officer are also given in section III. Messages should be marked for the attention of the data privacy department or sent via dataprivacy@dld-conference.com. If you wish to reach us by phone, the number is +498992503549.

Section B: Details of Data Processing

This section of the Privacy Policy contains detailed information about the processing of personal data in the context of our services. The information is subdivided for greater clarity into certain functions in connection with our services. Where the services are used in the normal way, different functions and therefore also different processing operations can be implemented consecutively or simultaneously.

 

I. General Information on the Data Processing Operations

The following information applies to all the processing operations listed below, unless stated otherwise:

No obligation to provide personal data & consequences of failure to provide such data

The provision of personal data is not required by law or contract, and you are under no obligation to provide any data. We will inform you during the data entry process when personal information must be provided for the relevant service (e.g. by indicating “mandatory field”). In cases where the provision of data is required, the consequence of not providing data will be that the service in question cannot be provided. Otherwise, failure to provide data may result in our inability to provide our services in the same form and quality.

Consent

In various cases, you may also grant us your consent to the further processing of data (or some of the data, where applicable) in connection with the operations listed below. In this case, we will inform you separately in connection with the submission of the respective declaration of consent about all the procedures and the scope of the consent and concerning the purposes which we pursue in these processing operations. The processing operations based on your consent are therefore not listed again here (Art. 13 (4) GDPR).

Transfer of personal data to third countries

When we send data to third countries, i.e. countries outside of the European Union, the data are then transmitted strictly in compliance with the statutory conditions of admissibility.

If the transmission of the data to a third country does not serve the purpose of fulfilling our contract with you, if we do not have your consent, if the transmission is not required for asserting, exercising or defending legal claims, and if no other exemption applies under Art. 49 GDPR, we will only transmit your data to a third country if in possession of an adequacy decision pursuant to Art. 45 GDPR or appropriate guarantees under Art. 46 GDPR.

In order to ensure an adequate level of data protection, we provide appropriate safeguards pursuant to Art. 46 (2) c) GDPR by the conclusion of EU standard data protection clauses adopted by the European Commission with the receiving body. Copies of the standard EU data protection clauses are available on the website of the European Commission here.

Hosting at external service providers

Our data processing is carried out to a large extent with the involvement of hosting service providers who provide us with storage space and processing capacities at their data centres and who also process personal data on our behalf according to our instructions. It may be the case that personal data are transmitted to hosting service providers in respect of all of the functions listed below. These service providers process data either exclusively in the EU or subject to guaranteed levels of data protection which we have put in place based on the standard EU data protection clauses (cf. subsection c).

Transmission to government authorities

In principle, we do not transmit any data to government authorities.

We only send personal information to government authorities (including law enforcement agencies) when required to fulfil a legal obligation to which we are subject (legal basis: Art. 6 (1) c) GDPR) or when it is necessary for the assertion, exercise or defence of legal claims (legal basis: Art. 6 (1) f) GDPR).

Period of storage

The time specified in the “period of storage” paragraph indicates how long we use the data for the relevant purposes in any given case. At the end of this period, the data will no longer be processed by us but will be erased at regular intervals, unless continued processing and storage are required by law (mainly because it is necessary to fulfil a legal obligation or for the establishment, exercise or defence of legal claims) or unless you grant us extended consent.

Functional Duration of Cookies

The data processing described in the following sections is partly carried out with the use of cookies. The information stored in a cookie can only be accessed via the Internet by the operator of the web server that originally set the cookie. Access by third parties in this way is not possible. The cookies have different function durations. Some cookies are only active during a browser session and are deleted afterwards, others function for longer periods, but usually shorter than one year. After the functional duration expires, a cookie is deleted by the browser. You can manage cookies using the browser functions (mostly under "Options" or "Settings"). This allows the storage of cookies to be disabled, made dependent on your consent in individual cases or otherwise restricted. You can also delete cookies at any time.

Data categories

The category names listed below are used for specific types of data in the following sections:

  • Account data: Login/user ID and password;
  • Personal master data: Title, gender, first name, last name;
  • Address data: Street, house number, (if necessary) address additions, postal code, city, country;
  • Contact data: Telephone number(s), fax number(s), e-mail address(es);
  • Registration data: Information about the service through which you have registered; times and technical information about registration, confirmation and deregistration; data provided by you when registering;
  • Access data: Date and time of your visit to our services; technical information about your registration; pages viewed during use;
  • Purchase order data: Products ordered, prices, payment;
  • Payment data: Account information, credit card details, data for other payment services like PayPal, Street, house number, additional address lines (where applicable), postcode, city, country are solely used in connection to payments.
  • Newsletter usage profile data: opening of the newsletter (date and time), content, selected links, as well as the following information of the accessing computer system: Internet Protocol address (IP address) used, browser type and version, device type, operating system and similar technical information.

II. General information on the processing of your personal data on our websites www.dld-conference.com and www.dldnews.com

This section contains information about processing of your personal data that takes place both on the website www.dld-conference.com and on the website https://dldnews.com.

1.Accessing our services

The passages below set out how your personal data are processed when you access our services (e.g., loading and viewing the website, opening the mobile app and navigating within the app). In addition, we use technically or legally necessary auxiliary tools that do not collect any data themselves but only serve to ensure the security of the website, the administration and operation of other tools, or the administration of consents granted by you (Consent Management Platform).  Please note that it is impossible not to send access data to external content providers (cf. subsection e) due to the technical processes involved in transmitting information over the Internet. The third-party providers are themselves responsible for the privacy-compliant operation of the IT systems which they use. The service providers are required to decide how long the data will be stored.

Data categoryPurposeLegal basisOur legitimate interestStorage period
Access dataEstablishing connection; presenting contents of the service; detecting attacks on our site due to unusual activities; fault diagnosisArt. 6 (1) (f), GDPRProper functioning of the services; security of data and business processes; prevention of misuse; prevention of damage through interference in information systems4 weeks
Recipient categoryData concernedLegal basisOur legitimate interest
External content providers who provide content which is needed to display the service (e.g. images, videos, embedded postings from social networks, banner ads, fonts, update information, shortened links) as well as IT Security Service ProviderAccess dataArt. 6 (1) (f) GDPR
  • Correct functioning of the services; (accelerated) display of content;
  • Prevention of attacks through exploitation of security gaps/vulnerabilities

2. Newsletter Subscriptions

In addition to the purely informational use of our websites, we offer you the opportunity to register for our newsletter. If you subscribe to one of our free newsletters, we will inform you regularly about current events as well as exclusive offers.

As part of the registration for the newsletter, you will receive a confirmation message containing a link to the final registration (“double opt-in procedure”). This ensures that the newsletter was ordered by you and not by a third party. When registering, your data is first stored on our servers, or the servers of the service providers used and a confirmation message with a link to the final registration is generated to the e-mail address provided. If you do not confirm the registration by clicking on the link in this e-mail, the data will be deleted within 30 days. Only by confirming the link your data will be finally stored for the purpose of sending the newsletter. If you no longer agree to the storage of your data for this purpose and therefore no longer wish to use our service, you can unsubscribe from our newsletters at any time. For this purpose, you will find a corresponding link in each newsletter. 

Please note that your interactions with the newsletter are measured (“opening and click behavior”). For this measurement, the emails sent contain tracking pixels or corresponding links that can measure the opening and click rates within the newsletter for the purpose of optimising our newsletters. In addition, based on your consent, we may link the click behaviour with an individual ID in order to clearly assign your clicks. This link is made for the purpose of individualized, interest-based adaptation of the newsletter content.

Data categoryPurposeLegal basisOur legitimate interest
Period of storage
Personal master data; registration data; newsletter user profile data; access data; contact data, in particular your e-mail address.Verification of the registration process (“double opt-in”) including traceability of registrations and unsubscriptions (“logging”); sending and designing the newsletter according to interests; measurement of opening and click rates for the purpose of optimising our newsletter service.Art. 6 (1) (a) GDPR; Art. 6 (1) (f) GDPRLogging of the subscription process to our newsletter as well as effectuating the sending and design of our newsletter by means of additional success measurements.Personal data is deleted as soon as its further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your withdrawal. In the event of your withdrawal, however, we reserve the right to store your e-mail address for the purpose of proving that you have previously given your consent. This storage is solely for the purpose of defending possible legal claims.

Recipients of personal data

In general, we use contracted service providers for the hosting of our services. These will only act according to our instructions and are contractually obligated to comply with data protection regulations within the meaning of Art. 28 GDPR. In addition, we will only share your personal data with third parties if you have given your express consent to do so in accordance with Art. 6 (1) a DSGVO.

Recipient categoriesData concernedLegal basisLegitimate interests
Newsletter distribution service providers; companies within our group of companies, insofar as this is necessary for the purpose of sending and optimizing the newsletter.All data categories named under point a)Art. 28 GDPR; Art. 6 (1) (f) GDPRInternal administrative purposes, in particular in the context of the proper sending of the newsletter.

3. Data processing by Google reCaptcha

The passages below set out how your personal data is processed by the service reCaptcha: We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on our website. ReCAPTCHA is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. With the help of Google ReCAPTCHA, a check takes place as to whether an entry has been made by a human being or whether an entry has been misused by automated, machine processing. You can find further details in Google’s Privacy Center.

Data category Purpose Legal basis Our legitimate interest
Technical data: IP address (shortened), URL, date and duration of visit, browser type, operating system of the end device; Google account if you are logged in to Google. Distinguishing whether an entry is made by a natural person for the purpose of detecting automated access (e.g. by robots). Art. 6 (1) (b) and (f) GDPR. Prevention of abuse.
Period of storage Recipient of the personal data Data concerned Legal basis
Your personal data will be stored between 9-18 months and then either anonymized or deleted. Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland Technical data (see point a) above) Art. 6 (1) (b) GDPR

4. Embedded Content

The websites www.dld-conference.com and dldnews.com contain embedded content (e.g. content from social networks such as Vimeo and YouTube). An overview of the embedded content used can be found in the following list. This content is provided by third parties, whereby personal data can also be transmitted to the corresponding social network with the help of the respective embeddings. The transmission of personal data takes place for the purpose of displaying the content or to enable you to rate, recommend or share the respective material. In this way, we want to make our websites better known and enrich them with content relevant to the target group. We configure our websites in such a way that data is only transmitted when you interact with the respective embedded content (e.g. Like-button or video).

In this case, the legal basis for the data transfer is your voluntary consent pursuant to Art. 6 (1) (a) GDPR. We have no direct influence on the type and scope of the processing of your personal data by the respective social network. Insofar as you interact with the respective content, your personal data will also be processed by the operator of the social network and may also be transmitted to the USA (regardless of your place of residence) and may be additionally processed there.

a. Vimeo

We embed videos from the online platform vimeo.com (“Vimeo”). The Vimeo platform is operated by the provider Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA. The integration of the Vimeo service takes place by means of the so-called “extended data protection mode”. A transmission of personal data to Vimeo only takes place if you have agreed to the integration of corresponding videos from Vimeo.

Data category Purpose Legal basis
Device-specific information, in particular your IP-address (if you are logged in within your Vimeo account while viewing the video, the information about viewed videos will be assigned to your member account). The integration of the videos from Vimeo and the associated processing of your personal data serves the purpose of the demand-oriented, attractive and contemporary design of our websites. Art. 6 Abs. 1 (a) GDPR: your consent in the context of interaction with the video from Vimeo.
Period of storage Recipient of the personal data
Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection.You can view further information on the processing of your personal data by the service provider Vimeo here: https://vimeo.com/privacy Vimeo, Inc., 555 West 18th Street, New York, New York 10011, USA

b. YouTube

We embed videos from the online platform YouTube (“YouTube”). The YouTube platform is operated by the provider Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. The integration of the YouTube service takes place by means of the so-called “extended data protection mode”. A transmission of personal data to YouTube or Google only takes place if you have agreed to the integration of corresponding videos from YouTube.

Data categoryPurposeLegal basis

Device-specific information, in particular your IP-address (if you are logged in within your Google account while viewing the video, the information about viewed videos will be assigned to your member account).

The integration of the videos from YouTube and the associated processing of your personal data serves the purpose of the demand-oriented, attractive and contemporary design of our websites.

Art. 6 (1) (a) GDPR: your consent in the context of interaction with the video from YouTube. 

Period of storageRecipient of the personal data

Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. 

You can view further information on the processing of your personal data by the service provider Google here:

https://policies.google.com/privacy?hl=en&gl=en 

Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

III. Processing of Personal Data on the Website www.dld-conference.com

The passages below set out how your personal data are processed on the website www.dld-conference.com.

1. Creation of a user account (myDLD-account)

On our website, you have the option to create a personal account (“myDLD-account”). In your myDLD-account, you will be able to apply for a place at the DLD conferences (see section III.2 below) and – if your application is accepted by us – to purchase admission tickets (for more information on ordering admission tickets, see section III.3 below). The creation of your individual profile requires the provision of your account data and personal master data. After successful registration, you can change your data in the settings of your myDLD-account at any time (see the “personal information” section). After logging out and subsequently accessing the Login-section, you will need to enter your account data again.

Data category Purpose Legal basis
Account data, personal master data, address data (optional), contact data In addition, you have the option of voluntarily storing the following data in your myDLD-Account: profile picture, gender, individual description of your person, information about the company and position, links to your LinkedIn - profile. We process your account data and personal master data to authenticate you during login and to follow up on requests to reset your password. This helps us to verify your authorization to use and to manage your myDLD-account. We also process your personal data to properly provide you with the service of myDLD-account and its features. In addition, we may process your data for communication purposes, e.g. to send you technical, legal or security-related information. We process your account data and personal master data to authenticate you during login and to follow up on requests to reset your password. This helps us to verify your authorization to use and to manage your myDLD-account. We also process your personal data to properly provide you with the service of myDLD-account and its features. In addition, we may process your data for communication purposes, e.g. to send you technical, legal or security-related information.
 
Period of storage Legal basis
You have the option to delete your myDLD account at any time. This process is triggered as soon as you click on the ,,Delete Account" button under the ,,Delete Account" category in your account settings. In addition, we will delete your myDLD account if you continue to be inactive for at least 4 years. Please note that we may have to retain your personal data in part even after deletion of your profile. This applies in particular in the event of a (imminent) legal dispute with you or other legal proceedings. The legal requirements for the storage and deletion of personal data also remain unaffected by the above (such as e.g. § 257 of the German Commercial Code - HGB or § 147 of the German Fiscal Code - AO). If the storage period prescribed by legal regulations expires, the access to personal data will be restricted or the personal data will be deleted unless further storage by us is necessary and there is a legal basis for this. Third parties engaged by us will store your data on their system for as long as is necessary in connection with the provision of the service for us in accordance with the respective order. You can view further information on the processing of your personal data by the service provider Google here: https://policies.google.com/privacy?hl=en&gl=en The legal basis for the transfer of your personal data to service providers for the operation of the Website is Art. 6 (1) (a), (b) or (f) GDPR, unless the service providers act as processors within the meaning of Art. 4 para. 8 GDPR. The legal basis for the transfer of your personal data to government bodies or authorities is Art. 6 (1) (c) GDPR in conjunction with the relevant legal basis. The legal basis for the transfer to persons we need to carry out our business operations is Art. 6 (1) (b) or (f) GDPR.
 
Recipient categories
It may occur that external service providers are assigned for the provision of individual functions of our website. As with any larger company, we also use external service providers for the processing of business transactions (for example, for the areas of IT, logistics, telecommunications, sales and marketing). Those providers act solely on the basis of our instructions and have been contractually obligated to comply with data protection regulations in accordance with Art. 28 GDPR. In addition, we will only disclose your personal data to third parties if you have given your express consent to do so in accordance with Art. 6 (1) (a) GDPR. The recipients of your personal data are in particular:
  • Service providers for the operation of our Website and the processing of data stored or transmitted by the systems (for example providers of data center services / payment processing / IT security). The legal basis for the transfer is in this case Art. 6 (1) (b) or (f) GDPR insofar as the service providers do not act as processors within the meaning of Art. 4 para. 8 GDPR;
  • Government agencies/authorities, insofar as this is necessary for the fulfillment of a legal obligation. The legal basis for the disclosure is in this case Art. 6 (1) (c) GDPR;
  • Persons employed to carry out our business operations (for example, auditors, banks, insurance companies, legal advisors, supervisory authorities, parties involved in company acquisitions or the establishment of joint ventures). The legal basis for the disclosure is in this case Art. 6 (1) (b) or (f) GDPR.
Data category: Depending on the service provider, different personal data may be transmitted in accordance with the data categories specified under a).

2. Application for participation in our conferences

If you wish to participate in our conferences, you need to submit your individual application. The admission takes place after a positive evaluation by us. An overview of the conferences with open application procedures can be found in the section ,,DLD conferences" on the website www.dld-conference.com. If you click on the button ,,Apply now", you will be redirected to the section of your profile where you can enter your individual motivation text. Your application will be reviewed by our internal department. 

Data category Purpose Legal basis
In addition to the personal data mentioned above (see section III.1.a)), we will process your personal data from the motivation letter, which you can store in your myDLD account. Your personal data will be processed for the purpose of participation in our application process. In doing so, we want to ensure that only suitable candidates participate in the conferences of DLD Media GmbH. The processing of your personal data in the context of the application procedure is based on Art. 6 (1) (b) GDPR. If you voluntarily provide us with further (optional) information about yourself, the corresponding processing of your data will be based on your consent pursuant to Art. 6 (1) (a) GDPR.
 
Period of Storage
You have the option to delete your myDLD account at any time. This process is triggered as soon as you click on the “Delete Account” button under the “Delete Account” category in your account settings. In addition, we will delete your myDLD account if you continue to be inactive for at least 4 years. Please note that we may have to retain your personal data in part even after deletion of your profile. This applies in particular in the event of a (imminent) legal dispute with you or other legal proceedings. The legal requirements for the storage and deletion of personal data also remain unaffected by the above (such as e.g. § 257 of the German Commercial Code – HGB or § 147 of the German Fiscal Code - AO). If the storage period prescribed by legal regulations expires, the access to personal data will be restricted or the personal data will be deleted unless further storage by us is necessary and there is a legal basis for this. Third parties engaged by us will store your data on their system for as long as is necessary in connection with the provision of the service for us in accordance with the respective order.
 
Recipient Categories Legal Basis
It may occur that external service providers are assigned for the provision of individual functions of our website. As with any larger company, we also use external service providers for the processing of business transactions (for example, for the areas of IT, logistics, telecommunications, sales and marketing). Those providers act solely on the basis of our instructions and have been contractually obligated to comply with data protection regulations in accordance with Art. 28 GDPR. In addition, we will only disclose your personal data to third parties if you have given your express consent to do so in accordance with Art. 6 (1) (a) GDPR. The recipients of your personal data are in particular: Service providers for the operation of our website and the processing of data stored or transmitted by the systems (for example providers of data center services / payment processing / IT security). The legal basis for the transfer is in this case Art. 6 (1) (b) or (f) GDPR insofar as the service providers do not act as processors within the meaning of Art. 4 para. 8 GDPR; Government agencies/authorities, insofar as this is necessary for the fulfillment of a legal obligation. The legal basis for the disclosure is in this case Art. 6 (1) (c) GDPR; Persons employed to carry out our business operations (for example, auditors, banks, insurance companies, legal advisors, supervisory authorities, parties involved in company acquisitions or the establishment of joint ventures). The legal basis for the disclosure is in this case Art. 6 (1) (b) or (f) GDPR. Data categories: Depending on the service provider, different personal data may be transmitted in accordance with the data categories specified under a). The legal basis for the transfer of your personal data to service providers for the operation of the Website is Art. 6 (1) (a), (b) or (f) GDPR, unless the service providers act as processors within the meaning of Art. 4 para. 8 GDPR. The legal basis for the transfer of your personal data to government bodies or authorities is Art. 6 (1) (c) GDPR in conjunction with the relevant legal basis. The legal basis for the transfer to persons we need to carry out our business operations is Art. 6 (1) (b) or (f) GDPR.

3. Process of ordering tickets for the conference

If your application is accepted (see information above under section III.2), we will send you an e-mail  with a link to your myDLD account. In the “My Events” area, you have the option of confirming or declining your participation in the conference. 

If you confirm your participation, you will be redirected to the Xing Events portal of the provider New Work SE. In this area you can pay for the conference ticket. Currently, you can choose from the following payment methods: “credit card”, “PayPal” and “invoice”. After the successful payment process, we will send you your individual ticket to the e-mail address stored in your myDLD account.

Data categoryPurposeLegal basis
Account data, personal master data, address data, contact data, purchase order data, payment dataYour personal data will be processed to enable you to purchase an individual ticket for the DLD Conference, which includes in particular the processing of the payment transaction.Art. 6 (1) (b) GDPR.
Period of storage

Recipient categories

Legal basis

Please note that we may have to retain your personal data in part even after deletion of your profile. This applies in particular in the event of a (imminent) legal dispute with you or other legal proceedings. The legal requirements for the storage and deletion of personal data also remain unaffected by the above (such as e.g. § 257 of the German Commercial Code - HGB or § 147 of the German Fiscal Code - AO). If the storage period prescribed by legal regulations expires, the access to personal data will be restricted or personal data will be deleted unless further storage by us is necessary and there is a legal basis for this.

Third parties engaged by us will store your data on their system for as long as is necessary in connection with the provision of the service for us in accordance with the respective order.

In the context of order processing, your personal data will be transmitted to service providers such as credit card institutions or payment providers (e.g. PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg).

In addition, we will only disclose your personal data to third parties if you have given your express consent to do so in accordance with Art. 6 (1) (a) GDPR. The recipients of your personal data are in particular:

  • Service providers for the operation of our website and the processing of data stored or transmitted by the systems (for example providers of data center services / payment processing / IT security). The legal basis for the transfer is in this case Art. 6 (1) (b) or (f) GDPR insofar as the service providers do not act as processors within the meaning of Art. 4 para. 8 GDPR;
  • Government agencies/authorities, insofar as this is necessary for the fulfillment of a legal obligation. The legal basis for the disclosure is in this case Art. 6 (1) (c) GDPR;
  • Persons employed to carry out our business operations (for example, auditors, banks, insurance companies, legal advisors, supervisory authorities, parties involved in company acquisitions or the establishment of joint ventures). The legal basis for the disclosure is in this case Art. 6 (1) (b) or (f) GDPR.

Data categories:

Depending on the service provider, different personal data may be transmitted in accordance with the data categories specified under a).

The legal basis for the transfer of your personal data to service providers for the purpose of processing your order is Art. 6 (1) (a), (b) or (f) GDPR, unless the service providers act as processors within the meaning of Art. 4 para. 8 GDPR. The legal basis for the transfer of your personal data to government bodies or authorities is Art. 6 (1) (c) GDPR in conjunction with the relevant legal basis. The legal basis for the transfer to persons we need to carry out our business operations is Art. 6 (1) (b) or (f) GDPR. 

4. Tracking with Matomo

On our websites, we use the analysis tool Matomo from the provider InnoCraft Ltd, 7 Waterloo Quay, PO Box 625, 6140 Wellington, New Zealand. 

Matomo allows us to collect and analyze statistical data on the use of our website. In doing so, we collect aggregated data on visitor numbers, visit duration, visit times, information on bounce and exit rates or visitors’ countries of origin.

 

Data categoryPurposeLegal basis

When visiting our website, we process IP addresses of the end devices. We have activated the "Anonymise IP" function within Matomo. This guarantees the masking (shortening of the last six digits) of your IP address, so that all data is collected anonymously.

In addition, other technical data of the terminal device used, such as the URL address of the page accessed, the user agent with browser and operating system version or the language set can be read. An assignment of this data to concrete, identified natural person does not take place.

We use Matomo to collect information on user behavior in order to improve the user-friendliness of the website.

Art. 6 (1) (f) GDPR

Our legitimate interests:
When visiting our website, we process IP addresses of the end devices. We have activated the "Anonymise IP" function within Matomo. This guarantees the masking (shortening of the last six digits) of your IP address, so that all data is collected anonymously. In addition, other technical data of the terminal device used, such as the URL address of the page accessed, the user agent with browser and operating system version or the language set can be read. An assignment of this data to concrete, identified natural person does not take place.

Period of storage

Possibility to object

Recipient of personal data

Your IP address and technical data are deleted after 25 months at the latest. The deletion of data which retention period has been reached takes place automatically once a month.

You have the option to object to tracking by Matomo at any time by unchecking the box below.

If you use our Services via a new terminal or in a different browser, or if you have deleted the cookies set by your browser, you may have to declare your refusal again.

InnoCraft Ltd. 
7 Waterloo Quay
PO Box 625
6140 Wellington, New Zealand

Sie haben die Möglichkeit zu verhindern, dass von Ihnen hier getätigte Aktionen analysiert und verknüpft werden. Dies wird Ihre Privatsphäre schützen, aber wird auch den Besitzer daran hindern, aus Ihren Aktionen zu lernen und die Bedienbarkeit für Sie und andere Benutzer zu verbessern.

IV. Processing of Personal Data on Social Media Networks

We provide online offers in social networks in order to inform you about our activities and to offer you further communication channels. Below, we would like to inform you about the processing of your personal data when you visit our online offers in social networks.

1. Data processing on our Facebook fanpage

We make use of social media platforms in order to ensure that our online offering is up-to-date, informative and appealing. In particular we provide a separate Facebook fanpage (hereinafter “fanpage”). For this purpose, we make use of the technical platform and the services of the company Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter “Meta”). 

Please note that you use this fanpage and its functions on your own responsibility. This applies in particular to the use of the interactive functions (for example, commenting, sharing, rating). Alternatively, you can also access the information offered through the fanpage via our regular offer within this website. 

Data processed by Meta when visiting our fanpage

When you visit our fanpage, Meta collects, among other things, your IP address and other information that is stored in the form of cookies on your terminal device. This information is used to provide us, as the operator of the fanpage, with statistical information about the use of the fanpage. Meta provides more detailed information on this processing of data under the following link:

https://www.facebook.com/help/pages/insights 

The data collected about you in this context will be processed by Meta and may be transferred to countries outside the European Union. Meta describes in general terms what information it receives and how it is processed in its data usage guidelines. There you will also find information on how to contact Meta and on the settings options for advertisements. The data usage guidelines are available at the following link:

https://www.facebook.com/privacy/policy?section_id=0-WhatIsThePrivacy 

In what way Meta uses the data from the visit of the fanpage for its own purposes, to what extent activities on the fanpage are assigned to individual users, how long Meta stores this data and whether data from a visit to the fanpage is transmitted to third parties, is not conclusively and clearly stated by Meta and is therefore not comprehensively known to us. 

When you access our fanpage, the IP address assigned to your end device is transmitted to Meta. According to information from Meta, this IP address is anonymized. Meta also stores information about the end devices of its users (for example, as part of the "registration notification" function). Meta may thus be able to assign IP addresses to individual users. 

If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is stored on your end device. This enables Meta to track that you have visited this page and how you have used it. This also applies to all other Meta pages. Via Facebook buttons embedded in websites, it is possible for Meta to record your visits to these websites and assign them to your Facebook profile. Based on this data, content or advertising can be offered tailored to you. 

If you wish to avoid this process, you should log out of Facebook or deactivate the "stay logged in" function, delete the cookies on your end device and close and restart your browser. In this way, Facebook information by which you can be directly identified will be deleted. This allows you to use our fan page without revealing your Facebook identifier. When you access interactive features of the website ("Like"-button, comment, share, message, etc.) a Facebook login page will appear. After any login, you will again be recognizable to Meta as a particular user.

For information on how to manage or delete information about you at Meta, see the following Meta support pages:

https://www.facebook.com/privacy/policy?section_id=0-WhatIsThePrivacy 

Data processing as joint controllership (“page insights”)

In the following, we describe how we process your personal data jointly with Meta when operating the fanpage:

The subject of joint controllership is the processing of personal data in the context of a so-called page insights event (hereinafter “insights”). Insights are aggregated statistics that are created based on certain events. These events are logged by meta servers if people interact with pages and the content associated with them. We do not have access to the personal data processed as part of the events, but only to the aggregated insights provided to us by Meta. Events used to create insights do not store IP addresses, cookie IDs, or any other identifiers associated with individuals or their devices, other than a Facebook user-ID for individuals logged into Facebook.

The processing is carried out in particular for the purpose of ensuring an attractive, appealing and user-friendly design of our fan page.

As part of an agreement on joint controllership within the meaning of Article 26 (1) GDPR it has been agreed with Meta that Meta will assume primary responsibility for the fulfillment of data protection rights and obligations with regard to the processing of insights-data. Further information on the type and scope of processing under joint responsibility can be found here:

https://www.facebook.com/legal/terms/page_controller_addendum 

Data category Purpose
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Facebook account when you access the content, this data may also be assigned to your member account). The operation of the fan page and the associated processing of your personal data serves the purpose of the demand-oriented, attractive and up-to-date design of our offers.
Legal basis Period of Storage
Art. 6 (1) (a) GDPR: Should you communicate with us within the scope of the fan page in question, for example through the comment or messaging function, the associated processing of your personal data is based on your voluntary decision.Art. 6 (1) (f) GDPR: Our legitimate interest includes the provision of a modern and up-to-date information platform as well as the creation of additional possibilities for contacting our users. Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. Additional information on the processing of your personal data by Meta can be found here: https://www.facebook.com/privacy/policy?section_id=0-WhatIsThePrivacy

Companies processing personal data as joint controllers 

Company named under section I.3; Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Data category
Legal basis
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Facebook account when you access the content, this data may also be assigned to your member account).Art. 6 (a) and (f) GDPR

Recipient of data 

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Data category
Legal basis
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Facebook account when you access the content, this data may also be assigned to your member account).

Art. 6 (1) (f) GDPR

Our legitimate interest includes the provision of a modern and up-to-date information platform as well as the creation of additional possibilities for contacting our users.

2.Data processing on our Instagram fanpage 

We operate a separate Instagram fanpage in order to ensure that our online offering is up-to-date, informative and appealing. The online service Instagram is provided by the company Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter “Meta”). 

Please note that you use Instagram and its functions on your own responsibility. This applies in particular to the use of the interactive functions (for example, commenting, sharing, rating). Alternatively, you can also access the information offered through the fanpage via our regular offer within this website. 

Data processed by Meta when visiting our Instagram-fanpage

When you visit our Instagram fanpage, Meta collects, among other things, your IP address and other information that is stored in the form of cookies on your terminal device. This information is used to provide us, as the operator of the fanpage, with statistical information about the use of the fanpage. Meta provides more detailed information on this processing of data under the following link

https://privacycenter.instagram.com/policy 

The data collected about you in this context will be processed by Meta and may be transferred to countries outside the European Union. Meta describes in general terms what information it receives and how it is processed in its data usage guidelines. There you will also find information on how to contact Meta and on the settings options for advertisements. The data usage guidelines are available at the following link:

https://privacycenter.instagram.com/policy 

In which way Meta uses the data from the visit of the Instagram fanpage for its own purposes, to what extent activities on the Instagram fanpage are assigned to individual users, how long Meta stores this data and whether data from a visit to the Instagram fanpage is transmitted to third parties, is not conclusively and clearly stated by Meta and is therefore not comprehensively known to us. 

When you access our Instagram fanpage, the IP address assigned to your end device is transmitted to Meta. According to information from Meta, this IP address is anonymized. Meta also stores information about the end devices of its users (for example, as part of the “registration notification” function). Meta may thus be able to assign IP addresses to individual users. 

If you are currently logged in to Instagram as a user, a cookie with your Instagram ID is stored on your end device. This enables Meta to track that you have visited this page and how you have used it. This also applies to all other Meta pages. Via Instagram buttons embedded in websites, it is possible for Meta to record your visits to these websites and assign them to your Instagram profile. Based on this data, content or advertising can be offered tailored to you. 

If you wish to avoid this process, you should log out of Instagram or deactivate the “stay logged in” function, delete the cookies on your end device and close and restart your browser. In this way, Instagram information by which you can be directly identified will be deleted. This allows you to use our Instagram fan page without revealing your Instagram identifier. When you access interactive features of the website (“Like”-button, comment, share, message, etc.) a Instagram login page will appear. After any login, you will again be recognizable to Meta as a particular user.

For information on how to manage or delete information about you at Meta, see the following Meta support pages:

https://help.instagram.com/811572406418223/?helpref=hc_fnav 

Data Processing with “Instagram Insights”

When operating our Instagram fan page, personal data is processed as part of a so-called page insights event (hereinafter “insights”). Insights are aggregated statistics that are created based on certain events. These events are logged by meta servers if people interact with pages and the content associated with them. We do not have access to the personal data processed as part of the events, but only to the aggregated insights provided to us by Meta. Events used to create insights do not store IP addresses, cookie IDs, or any other identifiers associated with individuals or their devices, other than a Facebook user-ID for individuals logged into Facebook.

The processing is carried out in particular for the purpose of ensuring an attractive, appealing and user-friendly design of our Instagram fan page.

Further information on the type and scope of processing under joint responsibility can be found here:

https://help.latest.instagram.com/788388387972460?helpref=hc_fnav 

Data category
Purpose
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Instagram account when you access the content, this data may also be assigned to your member account).The operation of the Instagram fan page and the associated processing of your personal data serves the purpose of the demand-oriented, attractive and up-to-date design of our offers.
Legal basis Period of storage

Art. 6 (1) (a) GDPR: should you communicate with us within the scope of the fan page in question, for example through the comment or messaging function, the associated processing of your personal data is based on your voluntary decision.

Art. 6 (1) (f) GDPR: our legitimate interest includes the provision of a modern and up-to-date information platform as well as the creation of additional possibilities for contacting our users.

Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. Additional information on the processing of your personal data by Meta can be found here:

https://privacycenter.instagram.com/policy

Data category Purpose
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Instagram account when you access the content, this data may also be assigned to your member account). Art. 6 (1) (f) GDPR.
Our legitimate interest includes the provision of a modern and up-to-date information platform as well as the creation of additional possibilities for contacting our users.

3.Data processing on our YouTube-channel as joint controllership 

We operate a separate YouTube-channel in order to ensure that our online offering is up-to-date, informative and appealing. The online service Youtube is provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google"). YouTube is a video platform where users can post videos and make them publicly available. 

The passages below set out how we jointly process your personal data with Google when operating the YouTube platform: 

The subject of joint controllership is the provision of our YouTube channel. Your personal data is processed in particular for the purpose of an attractive, appealing and user-friendly design of our YouTube channel. We process your personal data only to the extent necessary for the provision of the YouTube channel. In addition, we process personal data within the framework of the YouTube channel for the purpose of carrying out any communication processes with users and interested parties. In this case, the processing of your personal data takes place exclusively on the basis of your voluntary consent.

Further information on the processing of your personal data by Google can be found here:

You can view the general terms of use of the YouTube service here:

We have no direct influence on the type and scope of the processing of your personal data by Google in the context of our YouTube channel. With the use of the YouTube channel, your personal data will also be processed by Google and, in doing so, may also be transferred to the United States, Ireland and any other country in which Google does business (regardless of your place of residence) and may be processed there in addition. 

You may exercise your data protection rights against any of the data controllers involved. To make it easier for you to exercise your data protection claims and rights, we have set up a central point of contact at the address given in section I.3, which can be reached at info@dld-conference.com. Your inquiries will be processed centrally there. In addition, we inform each other internally about incoming requests so that we can always process them together in the best possible way.

Data category Purpose
Operating system; region and location of access; age and gender of data subjects; playlist; device type; YouTube product; live/on demand; subtitles; language settings as well as translations; item type; info card type; info card. The processing of your personal data serves in particular the purpose of the demand-oriented, attractive, and up-to-date design of our online offers, in particular our YouTube channel. In addition, your personal data is being processed in order to promptly respond to your inquiries via the YouTube channel. By doing so, we would like to expand and strengthen our relationship with customers and interested parties.
Legal basis Period of storage

Art. 6 (1) (a) GDPR: your consent in the context of the respective contact via our YouTube channel.

Art. 6 (1) (f) GDPR: our legitimate interest includes the provision, optimization, design and continuous updating of our YouTube channel. In particular, the processing of our users' personal data is necessary in order to align the content of our YouTube channel with the interests and needs of our users.

Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. In addition, you have the option to restrict the processing of your personal data via the individual settings within your YouTube account. You can view further information about this option here:

https://support.google.com/accounts?hl=en#topic=3382296 

Data category Purpose
Usage data; technical data; profile information; user content; further contact and contact information; location data; analytics data (if you are logged in within your Instagram account when you access the content, this data may also be assigned to your member account). Art. 6 (1) (f) GDPR.
Our legitimate interest includes the provision of a modern and up-to-date information platform as well as the creation of additional possibilities for contacting our users.

Companies processing personal data as joint controllers 

Company named under section I.3; Google Ireland Limited, Gordon House, Barrow St, Dublin, Ireland.

Categories of data
Legal basis

All data mentioned under point a) of this section 

Art. 6 (1) (a) and (f) GDPR

Recipient of data

Google Ireland Limited, Gordon House, Barrow St, Dublin, Ireland; Company named under section I.3.

Categories of data
Legal basis

All data mentioned under point a) of this section 

Art. 6 (1) (f) GDPR

Legitimate interest pursued by us: demand-oriented design and optimization of our YouTube channel.

4. Data processing on our Twitter-profile Fanpage 

We operate a separate Twitter-Fanpage in order to ensure that our online offering is up-to-date, informative and appealing. The online service Twitter is provided by Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Irland (hereinafter „Twitter“). 

Data processed by Twitter when visiting out Twitter-Channel 

You can find general information on data processing by Twitter under the following link: 

https://twitter.com/de/privacy

We have no influence on the type and scope of the data processed by Twitter, the nature of the processing and use or the transfer of this data to third parties. We also have no effective control options in this respect.

When using Twitter, your personal data will be processed by Twitter and transferred to or processed in the United States, Ireland and any other country in which Twitter does business, regardless of your country of residence. On the one hand, Twitter processes your freely entered data such as name and username, e-mail address, telephone number or the contacts of your address book, if you upload or synchronize it. On the other hand, Twitter also evaluates the content you share to determine what topics you are interested in, processes confidential messages that you send directly to other users, and can determine your location using GPS data, information about wireless networks or your IP address in order to send you advertising or other content. As part of the evaluation, Twitter also uses analytics tools, such as Twitter or even Google Analytics. We have no influence on the use of such tools by Twitter. The analysis data obtained in this way is not made available to us by Twitter. We only receive non-personal information about tweet activities, such as the number of profile or link clicks through a particular tweet.

You can restrict the processing by Twitter via the general settings within your Twitter account under the item “Privacy and data security”. In addition, when using mobile devices, you can restrict Twitter's access to contact and calendar data, photos, location data, etc. within the settings options.

You can access further information on the restriction of data processing by Twitter here:

https://help.twitter.com/en/safety-and-security/twitter-privacy-settings 

https://help.twitter.com/en/forms/fragments/privacy-helpful-articles 

By clicking on the following link, you will receive further information on how you can view your data on Twitter:

https://help.twitter.com/en/managing-your-account/accessing-your-twitter-data 

Data processed by us 

The use of the Twitter service does not result in any direct data collection by us. We process your personal data, such as the content published by you including your account details only if we interact with your tweet (“like”, “share”, “comment”). This results in the inclusion of your personal data in our offer, whereby the details provided by you are published to our “followers”.

Data category Purpose Legal basis
Personal master data; usage data; technical data; user content ("tweets"). The use of the short message service Twitter or the associated processing of your personal data serves the purpose of the demand-oriented, attractive, and up-to-date design of our offers. Art. 6 (1) (a) GDPR: should you communicate with us within the framework of the Twitter service (for example by using the comment or "retweet" function) the associated processing of your personal data is based on your voluntary decision. Art. 6 (1) (f) GDPR: our legitimate interest is based on the provision of a modern and up-to-date information platform as well as on the creation of additional possibilities for contacting our users.
Period of StorageRecipient of data
Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. Additional information on the processing of your personal data by Twitter can be found here:
https://twitter.com/de/privacy 

Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Ireland. 

5. Data processing on our XING-profile 

We use a social network XING in order to ensure that our online offering is up-to-date, informative and appealing. The career-oriented service XING is provided by New Work SE, Am Strandkai 1, 20457 Hamburg, Germany (hereinafter „XING“).

Please note that you use XING and its functions on your own responsibility. This applies particularly to the use of the interactive functions (for example, commenting, sharing, chat function) and the creation of your profile. Alternatively, you can also access the information offered through XING via the regular offer within our website.

Data processed by XING 

You can find general information on data processing by XING under the following link: 

https://privacy.xing.com/en/privacy-policy

We have no influence on the type and scope of the data processed by XING, the nature of the processing and use or the transfer of this data to third parties. We also have no effective control options in this respect.

XING processes your voluntarily entered data such as name and user name, e-mail address, telephone number or the contacts in your address book if you upload or synchronize it. You can restrict processing by XING via the general settings within your XING account under "Privacy". In addition, when using mobile devices, you can restrict XING's access to contact and calendar data, photos, location data, etc. within the settings options. 

You can find more information on restricting data processing by XING here:

https://privacy.xing.com/en/your-privacy 

https://www.xing.com/settings/privacy 

By clicking on the following link, you will receive further information on how you can view your data on XING:

https://www.xing.com/settings/privacy/data/disclosure

Data processed by us

The use of the XING service does not result in any data collection by us.

6. Data processing on our flickr-profile 

We use an image platform flickr in order to ensure that our online offering is up-to-date, informative and appealing. The platform flickr is provided by Flickr, Inc., Suite 200, 67 E Evelyn Avenue, Mountain View, CA 94041, USA (hereinafter „flickr“). 

Please note that you use flickr and its functions on your own responsibility. This applies particularly to the use of the interactive functions (for example, ,,favourites”-function, commenting, sharing, rating) and the creation of your profile. Alternatively, you can also access the information offered through flickr via the regular offer within our website.

Data processed by flickr 

You can find general information on data processing by XING under the following link: 
https://www.flickr.com/help/privacy 

We have no influence on the type and scope of the data processed by XING, the nature of the processing and use or the transfer of this data to third parties. We also have no effective control options in this respect.

When using flickr, your personal data will be processed by flickr and transferred to or processed in the United States and any other country in which flickr does business, regardless of your country of residence. On the one hand, flickr processes your freely entered data such as name and username, e-mail address, telephone number, photos, pins, comments and any information that may be derived from it, such as the exact location after posting photos or eating habits or the contacts of your address book, if you upload or synchronize it. On the other hand, flickr also evaluates the content you share to determine what topics you are interested in, processes confidential messages that you send directly to other users, and can determine your location using GPS data, information about wireless networks or your IP address in order to send you advertising or other content. As part of the evaluation, flickr also uses analytics tools, such as tracking-pixel. We have no influence on the use of such tools by Twitter. The analysis data obtained in this way is not made available to us by flickr.

Data processed by us 

The use of the flickr service does not result in any direct data collection by us. We process your personal data, such as the content published by you including your account details, only if we interact with it (“like”, “share”, “comment”). This results in the inclusion of your personal data in our offer, whereby your details are published to our “followers”.

Data category Purpose Legal basis

Personal master data; usage data; technical data

The use of flickr or the associated processing of your personal data serves the purpose of the demand-oriented, attractive and up-to-date design of our offers.

Art. 6 (1) (a) GDPR: should you communicate with us within the framework of the flickr service (for example by using the comment or "favourite" function) the associated processing of your personal data is based on your voluntary decision.

Art. 6 (1) (f) GDPR: our legitimate interest is based on the provision of a modern and up-to-date information platform as well as on the creation of additional possibilities for contacting our users.

Period of StorageRecipient of data

Personal data will be deleted as soon as their further processing is no longer necessary for the respective purpose and legal retention periods do not prevent deletion. This is regularly the case upon receipt of your revocation or objection. Additional information on the processing of your personal data by Twitter can be found here:

https://www.flickr.com/help/privacy

Flickr, Inc., Suite 200, 67 E Evelyn Avenue, Mountain View, CA 94041, USA.

V. Organization of the conferences and communication with us via e-mail

1. Management of the travel to the DLD flagship conference (“DLD Shuttle”)

If you are attending our DLD Flagship Conference as a speaker, we will be happy to organize your travel to the event. For this purpose, our support staff will contact you to discuss the details of your travel. In the course of this, your personal data will be requested in order to order the flight tickets for you or to forward your data to other external providers (e.g. shuttle service providers).

Data category Purpose Legal basis
Personal master data, address data, contact data, payment data, (if applicable:) your identity card or passport number.Your personal data will be processed in order to organize your journey to our event in the best possible way.Art. 6 (1) (a) GDPR: the processing of your personal data for the purposes of organizing your journey – which includes in particular the transfer of your personal data to external service providers - is your voluntary decision.
Period of storage

Please note that we may have to retain your personal data even after the organization of your journey. This applies in particular in the event of a (imminent) legal dispute with you or other legal proceedings. The legal requirements for the storage and deletion of personal data also remain unaffected by the above (such as e.g. § 257 of the German Commercial Code - HGB or § 147 of the German Fiscal Code - AO). If the storage period prescribed by legal regulations expires, the access to personal data will be restricted or the data will be deleted unless further storage by us is necessary and there is a legal basis for this.

Third parties engaged by us will store your data on their system for as long as is necessary in connection with the provision of the service for us in accordance with the respective order.

Recipient categories Legal basis
We transfer your personal data to external service providers (such as shuttle service providers, airlines, accommodation providers, public transport companies) in order to be able to organize your journey in the best possible way. Data category: Depending on the service provider, different personal data may be transmitted in accordance with the data categories specified under a). The legal basis for the transfer of your personal data to service providers for the purpose of organization of your journey is Art. 6 (1) (a), (b) or (f) GDPR, insofar as the service providers do not act as processors within the meaning of Art. 4 para. 8 GDPR. The legal basis for the transfer of your personal data to government bodies or authorities is Art. 6 (1) (c) GDPR in conjunction with the relevant legal basis in each case. The legal basis for the transfer to persons we need to carry out our business operations is Art. 6 (1) (b) or (f) GDPR.

2. E-mail communication with the participants of the conferences, suppliers and service providers 

In the event that you contact us by e-mail or we contact you by e-mail, we process the technical data required for the respective communication process as well as the personal data and attachments specified in the e-mails. In doing so, we primarily process personal data that the persons concerned provide to us themselves in the context of contractual and business relationships or that we receive from the respective contractual and business partners, for example in the context of processing an inquiry or an order.

Data category
When communicating via e-mail we process in particular personal master data (such as surname, first name nut also address, bank details, billing address, tax number/sales tax-ID) and further contact data (such as telephone number, e-mail address). In addition, contract or order data (e.g. sales data, volumes, planned quantities), data from the fulfillment of our contractual obligations, information about your financial situation (e.g. creditworthiness data), professional personal data (e.g. business interests, profession, industry, position, duties and powers) and other data comparable with the above categories may also be the subject of the communication process.
Purpose

Data processing in the context of e-mail communication is carried out in particular for the execution of contracts concluded with you or your company or for the execution of pre-contractual measures. This includes in particular: 

  • Processing of purchase and supply contracts (e.g. processing of purchase and sales inquiries, authentication of contractual partners, preparation and signing of contract documents, execution of purchases and sales, billing and processing of purchase price payments),
  • Processing of service and work contracts as well as other contractual relationships (e.g. processing and review of corresponding offers and inquiries; authentication of contractual partners, preparation and signing of contract documents, processing of payments; sending of information letters).

Further data processing is carried out on the basis of legal requirements, for example, for the fulfillment of tax and other legal control and reporting obligations, as well as for audits by tax or other authorities and for purposes of compliance with legal retention periods.

We also process your data to pursue our legitimate interests which includes: 

  • optimal contact support/relationship, also regarding the employees of our business partners,
  • optimization of our business processes, e.g. by maintaining a supplier or prospect database, also in the context of "customer relationship management",
  • centralization or outsourcing of corporate functions,
  • exercise or defense of legal claims.
Period of storage
We delete your personal data as soon as they are no longer required for the purposes for which we process them. We delete transaction-related information (e.g. relating to a specific contractual or order relationship) after completion of the respective transaction, e.g. fulfillment of a supply contract, with a period of three years after the end of the respective calendar year, unless these are subject to longer statutory retention obligations (e.g. the six or ten year retention period pursuant to Section 257 of the German Commercial Code - HGB).

 

Legal basis

The processing of your personal data in course of the respective e-mail communication always takes place on the ground of legal basis of GDPR. 

  • The e-mail communication is primarily carried out for the execution of contracts concluded with you or your company or for the execution of pre-contractual measures within the meaning of Art. 6 (1) (b) GDPR,
  • The storage of the respective e-mails takes place for the purpose of complying with legal storage obligations and thus on the basis of Art. 6 (1) (c) GDPR. Legal obligations to retain data may arise in particular from the requirements of the German Fiscal Code (AO) or the German Commercial Code (HGB).
  • In addition, the processing of e-mail communication may also be carried out to protect our overriding legitimate interests within the meaning of Art. 6 (1) (f) GDPR.
Recipient categories
In certain cases, the transfer of your personal data to third parties is necessary for the processing of the aforementioned purposes. In detail, we transfer personal data to third parties within the cases named below:
  • Insofar as it is necessary for the clarification or prosecution of illegal or abusive incidents, personal data will be forwarded to our legal advisors, law enforcement authorities and - if necessary - to injured third parties. However, this will only happen if there are particular indications of unlawful or abusive behavior. A transfer may also take place if this serves the enforcement of contractual provisions between us and our contractual and business partners.
  • We are also legally obliged to provide information at the request of certain public authorities. These are primarily law enforcement agencies, authorities that prosecute administrative offenses subject to fines and the tax authorities.
  • If it is necessary for the processing of your request or the conclusion or implementation of a contractual or business relationship with you, and in the case of centralized or outsourced corporate functions, your data may be passed on to companies affiliated with us for the fulfillment of the above-mentioned purposes.
  • In certain cases we rely on external service providers, such as brokers, logistics companies, IT service providers, business advisors and financial institutions in order to fulfill the purposes described in this Privacy Policy or to provide our services. In such cases, information will be shared with these companies or individuals to enable them to continue processing.
  • As our business evolves, we may change the structure of our company by changing its legal form, establishing, buying or selling subsidiaries, divisions or components. In such transactions, customer information may be transferred along with the part of the company. Whenever we disclose personal information to third parties to the extent described above, we will ensure that this is done in accordance with this Privacy Policy and the relevant data protection laws.

Section 3: Rights of Data Subjects

I. Right to object

If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing with future effect.

You also have the right, at any time with future effect and for reasons pertinent to your particular situation, to object to the processing of your personal data in accordance with Art. 6 (1) (e) or (f) GDPR; this also applies to any profiling based on these provisions. The right to object may be exercised free of charge.

In order to process your request more quickly, please use our Privacy Request Form on the bottom of this page in the first place. Alternatively, you can contact us via the contact details listed under section I.4.

II. Right of access

You have the right to obtain confirmation from us as to whether or not personal data concerning you are being processed and, where that is the case, to access the personal data and the other information listed in Art. 15 GDPR.

III. Right to rectification

You have the right to obtain from us without undue delay the rectification of incorrect personal data concerning you (Art. 16 GDPR). Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.

IV. Right to erasure (“right to be forgotten”)

You have the right to obtain from us the erasure of personal data concerning you without undue delay if one of the grounds listed in Art. 17 (1) GDPR is applicable and the processing operations are not required for one of the purposes approved in Art. 17 (3) GDPR.

V. Right to restriction of processing

You are entitled to obtain from us the restriction of the processing of your personal data where one of the conditions laid down in Art. 18 (1) (a) to (d) GDPR is met.

VI. Right to data portability

You have the right, in respect of the personal data which you have given us, to be provided with these data in a structured, commonly used and machine-readable format and the right to send these data to another controller without any hindrance on our part, insofar as the requirements set out in Art. 20 (1) GDPR are met. In exercising your right to data portability, you have the right to have the personal data transmitted directly by us to another controller where technically feasible.

VII. Right to withdraw consent

If the processing is based on your consent, you have the right to revoke your consent at any time. This will not affect the legality of the processing operations on the basis of the consent until such time as the revocation takes effect.

VIII. Right to complain

You have the right to lodge a complaint with the supervisory authority responsible for our company. The supervisory authority responsible for our company is as follows:

Landesamt für Datenschutzaufsicht, Promenade 27 (Schloss), 91522 Ansbach, http://www.lda.bayern.de

(Privacy Policy most recently updated in February 2023.)

magnifiercrosschevron-downmenu-circle
linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram